Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Google Chrome - No Chrome Installed [Solved]

Started by Declian , Sep 10 2014 05:02 PM
Malware

  • This topic is locked This topic is locked

#1
Declian
Posted 10 September 2014 - 05:02 PM

Declian

    New Member

  • Member
  • Pip
  • 6 posts

I don't have google chrome installed, however in my process under Windows Task Manager there are multiple of these processes open. Also, my computer performance is drastically slowed. I have FRST installed and have the notes from them:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-09-2014 01
Ran by Chris (administrator) on CHRIS-HP on 09-09-2014 23:59:12
Running from C:\Users\Chris\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Curse) C:\Users\Chris\AppData\Local\Apps\2.0\KP0NZD1O.4C4\2V93WW4E.QXW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b6290e21932c\CurseClient.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Flagship Industries, Inc.) C:\Program Files\Ventrilo\Ventrilo.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-08-12] (PDF Complete Inc)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585560 2014-06-23] (Razer Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
HKU\S-1-5-21-1025731278-1972807042-3750257274-1000\...\Run: [VolunteerModel] => C:\windows\system32\rundll32.exe "C:\Users\Chris\AppData\Local\VolunteerModel\VolunteerModel.dll",DllRegisterServer <===== ATTENTION
Startup: C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM - {A0086B90-1EE5-44CC-B944-84AD57C0C8A5} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia....ch={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {A0086B90-1EE5-44CC-B944-84AD57C0C8A5} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia....ch={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
SearchScopes: HKCU - DefaultScope {14678CCA-8A8E-4F7A-BB99-A9EA640EDB28} URL = https://www.google.c...?q={searchTerms}
SearchScopes: HKCU - {14678CCA-8A8E-4F7A-BB99-A9EA640EDB28} URL = https://www.google.c...?q={searchTerms}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKCU - {A0086B90-1EE5-44CC-B944-84AD57C0C8A5} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia....ch={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 CalendarSynchService; C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [16384 2011-08-16] (Hewlett-Packard) [File not signed]
R2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-08-12] (PDF Complete Inc)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 RzDxgk; C:\windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-05-19] (Razer Inc)
R1 RzFilter; C:\windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-09 23:59 - 2014-09-09 23:59 - 00014723 _____ () C:\Users\Chris\Downloads\FRST.txt
2014-09-09 23:58 - 2014-09-09 23:59 - 00000000 ____D () C:\FRST
2014-09-09 23:57 - 2014-09-09 23:58 - 02105344 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2014-09-09 23:35 - 2014-09-09 23:35 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-09 23:35 - 2014-09-09 23:35 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-09-09 23:35 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-09-09 23:35 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-09-09 23:32 - 2014-09-09 23:34 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-09 23:13 - 2014-09-09 23:39 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft Public Test
2014-09-08 18:15 - 2014-09-08 18:16 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_2.0.1.zip
2014-09-01 01:48 - 2014-09-01 01:48 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_1.9.9a.zip
2014-09-01 01:26 - 2014-09-01 01:26 - 00000000 ____D () C:\windows\pss
2014-08-30 20:43 - 2014-08-30 20:43 - 00000000 ____D () C:\Users\Chris\AppData\Local\VolunteerModel
2014-08-22 01:03 - 2014-08-22 01:03 - 00000000 ____D () C:\Users\Chris\Documents\Diablo III
2014-08-20 21:50 - 2014-09-07 21:09 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForChris
2014-08-20 21:50 - 2014-09-07 21:09 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForChris.job
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieUserList
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieSiteList
2014-08-19 12:14 - 2014-09-01 12:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\CrashDumps
2014-08-19 10:32 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-08-19 10:32 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-08-19 10:32 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-08-19 10:32 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-08-19 10:32 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-08-19 10:32 - 2013-11-23 14:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2014-08-19 10:32 - 2013-11-23 13:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-08-19 10:32 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-08-19 10:31 - 2014-07-31 19:41 - 00348856 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-08-19 10:31 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-08-19 10:31 - 2014-07-25 10:52 - 23645696 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-08-19 10:31 - 2014-07-25 10:02 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-08-19 10:31 - 2014-07-25 10:01 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-08-19 10:31 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-08-19 10:31 - 2014-07-25 09:30 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-08-19 10:31 - 2014-07-25 09:28 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-08-19 10:31 - 2014-07-25 09:28 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-08-19 10:31 - 2014-07-25 09:25 - 02774528 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-08-19 10:31 - 2014-07-25 09:25 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-08-19 10:31 - 2014-07-25 09:11 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-08-19 10:31 - 2014-07-25 09:10 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-08-19 10:31 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-08-19 10:31 - 2014-07-25 09:03 - 00598016 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-08-19 10:31 - 2014-07-25 09:00 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-08-19 10:31 - 2014-07-25 09:00 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-08-19 10:31 - 2014-07-25 08:59 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-08-19 10:31 - 2014-07-25 08:47 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-08-19 10:31 - 2014-07-25 08:40 - 00452096 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-08-19 10:31 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-08-19 10:31 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-08-19 10:31 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-08-19 10:31 - 2014-07-25 08:28 - 05824512 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-08-19 10:31 - 2014-07-25 08:28 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-08-19 10:31 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-08-19 10:31 - 2014-07-25 08:19 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-08-19 10:31 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-08-19 10:31 - 2014-07-25 08:17 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-08-19 10:31 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-08-19 10:31 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-08-19 10:31 - 2014-07-25 08:10 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-08-19 10:31 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-08-19 10:31 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-08-19 10:31 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-08-19 10:31 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-08-19 10:31 - 2014-07-25 07:47 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-08-19 10:31 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-19 10:31 - 2014-07-25 07:42 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-08-19 10:31 - 2014-07-25 07:39 - 02087936 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-08-19 10:31 - 2014-07-25 07:39 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-08-19 10:31 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-08-19 10:31 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-08-19 10:31 - 2014-07-25 07:23 - 13547008 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-08-19 10:31 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-08-19 10:31 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-08-19 10:31 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-08-19 10:31 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-08-19 10:31 - 2014-07-25 06:52 - 02266624 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-08-19 10:31 - 2014-07-25 06:26 - 01431040 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-08-19 10:31 - 2014-07-25 06:17 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-08-19 10:31 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-08-19 10:31 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-08-19 10:31 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-08-19 10:31 - 2014-02-03 22:32 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-08-19 10:31 - 2014-02-03 22:04 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-08-19 03:09 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2014-08-19 03:07 - 2014-08-19 03:07 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-08-19 03:05 - 2014-08-19 03:05 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:04 - 2014-08-19 03:09 - 00009161 _____ () C:\windows\IE11_main.log
2014-08-18 22:51 - 2014-08-23 00:03 - 00000000 ____D () C:\Program Files (x86)\Toontown Rewritten
2014-08-18 22:51 - 2014-08-18 22:51 - 08682361 _____ (The TTR Team) C:\Users\Chris\Downloads\TTRBetaInstaller-v1.1.3.exe
2014-08-18 22:51 - 2014-08-18 22:51 - 00001083 _____ () C:\Users\Public\Desktop\Toontown Rewritten.lnk
2014-08-18 22:51 - 2014-08-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontown Rewritten
2014-08-18 02:32 - 2014-08-18 15:53 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-18 02:32 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\windows\system32\Drivers\GEARAspiWDM.sys
2014-08-18 02:31 - 2014-08-18 02:31 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-08-18 02:30 - 2014-08-18 02:31 - 00000000 ____D () C:\ProgramData\Apple
2014-08-18 02:29 - 2014-08-18 02:30 - 113492816 _____ (Apple Inc.) C:\Users\Chris\Downloads\iTunes64Setup.exe
2014-08-16 00:17 - 2014-08-16 00:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-08-15 14:23 - 2012-02-11 02:36 - 00559104 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2014-08-15 14:23 - 2012-02-11 02:36 - 00067072 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2014-08-15 03:20 - 2013-05-10 01:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-08-15 03:20 - 2013-05-10 01:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-08-15 03:20 - 2013-05-10 00:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-08-15 03:20 - 2013-05-10 00:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-08-15 02:56 - 2014-08-16 00:18 - 00295406 _____ () C:\windows\msxml4-KB973688-enu.LOG
2014-08-15 02:46 - 2014-08-16 00:18 - 00296280 _____ () C:\windows\msxml4-KB954430-enu.LOG
2014-08-15 02:32 - 2012-07-25 23:08 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2014-08-15 02:32 - 2012-07-25 23:08 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2014-08-15 02:32 - 2012-07-25 22:26 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2014-08-15 02:32 - 2012-07-25 22:26 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2014-08-15 02:32 - 2012-06-02 10:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-08-15 02:27 - 2012-03-01 02:46 - 00023408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fs_rec.sys
2014-08-15 02:27 - 2012-03-01 02:28 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\wmi.dll
2014-08-15 02:27 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmi.dll
2014-08-15 02:21 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-08-15 02:21 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-08-15 02:21 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-08-15 02:21 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-08-15 02:21 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-08-15 02:21 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-08-15 02:21 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-08-15 02:21 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-08-15 02:20 - 2014-08-15 02:20 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Chris\AppData\Local\Skype
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-14 22:47 - 2014-08-14 22:48 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-14 22:41 - 2014-08-14 22:41 - 35589728 _____ (Skype Technologies S.A.) C:\Users\Chris\Downloads\SkypeSetupFull.exe
2014-08-14 22:32 - 2014-08-19 17:08 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Skype
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2014-08-14 13:34 - 2014-07-08 18:38 - 00419992 _____ () C:\windows\system32\locale.nls
2014-08-14 13:34 - 2014-07-08 18:30 - 00419992 _____ () C:\windows\SysWOW64\locale.nls
2014-08-14 13:34 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2014-08-14 13:34 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-08-14 13:34 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2014-08-14 13:34 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-08-14 13:34 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2014-08-14 13:34 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-08-14 13:34 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2014-08-14 13:34 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-08-14 13:34 - 2013-10-29 22:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-08-14 13:34 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2014-08-14 13:34 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-08-14 13:34 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-08-14 13:34 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-08-14 13:34 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-08-14 13:34 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-08-14 13:34 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-08-14 13:34 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2014-08-14 13:34 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-08-14 13:34 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-08-14 13:34 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2014-08-14 13:34 - 2012-01-04 06:44 - 00509952 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2014-08-14 13:34 - 2012-01-04 04:58 - 00442880 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2014-08-14 13:34 - 2011-11-17 02:35 - 00395776 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2014-08-14 13:34 - 2011-11-17 01:35 - 00314880 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2014-08-14 13:33 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-08-14 13:33 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-08-14 13:33 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-08-14 13:33 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-08-14 13:33 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-08-14 13:33 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-08-14 13:33 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-08-14 13:33 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-08-14 13:33 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2014-08-14 13:33 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2014-08-14 13:33 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2014-08-14 13:33 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2014-08-14 13:33 - 2014-01-23 22:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-08-14 13:33 - 2013-12-03 22:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-08-14 13:33 - 2013-12-03 22:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-08-14 13:33 - 2013-12-03 22:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-08-14 13:33 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-08-14 13:33 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-08-14 13:33 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-08-14 13:33 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-08-14 13:33 - 2013-10-03 22:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-08-14 13:33 - 2013-10-03 22:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-08-14 13:33 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2014-08-14 13:33 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2014-08-14 13:33 - 2013-08-04 22:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2014-08-14 13:33 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2014-08-14 13:33 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2014-08-14 13:33 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-08-14 13:33 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2014-08-14 13:33 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2014-08-14 13:33 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-08-14 13:33 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-08-14 13:33 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-08-14 13:33 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2014-08-14 13:33 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2014-08-14 13:33 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2014-08-14 13:33 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\certenc.dll
2014-08-14 13:33 - 2013-05-10 01:49 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2014-08-14 13:33 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2014-08-14 13:33 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-08-14 13:33 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2014-08-14 13:33 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2014-08-14 13:33 - 2013-01-24 02:01 - 00223752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2014-08-14 13:33 - 2012-11-22 23:13 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2014-08-14 13:33 - 2012-11-02 01:59 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2014-08-14 13:33 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnet.dll
2014-08-14 13:33 - 2012-08-21 17:01 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2014-08-14 13:33 - 2012-07-06 16:07 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2014-08-14 13:33 - 2012-07-04 18:16 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2014-08-14 13:33 - 2012-07-04 18:13 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2014-08-14 13:33 - 2012-07-04 18:13 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2014-08-14 13:33 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2014-08-14 13:33 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\browcli.dll
2014-08-14 13:33 - 2012-05-01 01:40 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2014-08-14 13:33 - 2012-04-27 23:55 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-08-14 13:32 - 2014-08-06 22:06 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-14 13:32 - 2014-08-06 22:01 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-14 13:32 - 2014-07-15 23:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-08-14 13:32 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-08-14 13:32 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-08-14 13:32 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-08-14 13:32 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-08-14 13:32 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-08-14 13:32 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-08-14 13:32 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-08-14 13:32 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-08-14 13:32 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-08-14 13:32 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-08-14 13:32 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2014-08-14 13:32 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2014-08-14 13:32 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-08-14 13:32 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-08-14 13:32 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-08-14 13:32 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-08-14 13:32 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-08-14 13:32 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-08-14 13:32 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-08-14 13:32 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2014-08-14 13:32 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-08-14 13:32 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-08-14 13:32 - 2014-01-27 22:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-08-14 13:32 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-08-14 13:32 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-08-14 13:32 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2014-08-14 13:32 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-08-14 13:32 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-08-14 13:32 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2014-08-14 13:32 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2014-08-14 13:32 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-08-14 13:32 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-08-14 13:32 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2014-08-14 13:32 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2014-08-14 13:32 - 2013-09-07 22:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-08-14 13:32 - 2013-09-07 22:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2014-08-14 13:32 - 2013-08-27 21:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-08-14 13:32 - 2013-07-04 08:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-08-14 13:32 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-08-14 13:32 - 2013-07-04 08:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-08-14 13:32 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-08-14 13:32 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2014-08-14 13:32 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2014-08-14 13:32 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2014-08-14 13:32 - 2013-07-04 06:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-08-14 13:32 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-08-14 13:32 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-08-14 13:32 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-08-14 13:32 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-08-14 13:32 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-08-14 13:32 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-08-14 13:32 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-08-14 13:32 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-08-14 13:32 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2014-08-14 13:32 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2014-08-14 13:32 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2014-08-14 13:32 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-08-14 13:32 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2014-08-14 13:32 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2014-08-14 13:32 - 2013-04-25 19:30 - 01505280 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2014-08-14 13:32 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-08-14 13:32 - 2013-03-31 18:52 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2014-08-14 13:32 - 2013-03-19 01:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2014-08-14 13:32 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2014-08-14 13:32 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-08-14 13:32 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-08-14 13:32 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll
2014-08-14 13:32 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-08-14 13:32 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\aaclient.dll
2014-08-14 13:32 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-08-14 13:32 - 2012-12-07 09:20 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2014-08-14 13:32 - 2012-12-07 09:15 - 02746368 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2014-08-14 13:32 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2014-08-14 13:32 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2014-08-14 13:32 - 2012-12-07 07:20 - 00045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00030720 _____ (Microsoft) C:\windows\system32\usk.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00055296 _____ (Microsoft) C:\windows\system32\cero.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00021504 _____ (Microsoft) C:\windows\system32\grb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\windows\SysWOW64\cero.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\windows\SysWOW64\esrb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\windows\SysWOW64\fpb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\windows\SysWOW64\oflc-nz.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\windows\SysWOW64\pegibbfc.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\windows\SysWOW64\csrr.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\windows\SysWOW64\cob-au.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\windows\SysWOW64\usk.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\windows\SysWOW64\oflc.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\windows\SysWOW64\grb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-pt.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-fi.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\windows\SysWOW64\djctq.rs
2014-08-14 13:32 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2014-08-14 13:32 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2014-08-14 13:32 - 2012-11-28 18:56 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-14 13:32 - 2012-10-09 14:17 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2014-08-14 13:32 - 2012-10-09 14:17 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2014-08-14 13:32 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2014-08-14 13:32 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2014-08-14 13:32 - 2012-10-03 13:42 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\netevent.dll
2014-08-14 13:32 - 2012-10-03 12:07 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2014-08-14 13:32 - 2012-08-22 14:12 - 00950128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2014-08-14 13:32 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2014-08-14 13:32 - 2012-06-06 02:02 - 01133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2014-08-14 13:32 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2014-08-14 13:32 - 2012-05-14 01:26 - 00956928 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2014-08-14 13:32 - 2012-04-26 01:41 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-08-14 13:32 - 2012-04-26 01:41 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\rdpwsx.dll
2014-08-14 13:32 - 2012-04-26 01:34 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\rdrmemptylst.exe
2014-08-14 13:32 - 2012-01-13 03:12 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2014-08-14 13:32 - 2011-12-30 02:26 - 00515584 _____ (Microsoft Corporation) C:\windows\system32\timedate.cpl
2014-08-14 13:32 - 2011-12-30 01:27 - 00478720 _____ (Microsoft Corporation) C:\windows\SysWOW64\timedate.cpl
2014-08-14 13:32 - 2011-11-19 10:58 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-08-14 13:32 - 2011-11-19 10:01 - 00067072 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2014-08-14 13:32 - 2011-10-26 01:25 - 01572864 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2014-08-14 13:32 - 2011-10-26 01:25 - 00366592 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-08-14 13:32 - 2011-10-26 00:32 - 01328128 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2014-08-14 13:32 - 2011-10-26 00:32 - 00514560 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2014-08-14 13:32 - 2011-04-09 02:58 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2014-08-14 13:32 - 2011-04-09 01:56 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2014-08-14 13:32 - 2011-02-23 00:55 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2014-08-14 13:32 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-08-14 13:31 - 2014-07-15 23:25 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-08-14 13:31 - 2014-07-15 22:46 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-08-14 13:31 - 2014-07-15 22:12 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-14 13:31 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-08-14 13:31 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-08-14 13:31 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-08-14 13:31 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-08-14 13:31 - 2014-02-03 22:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-08-14 13:31 - 2014-02-03 22:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-08-14 13:31 - 2014-02-03 22:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-08-14 13:31 - 2014-02-03 22:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-08-14 13:31 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll
2014-08-14 13:31 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-08-14 13:31 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-08-14 13:31 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-08-14 13:31 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2014-08-14 13:31 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2014-08-14 13:31 - 2013-08-28 22:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-08-14 13:31 - 2013-08-28 22:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-08-14 13:31 - 2013-08-28 22:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-08-14 13:31 - 2013-08-28 21:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-08-14 13:31 - 2013-08-28 21:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2014-08-14 13:31 - 2013-08-28 21:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2014-08-14 13:31 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-14 13:31 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-08-14 13:31 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\synceng.dll
2014-08-14 13:31 - 2012-09-25 18:46 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2014-08-14 13:31 - 2012-05-05 04:36 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2014-08-14 13:31 - 2012-05-05 03:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2014-08-14 13:31 - 2012-03-17 03:58 - 00075120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2014-08-14 13:31 - 2011-12-16 04:46 - 00634880 _____ (Microsoft Corporation) C:\windows\system32\msvcrt.dll
2014-08-14 13:31 - 2011-12-16 03:52 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcrt.dll
2014-08-13 21:43 - 2014-08-13 21:43 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\WinBatch
2014-08-13 21:21 - 2014-09-03 21:09 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-08-13 21:19 - 2014-09-03 21:05 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HP Support Assistant
2014-08-13 03:56 - 2014-09-03 21:05 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HpUpdate
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\Documents\Razer
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer_Inc
2014-08-13 02:23 - 2014-08-13 02:23 - 00002131 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-08-13 02:22 - 2014-08-13 02:23 - 41954352 _____ (Razer Inc. ) C:\Users\Chris\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-08-12 20:10 - 2014-08-12 20:10 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard
2014-08-12 19:25 - 2014-08-12 19:25 - 00000000 ____D () C:\Users\Chris\AppData\Local\PunkBuster
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\Users\Chris\Documents\My Games
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-12 18:23 - 2014-08-12 18:23 - 00000219 _____ () C:\Users\Chris\Desktop\Portal 2.url
2014-08-12 18:18 - 2014-08-30 20:44 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-12 18:18 - 2014-08-12 18:18 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\Users\Chris\AppData\Local\AMD
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-12 18:17 - 2014-08-12 18:17 - 01141680 _____ () C:\Users\Chris\Downloads\SteamSetup.exe
2014-08-12 18:15 - 2014-08-12 18:15 - 00000318 _____ () C:\Users\Chris\Desktop\Curse Client.appref-ms
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Curse Advertising
2014-08-12 18:14 - 2014-09-09 23:12 - 00000000 ____D () C:\Users\Chris\AppData\Local\Deployment
2014-08-12 18:14 - 2014-08-12 18:14 - 00402696 _____ () C:\Users\Chris\Downloads\setup.exe
2014-08-12 18:14 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apps\2.0
2014-08-12 18:12 - 2014-08-12 18:12 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\library_dir
2014-08-12 18:11 - 2014-08-31 18:23 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-12 18:11 - 2014-08-12 18:11 - 00061432 _____ () C:\windows\SysWOW64\CCCInstall_201408121811423973.log
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\ATI
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\AMD
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-12 18:10 - 2014-08-12 18:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 18:06 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-12 18:05 - 2014-08-12 18:05 - 00000000 ____D () C:\AMD
2014-08-12 18:03 - 2014-08-12 18:03 - 00890744 _____ (AMD) C:\Users\Chris\Downloads\amddriverdownloader.exe
2014-08-12 07:19 - 2014-08-12 07:20 - 00000000 ____D () C:\ProgramData\Recovery
2014-08-12 06:27 - 2014-08-12 03:31 - 00000000 __RSH () C:\windows\SysWOW64\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 06:27 - 2014-08-12 03:31 - 00000000 __RSH () C:\windows\system32\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 04:12 - 2014-08-12 04:12 - 00001701 _____ () C:\Users\Chris\Desktop\World of Warcraft Launcher.lnk
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:09 - 00047826 _____ () C:\windows\DPINST.LOG
2014-08-12 04:08 - 2014-08-12 04:08 - 00001396 _____ () C:\Users\Chris\Desktop\Mumble.lnk
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____D () C:\windows\Razer Core
2014-08-12 04:08 - 2014-04-18 11:02 - 00129472 _____ (Razer, Inc.) C:\windows\system32\Drivers\RzDxgk.sys
2014-08-12 04:08 - 2014-04-18 11:02 - 00074432 _____ (Razer, Inc.) C:\windows\system32\Drivers\RzFilter.sys
2014-08-12 04:07 - 2014-08-13 02:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-08-12 04:06 - 2014-08-12 04:06 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Adobe
2014-08-12 04:05 - 2014-08-13 02:36 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer
2014-08-12 04:05 - 2014-08-13 02:23 - 00000000 ____D () C:\ProgramData\Razer
2014-08-12 04:05 - 2014-08-12 04:07 - 00002452 _____ () C:\Users\Chris\Desktop\RzSynapse.lnk
2014-08-12 04:03 - 2014-08-12 04:12 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-12 04:03 - 2014-08-12 04:03 - 00001559 _____ () C:\Users\Chris\Desktop\Battle.net Launcher.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001546 _____ () C:\Users\Chris\Desktop\Far Cry 3.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001500 _____ () C:\Users\Chris\Desktop\Hearthstone.lnk
2014-08-12 04:01 - 2014-08-12 04:01 - 00001557 _____ () C:\Users\Chris\Desktop\Diablo III Launcher.lnk
2014-08-12 04:00 - 2014-08-12 04:00 - 00001374 _____ () C:\Users\Chris\Desktop\Ventrilo.lnk
2014-08-12 03:59 - 2014-08-18 16:27 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Ventrilo
2014-08-12 03:58 - 2014-09-09 23:39 - 00000000 ____D () C:\Users\Chris\AppData\Local\Battle.net
2014-08-12 03:58 - 2014-08-29 16:23 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Battle.net
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard Entertainment
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-08-12 03:57 - 2014-08-25 16:16 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2014-08-12 03:56 - 2014-08-13 12:36 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files\Ventrilo
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Mumble
2014-08-12 03:54 - 2014-08-18 16:56 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-12 03:49 - 2014-07-08 23:06 - 00000134 _____ () C:\Users\Chris\Desktop\Norushen 25man comp.txt
2014-08-12 03:46 - 2014-08-12 03:46 - 00000000 ____D () C:\Program Files (x86)\Far Cry 3
2014-08-12 03:38 - 2014-08-26 15:59 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-08-12 03:38 - 2012-02-17 02:38 - 01031680 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2014-08-12 03:38 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2014-08-12 03:38 - 2012-02-17 00:57 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdtcp.sys
2014-08-12 03:37 - 2014-08-26 12:36 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-12 03:36 - 2014-08-15 14:16 - 00060032 _____ () C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\ATI
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Local\ATI
2014-08-12 03:35 - 2012-06-02 18:19 - 02428952 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00701976 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00057880 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-08-12 03:35 - 2012-06-02 18:19 - 00044056 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00038424 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-08-12 03:35 - 2012-06-02 18:15 - 02622464 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-08-12 03:35 - 2012-06-02 18:15 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-08-12 03:35 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-08-12 03:35 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-08-12 03:34 - 2014-09-09 23:05 - 00003926 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{D56E8CF9-621B-47E3-8568-8EA6C46B02CB}
2014-08-12 03:34 - 2014-09-01 03:34 - 00003820 _____ () C:\windows\System32\Tasks\SetupManager
2014-08-12 03:34 - 2014-08-19 03:29 - 00001419 _____ () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\VirtualStore
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\PDFC
2014-08-12 03:33 - 2014-08-13 21:42 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Hewlett-Packard
2014-08-12 03:31 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard_Company
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\TouchSmartData
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\RemEngine
2014-08-12 03:30 - 2014-09-09 19:03 - 01494756 _____ () C:\windows\WindowsUpdate.log
2014-08-12 03:30 - 2014-08-29 17:33 - 00000000 ____D () C:\Users\Chris
2014-08-12 03:30 - 2014-08-20 21:50 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard
2014-08-12 03:30 - 2014-08-12 03:30 - 00003290 _____ () C:\windows\System32\Tasks\RMCreator
2014-08-12 03:30 - 2014-08-12 03:30 - 00000020 ___SH () C:\Users\Chris\ntuser.ini
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mathematics
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Mathematics
2014-08-12 03:30 - 2012-06-06 11:56 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Macromedia
2014-08-12 03:30 - 2009-07-14 00:54 - 00000000 ___RD () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 03:30 - 2009-07-14 00:49 - 00000000 ___RD () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-09 23:59 - 2014-09-09 23:59 - 00014723 _____ () C:\Users\Chris\Downloads\FRST.txt
2014-09-09 23:59 - 2014-09-09 23:58 - 00000000 ____D () C:\FRST
2014-09-09 23:58 - 2014-09-09 23:57 - 02105344 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2014-09-09 23:39 - 2014-09-09 23:13 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft Public Test
2014-09-09 23:39 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Battle.net
2014-09-09 23:35 - 2014-09-09 23:35 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-09 23:35 - 2014-09-09 23:35 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-09 23:34 - 2014-09-09 23:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-09 23:12 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Deployment
2014-09-09 23:05 - 2014-08-12 03:34 - 00003926 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{D56E8CF9-621B-47E3-8568-8EA6C46B02CB}
2014-09-09 19:03 - 2014-08-12 03:30 - 01494756 _____ () C:\windows\WindowsUpdate.log
2014-09-09 15:48 - 2012-06-06 11:58 - 00000000 ____D () C:\ProgramData\PDFC
2014-09-09 14:56 - 2009-07-14 00:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-09 14:56 - 2009-07-14 00:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-09 14:54 - 2009-07-14 01:13 - 00781790 _____ () C:\windows\system32\PerfStringBackup.INI
2014-09-09 14:48 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-09 14:48 - 2009-07-14 00:51 - 00047101 _____ () C:\windows\setupact.log
2014-09-08 18:16 - 2014-09-08 18:15 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_2.0.1.zip
2014-09-08 18:09 - 2009-07-14 00:45 - 00295056 _____ () C:\windows\system32\FNTCACHE.DAT
2014-09-07 21:09 - 2014-08-20 21:50 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForChris
2014-09-07 21:09 - 2014-08-20 21:50 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForChris.job
2014-09-03 21:09 - 2014-08-13 21:21 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-09-03 21:05 - 2014-08-13 21:19 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HP Support Assistant
2014-09-03 21:05 - 2014-08-13 03:56 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HpUpdate
2014-09-01 12:14 - 2014-08-19 12:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\CrashDumps
2014-09-01 03:34 - 2014-08-12 03:34 - 00003820 _____ () C:\windows\System32\Tasks\SetupManager
2014-09-01 01:48 - 2014-09-01 01:48 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_1.9.9a.zip
2014-09-01 01:26 - 2014-09-01 01:26 - 00000000 ____D () C:\windows\pss
2014-08-31 18:23 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-31 18:21 - 2012-06-06 11:56 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eReaders and Document Viewers
2014-08-30 20:44 - 2014-08-12 18:18 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-30 20:43 - 2014-08-30 20:43 - 00000000 ____D () C:\Users\Chris\AppData\Local\VolunteerModel
2014-08-29 17:33 - 2014-08-12 03:30 - 00000000 ____D () C:\Users\Chris
2014-08-29 16:23 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Battle.net
2014-08-26 15:59 - 2014-08-12 03:38 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-08-26 12:36 - 2014-08-12 03:37 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-25 16:16 - 2014-08-12 03:57 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2014-08-23 00:03 - 2014-08-18 22:51 - 00000000 ____D () C:\Program Files (x86)\Toontown Rewritten
2014-08-22 01:03 - 2014-08-22 01:03 - 00000000 ____D () C:\Users\Chris\Documents\Diablo III
2014-08-20 21:50 - 2014-08-12 03:30 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard
2014-08-20 13:08 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\rescache
2014-08-20 07:22 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-08-20 03:02 - 2011-02-11 13:15 - 00773912 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-08-19 17:08 - 2014-08-14 22:32 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Skype
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieUserList
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieSiteList
2014-08-19 03:29 - 2014-08-12 03:34 - 00001419 _____ () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\zh-HK
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\tr-TR
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\zh-HK
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\tr-TR
2014-08-19 03:09 - 2014-08-19 03:04 - 00009161 _____ () C:\windows\IE11_main.log
2014-08-19 03:07 - 2014-08-19 03:07 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-08-19 03:05 - 2014-08-19 03:05 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-18 22:51 - 2014-08-18 22:51 - 08682361 _____ (The TTR Team) C:\Users\Chris\Downloads\TTRBetaInstaller-v1.1.3.exe
2014-08-18 22:51 - 2014-08-18 22:51 - 00001083 _____ () C:\Users\Public\Desktop\Toontown Rewritten.lnk
2014-08-18 22:51 - 2014-08-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontown Rewritten
2014-08-18 16:56 - 2014-08-12 03:54 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-18 16:27 - 2014-08-12 03:59 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Ventrilo
2014-08-18 15:53 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-18 02:31 - 2014-08-18 02:31 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-08-18 02:31 - 2014-08-18 02:30 - 00000000 ____D () C:\ProgramData\Apple
2014-08-18 02:30 - 2014-08-18 02:29 - 113492816 _____ (Apple Inc.) C:\Users\Chris\Downloads\iTunes64Setup.exe
2014-08-16 00:18 - 2014-08-15 02:56 - 00295406 _____ () C:\windows\msxml4-KB973688-enu.LOG
2014-08-16 00:18 - 2014-08-15 02:46 - 00296280 _____ () C:\windows\msxml4-KB954430-enu.LOG
2014-08-16 00:17 - 2014-08-16 00:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-08-15 14:16 - 2014-08-12 03:36 - 00060032 _____ () C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 14:09 - 2010-11-21 03:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-15 14:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-15 14:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Dism
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-15 02:20 - 2014-08-15 02:20 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Chris\AppData\Local\Skype
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-14 22:48 - 2014-08-14 22:47 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-14 22:48 - 2012-06-06 11:48 - 00000000 ____D () C:\ProgramData\Skype
2014-08-14 22:41 - 2014-08-14 22:41 - 35589728 _____ (Skype Technologies S.A.) C:\Users\Chris\Downloads\SkypeSetupFull.exe
2014-08-13 21:44 - 2012-06-06 12:00 - 00000000 ___RD () C:\Program Files\Online Services
2014-08-13 21:44 - 2012-06-06 11:48 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2014-08-13 21:44 - 2011-02-11 12:32 - 00000000 ____D () C:\SWSETUP
2014-08-13 21:43 - 2014-08-13 21:43 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\WinBatch
2014-08-13 21:43 - 2012-06-06 11:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP TouchSmart
2014-08-13 21:42 - 2014-08-12 03:33 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Hewlett-Packard
2014-08-13 21:21 - 2012-06-06 11:40 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-08-13 12:36 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-08-13 12:35 - 2010-11-20 23:47 - 00543216 _____ () C:\windows\PFRO.log
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\Documents\Razer
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer_Inc
2014-08-13 02:36 - 2014-08-12 04:05 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer
2014-08-13 02:23 - 2014-08-13 02:23 - 00002131 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-08-13 02:23 - 2014-08-13 02:22 - 41954352 _____ (Razer Inc. ) C:\Users\Chris\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-08-13 02:23 - 2014-08-12 04:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-08-13 02:23 - 2014-08-12 04:05 - 00000000 ____D () C:\ProgramData\Razer
2014-08-12 20:10 - 2014-08-12 20:10 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard
2014-08-12 19:25 - 2014-08-12 19:25 - 00000000 ____D () C:\Users\Chris\AppData\Local\PunkBuster
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\Users\Chris\Documents\My Games
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-12 18:23 - 2014-08-12 18:23 - 00000219 _____ () C:\Users\Chris\Desktop\Portal 2.url
2014-08-12 18:18 - 2014-08-12 18:18 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\Users\Chris\AppData\Local\AMD
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-12 18:17 - 2014-08-12 18:17 - 01141680 _____ () C:\Users\Chris\Downloads\SteamSetup.exe
2014-08-12 18:15 - 2014-08-12 18:15 - 00000318 _____ () C:\Users\Chris\Desktop\Curse Client.appref-ms
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Curse Advertising
2014-08-12 18:14 - 2014-08-12 18:14 - 00402696 _____ () C:\Users\Chris\Downloads\setup.exe
2014-08-12 18:14 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apps\2.0
2014-08-12 18:12 - 2014-08-12 18:12 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\library_dir
2014-08-12 18:11 - 2014-08-12 18:11 - 00061432 _____ () C:\windows\SysWOW64\CCCInstall_201408121811423973.log
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\ATI
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\AMD
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-12 18:11 - 2014-08-12 18:06 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-12 18:11 - 2012-06-06 11:42 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-12 18:10 - 2014-08-12 18:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 18:10 - 2012-06-06 11:42 - 00000000 ____D () C:\Program Files\AMD
2014-08-12 18:05 - 2014-08-12 18:05 - 00000000 ____D () C:\AMD
2014-08-12 18:03 - 2014-08-12 18:03 - 00890744 _____ (AMD) C:\Users\Chris\Downloads\amddriverdownloader.exe
2014-08-12 17:51 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-08-12 17:50 - 2009-07-14 01:32 - 00000000 ____D () C:\windows\system32\restore
2014-08-12 17:49 - 2012-06-06 12:01 - 00000000 ____D () C:\ProgramData\Norton
2014-08-12 07:20 - 2014-08-12 07:19 - 00000000 ____D () C:\ProgramData\Recovery
2014-08-12 06:27 - 2009-07-14 00:46 - 00005075 _____ () C:\windows\DtcInstall.log
2014-08-12 06:27 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\sysprep
2014-08-12 06:26 - 2011-02-11 13:04 - 00005949 _____ () C:\windows\TSSysprep.log
2014-08-12 06:25 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 04:12 - 2014-08-12 04:12 - 00001701 _____ () C:\Users\Chris\Desktop\World of Warcraft Launcher.lnk
2014-08-12 04:12 - 2014-08-12 04:03 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:08 - 00047826 _____ () C:\windows\DPINST.LOG
2014-08-12 04:08 - 2014-08-12 04:08 - 00001396 _____ () C:\Users\Chris\Desktop\Mumble.lnk
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____D () C:\windows\Razer Core
2014-08-12 04:07 - 2014-08-12 04:05 - 00002452 _____ () C:\Users\Chris\Desktop\RzSynapse.lnk
2014-08-12 04:06 - 2014-08-12 04:06 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Adobe
2014-08-12 04:03 - 2014-08-12 04:03 - 00001559 _____ () C:\Users\Chris\Desktop\Battle.net Launcher.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001546 _____ () C:\Users\Chris\Desktop\Far Cry 3.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001500 _____ () C:\Users\Chris\Desktop\Hearthstone.lnk
2014-08-12 04:01 - 2014-08-12 04:01 - 00001557 _____ () C:\Users\Chris\Desktop\Diablo III Launcher.lnk
2014-08-12 04:00 - 2014-08-12 04:00 - 00001374 _____ () C:\Users\Chris\Desktop\Ventrilo.lnk
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard Entertainment
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files\Ventrilo
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Mumble
2014-08-12 03:46 - 2014-08-12 03:46 - 00000000 ____D () C:\Program Files (x86)\Far Cry 3
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\ATI
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Local\ATI
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\VirtualStore
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\PDFC
2014-08-12 03:34 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard_Company
2014-08-12 03:33 - 2012-06-06 11:14 - 00000000 __RHD () C:\SYSTEM.SAV
2014-08-12 03:31 - 2014-08-12 06:27 - 00000000 __RSH () C:\windows\SysWOW64\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 03:31 - 2014-08-12 06:27 - 00000000 __RSH () C:\windows\system32\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\TouchSmartData
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\RemEngine
2014-08-12 03:31 - 2012-06-06 11:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-08-12 03:31 - 2012-06-06 11:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-08-12 03:31 - 2012-06-06 11:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-08-12 03:31 - 2012-06-06 11:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-08-12 03:31 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-12 03:31 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-08-12 03:30 - 2014-08-12 03:30 - 00003290 _____ () C:\windows\System32\Tasks\RMCreator
2014-08-12 03:30 - 2014-08-12 03:30 - 00000020 ___SH () C:\Users\Chris\ntuser.ini
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mathematics
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Mathematics
2014-08-12 03:30 - 2011-02-11 13:00 - 00000000 ____D () C:\windows\Panther

Some content of TEMP:
====================
C:\Users\Chris\AppData\Local\Temp\14-4-mobility-win7-win8-win8.1-64-dd-ccc-whql.exe
C:\Users\Chris\AppData\Local\Temp\raptrpatch.exe
C:\Users\Chris\AppData\Local\Temp\raptr_stub.exe
C:\Users\Chris\AppData\Local\Temp\sp64126.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-29 15:59

==================== End Of Log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-09-2014 01
Ran by Chris at 2014-09-10 00:00:01
Running from C:\Users\Chris\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

802.11n Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 3.02.03.0 - Ralink)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x64) (HKLM\...\{421976B6-DEC6-4CA5-941F-F0663B3A2B74}) (Version: 11.1.102.55 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 2.5.732.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{3FAEEEBE-48F4-84C1-2B49-96AE73E67E3E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.60914.1136 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In  (Version: 1.00.0000 - AMD) Hidden
AMD Steady Video Plug-In  (Version: 2.07.0000 - AMD) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bubble Wrap (HKLM-x32\...\{5BFFDDEB-AFD7-499F-BB13-7A6EAD927CDA}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Curse Client (HKCU\...\101a9f93b8f0bb6f) (Version: 5.1.1.810 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Farmscapes (x32 Version: 2.2.0.98 - WildTangent) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.1.2.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
HP Application Assistant (HKLM\...\{B34A07DD-C6F7-414A-AE63-01019482EAF0}) (Version: 1.0.393.3870 - Hewlett-Packard)
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Calendar (HKLM-x32\...\{2B38E0FA-D8A5-4EBF-A018-E3C1C8E7A2E2}) (Version: 5.1.4245.23508 - Hewlett-Packard)
HP Client Services (Version: 1.1.12938.3539 - Hewlett-Packard) Hidden
HP Clock (HKLM-x32\...\{0EEC4E49-D4C2-4E23-87F2-B5641F1A09E4}) (Version: 5.1.4244.16367 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
HP LinkUp (HKLM-x32\...\{7E750542-55BC-4300-8B7B-AC2A762FB435}) (Version: 2.01.029 - Hewlett-Packard)
HP Magic Canvas (HKLM-x32\...\{DDFDC9D6-4220-41F8-BF9A-8E7512C4EF52}) (Version: 5.1.15.0 - Hewlett-Packard)
HP Magic Canvas Tutorials (HKLM-x32\...\{858FCB65-7C6D-4BA4-AD80-A3CB3744CE09}_is1) (Version: 5.0.0.3 - Hewlett-Packard)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.1.21091.0 - Hewlett-Packard Company)
HP MovieStore (x32 Version: 2.1.091 - Hewlett-Packard) Hidden
HP Notes (HKLM-x32\...\{86BAB08A-5E66-4C53-82E3-C1E91673C7CA}) (Version: 5.1.4274.30382 - Hewlett-Packard)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP RSS (HKLM-x32\...\{A35E58D6-2A0F-4051-983B-79342081338E}) (Version: 5.1.4301.21494 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}) (Version: 9.0.15130.3904 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.2.15145.3905 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}) (Version: 6.1.12.1 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 11.00.0001 - Hewlett-Packard)
HP TouchSmart RecipeBox (HKLM-x32\...\{20714B53-FC73-4F9C-9687-49EB237D6FD7}) (Version: 3.0.3830.27730 - Hewlett-Packard)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.12.1.0 - Hewlett-Packard)
HP Weather (HKLM-x32\...\{8364E531-493B-4B05-8041-09D5CE38B975}) (Version: 5.1.4295.16450 - Hewlett-Packard)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kobo (HKLM-x32\...\Kobo) (Version: 2.0.3 - Kobo Inc.)
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.) Hidden
Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Luxor HD (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Metric Converter (HKLM-x32\...\{D0661463-50F7-4A1E-83CB-37CC590589AE}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.65 - PDF Complete, Inc)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.5706 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.5706 - CyberLink Corp.) Hidden
PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-132318649765}) (Version: 5.11.0721.0 -  NewspaperDirect Inc.)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.15.20888 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6387 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.4424 - CyberLink Corp.) Hidden
Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard)
RollerCoaster Tycoon 3: Platinum (x32 Version: 2.2.0.98 - WildTangent) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
Toontown Rewritten (HKLM-x32\...\Toontown Rewritten) (Version: 00.00.00.00 - The TTR Team)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
TSHostedAppLauncher (x32 Version: 5.1.15.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1025731278-1972807042-3750257274-1000_Classes\CLSID\{900ec3ec-b5a9-4599-9798-6ef847c37bcd}\InprocServer32 -> C:\windows\system32\dfshim.dll (Microsoft Corporation)

==================== Restore Points  =========================

16-08-2014 04:17:35 Windows Update
18-08-2014 06:31:31 Installed iTunes
18-08-2014 07:00:11 Windows Update
19-08-2014 07:00:23 Windows Update
20-08-2014 07:00:17 Windows Update
29-08-2014 20:06:01 Scheduled Checkpoint
31-08-2014 22:19:45 Removed Blio.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {12E6C97C-E6EF-4A24-838B-5CE984DB8305} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-08-04] (Hewlett-Packard)
Task: {3720F99C-928F-4777-BE9F-C85FC3C58461} - System32\Tasks\SetupManager => C:\Program Files (x86)\Hewlett-Packard\Setup Manager\toaster.exe [2011-10-12] (Microsoft)
Task: {551A3776-CCA0-4A03-96C3-1E1650B6ADD5} - System32\Tasks\HPCeeScheduleForChris => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {58843F60-0C9E-4F87-9359-54C7FAE906A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-08-04] (Hewlett-Packard)
Task: {5EA18310-7B29-42D9-9A78-B68B60BA0CBE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-13] (Hewlett-Packard Company)
Task: {A6E9974D-7E6D-4C87-8769-F8B2F63C1983} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-13] (Hewlett-Packard Company)
Task: {A70B3AB6-B30F-45E0-BE58-422B3C67020D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [2011-09-09] (Hewlett-Packard Company)
Task: {DA403F9D-8EC3-4C16-85CB-D52FDDB31D0D} - System32\Tasks\RMCreator => C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe [2011-08-23] (CyberLink)
Task: {F905883E-E8A0-40BB-BCE9-87317D65C255} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [2013-02-19] (Hewlett-Packard)
Task: C:\windows\Tasks\HPCeeScheduleForChris.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) =============

2014-04-17 22:29 - 2014-04-17 22:29 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-04-17 22:29 - 2014-04-17 22:29 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-08-12 18:15 - 2014-08-12 18:15 - 00014848 _____ () C:\Users\Chris\AppData\Local\Apps\2.0\KP0NZD1O.4C4\2V93WW4E.QXW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b6290e21932c\Curse.CurseClient.WowDb.dll
2014-08-12 18:15 - 2014-08-12 18:15 - 00035840 _____ () C:\Users\Chris\AppData\Local\Apps\2.0\KP0NZD1O.4C4\2V93WW4E.QXW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b6290e21932c\Curse.Advertising.dll
2014-08-12 18:15 - 2014-08-12 18:15 - 00099840 _____ () C:\Users\Chris\AppData\Local\Apps\2.0\KP0NZD1O.4C4\2V93WW4E.QXW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b6290e21932c\Curse.CurseClient.CMOD2.dll
2014-04-17 22:29 - 2014-04-17 22:29 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 00718152 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\libglesv2.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 00126280 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\libegl.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 08537928 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\pdf.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 00353096 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 01732936 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\ffmpegsumo.dll
2014-09-01 01:31 - 2014-09-01 01:31 - 14669128 _____ () C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\36.0.1985.143\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/09/2014 11:39:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 4c8c

Start Time: 01cfcc7f461540f7

Termination Time: 918

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

Error: (09/09/2014 02:59:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 11dc

Start Time: 01cfcc5ee2f45200

Termination Time: 790

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id: 7943dd14-3853-11e4-8f90-0002762a2b3f

Error: (09/07/2014 11:08:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 3a50

Start Time: 01cfcb0e6245c14e

Termination Time: 1299

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id: 5af8d8a4-3705-11e4-b137-0002762a2b3f

Error: (09/05/2014 01:12:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 25cc

Start Time: 01cfc88edf7ea42c

Termination Time: 1275

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

Error: (09/04/2014 01:19:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 6ee8

Start Time: 01cfc7fcfa7a3d1e

Termination Time: 685

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

Error: (09/04/2014 00:29:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2cdc

Start Time: 01cfc7e1d876fccf

Termination Time: 2543

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

Error: (09/01/2014 09:19:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: browser.exe, version: 36.0.1985.143, time stamp: 0x53e2e515
Faulting module name: VolunteerModel.dll, version: 7.0.4.453, time stamp: 0x5400ceb5
Exception code: 0xc0000005
Fault offset: 0x0001001b
Faulting process id: 0xe624
Faulting application start time: 0xbrowser.exe0
Faulting application path: browser.exe1
Faulting module path: browser.exe2
Report Id: browser.exe3

Error: (09/01/2014 01:47:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.17239, time stamp: 0x53d22946
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc0000005
Fault offset: 0x00136cef
Faulting process id: 0x1874
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report Id: IEXPLORE.EXE3

Error: (08/31/2014 06:17:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ab8

Start Time: 01cfc54abaab6adb

Termination Time: 3325

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

Error: (08/21/2014 02:40:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Wow-64.exe version 5.4.8.18414 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: f2e8

Start Time: 01cfbd0a9ca1dc08

Termination Time: 898

Application Path: C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Report Id:

System errors:
=============
Error: (09/01/2014 01:29:48 AM) (Source: BTHUSB) (EventID: 5) (User: )
Description: The Bluetooth driver expected an HCI event with a certain size but did not receive it.

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:13 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/01/2014 01:28:13 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}

Microsoft Office Sessions:
=========================
Error: (09/09/2014 11:39:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.184144c8c01cfcc7f461540f7918C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Error: (09/09/2014 02:59:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.1841411dc01cfcc5ee2f45200790C:\Program Files (x86)\World of Warcraft\Wow-64.exe7943dd14-3853-11e4-8f90-0002762a2b3f

Error: (09/07/2014 11:08:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.184143a5001cfcb0e6245c14e1299C:\Program Files (x86)\World of Warcraft\Wow-64.exe5af8d8a4-3705-11e4-b137-0002762a2b3f

Error: (09/05/2014 01:12:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.1841425cc01cfc88edf7ea42c1275C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Error: (09/04/2014 01:19:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.184146ee801cfc7fcfa7a3d1e685C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Error: (09/04/2014 00:29:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.184142cdc01cfc7e1d876fccf2543C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Error: (09/01/2014 09:19:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: browser.exe36.0.1985.14353e2e515VolunteerModel.dll7.0.4.4535400ceb5c00000050001001be62401cfc5e70d918365C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exeC:\Users\Chris\AppData\Local\VolunteerModel\VolunteerModel.dll9d3f71b2-31da-11e4-9a74-0002762a2b3f

Error: (09/01/2014 01:47:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1723953d22946MSHTML.dll11.0.9600.1723953d26078c000000500136cef187401cfc5a83aeb920aC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\windows\system32\MSHTML.dll86d8743e-319b-11e4-9a74-0002762a2b3f

Error: (08/31/2014 06:17:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.18414ab801cfc54abaab6adb3325C:\Program Files (x86)\World of Warcraft\Wow-64.exe

Error: (08/21/2014 02:40:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Wow-64.exe5.4.8.18414f2e801cfbd0a9ca1dc08898C:\Program Files (x86)\World of Warcraft\Wow-64.exe

==================== Memory info ===========================

Processor: AMD A6-3650 APU with Radeon™ HD Graphics
Percentage of memory in use: 35%
Total physical RAM: 7666.86 MB
Available physical RAM: 4976.69 MB
Total Pagefile: 15331.91 MB
Available Pagefile: 11493.28 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:914.52 GB) (Free:776.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:16.77 GB) (Free:2.09 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9A403FE3)

Partition: GPT Partition Type.

==================== End Of Log ============================


  • 0

Advertisements

#2
pystryker
Posted 10 September 2014 - 08:31 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Hello and welcome to Geeks to Go! My nickname is Pystryker :) , and I will be helping you with your issue today.


Before we get started, I have a few things I need to go over with you
  • If you are receiving help for this issue at another forum, please let me know so I can close this thread.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process.
  • Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
  • At the top of your post, please click on the "Follow this topic" button and make sure that the "Received notification" box is checked and set to "Instantly" This will send an email to you as soon as I reply to your topic, allowing us to solve your problem faster.
  • If any of your security programs give you a warning about any tool I ask you to use, please do not worry. All the links and tools I provide to you will be safe.
  • Please read through my instructions carefully and completely before executing them. I will lay the instructions out in a step by step order to make them easy to follow.
  • Please make sure that all the programs I ask you to download are downloaded to and run from your Desktop.
  • Please make sure you (if you are able) to print out these instructions so that you will be able to refer to them while working on your machine. Part of the solution(s) to your problem may involve us working in Safe Mode and you will need them to go by.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • This is a complicated process. It requires several steps, patience, and careful following of my instructions in the order they are given to diagnose your problems to get your machine back in working order.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. I promise to do the same for you.
  • Please make sure you reply within 3 days to my responses, if there is no reply within 3 days, the topic will be closed and you will need to request the topic be reopened.
  • Before we get started, please remember we will do our best to get your machine repaired. However, there are some cases where the only solution is a reformat and reinstall of the operating system. This is a worst case scenario though.
  • It is impossible for me to know what interactions may happen between your computer's software and the tools we will use to clean your machine. Therefore, I highly recommend you backup any critical personal files on your machine before we start.
  • If possible, please have your original Windows installation disks handy, just in case.
  • If you have any questions at all, please don't hesitate to ask. There's no such thing as a stupid question when dealing with malware.
  • If you are unsure of an instruction I give you, or if something unexepected occurs, Do NOT proceed! Stop and ask for clarification of the instruction or tell me what occurred.
  • Please remember, the fixes are for your machine and your machine ONLY! Do not use these fixes on any other machine, each fix is tailor made for your system only. Using a fix on another machine can and will cause serious damage.
  • Once we have cleaned your machine, we'll have some cleanup and prevention steps to go through. We will also provide you with some information about how to reduce your chances of infection and get some protections in place to help defend you against this in the future
  • Please be patient while I am analyzing your logs. I know you are probably scared and very frustrated with this problem, but I am a volunteer and sometimes life does get in the way. :)
  • Now, let's get started, shall we? :thumbsup:


    Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.


    Step 1: Fix with FRST

    Note: Before running this fix, please move FRST64.exe from C:\Users\Chris\Downloads to your Desktop or the fix will not work.
    • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
    • Right-click in the open notepad and select Paste).
    • Save it on the desktop as fixlist.txt

    Start
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    (Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
    C:\Users\Chris\AppData\LocalLow\UtilityWireless
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-1025731278-1972807042-3750257274-1000\...\Run: [VolunteerModel] => C:\windows\system32\rundll32.exe "C:\Users\Chris\AppData\Local\VolunteerModel\VolunteerModel.dll",DllRegisterServer <===== ATTENTION
    C:\Users\Chris\AppData\Local\VolunteerModel
    SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
    SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
    SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
    Hosts:
    Emptytemp:
    End


    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.


    Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.


    Step 2: Junkware Removal Tool


    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    Step 3: AdwCleaner


    Download ADWcleaner by clicking here. Please save it to your Desktop


    adwcleaner2_zps680e0e15.jpg
    • Double click (Vista and 7 Users)right click the adwcleaner.exe file and click Run as Adminstrator and accept the UAC prompt to run AdwCleaner
    • Close any open windows or browsers.
    • Pause your Anti-Virus program if it is running.
    • Once it starts, click on the Scan button.
    • Let the scan complete itself. This may take a few minutes.
    • Once the scan has finished, it will say "Pending, uncheck elements you don't want to remove.", don't worry about unchecking anything and then click the Clean button. When finished, it will ask to reboot. Please reboot.
    • When the machine has rebooted, a log will be produced. Please copy/paste that in your next reply. Here's how:
      • Click the Report button and the log will open. Copy and Paste the contents of the log file into your next reply.
      This report is also saved at C:\AdwCleaner[R0].txt
    Step 4: Fresh FRST Scan
    • Start Farbar's Recovery Scan Tool and press the Scan button.
    • FRST will scan your system and produce one log this time. Please post it in your next reply.
    Things I need to see in your next post:

    Please post each of these logs as a separate reply in this thread.

    Fixlog.txt Log

    Junkware Removal Tool Log

    AdwCleaner Log

    Fresh FRST Scan Log

    Question: How is the machine running now?

  • 0

#3
Declian
Posted 10 September 2014 - 09:42 PM

Declian

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 10-09-2014
Ran by Chris at 2014-09-10 23:09:14 Run:1
Running from C:\Users\Chris\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
(Google Inc.) C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe
C:\Users\Chris\AppData\LocalLow\UtilityWireless
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1025731278-1972807042-3750257274-1000\...\Run: [VolunteerModel] => C:\windows\system32\rundll32.exe "C:\Users\Chris\AppData\Local\VolunteerModel\VolunteerModel.dll",DllRegisterServer <===== ATTENTION
C:\Users\Chris\AppData\Local\VolunteerModel
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
Hosts:
Emptytemp:
End

*****************

[71592] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
[75204] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
[75444] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
[68584] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
[74612] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
[26608] C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => Process closed successfully.
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless\SysutilNoteworthy\browser.exe => No running process found
C:\Users\Chris\AppData\LocalLow\UtilityWireless => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKU\S-1-5-21-1025731278-1972807042-3750257274-1000\Software\Microsoft\Windows\CurrentVersion\Run\\VolunteerModel => value deleted successfully.
C:\Users\Chris\AppData\Local\VolunteerModel => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key deleted successfully.
"HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key deleted successfully.
"HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}" => Key not found.
"C:\Windows\System32\Drivers\etc\hosts" => Could not move.
Could not reset Hosts.
EmptyTemp: => Removed 865.5 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Chris on Wed 09/10/2014 at 23:19:52.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{A0086B90-1EE5-44CC-B944-84AD57C0C8A5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{A0086B90-1EE5-44CC-B944-84AD57C0C8A5}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 09/10/2014 at 23:27:47.97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

# AdwCleaner v3.309 - Report created 10/09/2014 at 23:36:29
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Chris - CHRIS-HP
# Running from : C:\Users\Chris\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

*************************

AdwCleaner[R0].txt - [1037 octets] - [10/09/2014 23:35:45]
AdwCleaner[S0].txt - [954 octets] - [10/09/2014 23:36:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1013 octets] ##########

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-09-2014
Ran by Chris (administrator) on CHRIS-HP on 10-09-2014 23:39:54
Running from C:\Users\Chris\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Flagship Industries, Inc.) C:\Program Files\Ventrilo\Ventrilo.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-08-12] (PDF Complete Inc)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585560 2014-06-23] (Razer Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
Startup: C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
SearchScopes: HKLM - {A0086B90-1EE5-44CC-B944-84AD57C0C8A5} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
SearchScopes: HKCU - DefaultScope {14678CCA-8A8E-4F7A-BB99-A9EA640EDB28} URL = https://www.google.c...?q={searchTerms}
SearchScopes: HKCU - {14678CCA-8A8E-4F7A-BB99-A9EA640EDB28} URL = https://www.google.c...?q={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...kw={searchTerms}
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 CalendarSynchService; C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [16384 2011-08-16] (Hewlett-Packard) [File not signed]
R2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-08-12] (PDF Complete Inc)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-10] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 RzDxgk; C:\windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-05-19] (Razer Inc)
R1 RzFilter; C:\windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-10 23:33 - 2014-09-10 23:36 - 00000000 ____D () C:\AdwCleaner
2014-09-10 23:32 - 2014-09-10 23:33 - 01370467 _____ () C:\Users\Chris\Desktop\AdwCleaner.exe
2014-09-10 23:27 - 2014-09-10 23:27 - 00001948 _____ () C:\Users\Chris\Desktop\JRT.txt
2014-09-10 23:19 - 2014-09-10 23:19 - 01016261 _____ (Thisisu) C:\Users\Chris\Downloads\JRT.exe
2014-09-10 23:19 - 2014-09-10 23:19 - 00000000 ____D () C:\windows\ERUNT
2014-09-10 23:09 - 2014-09-10 23:09 - 00000000 ____D () C:\Users\Chris\Desktop\FRST-OlderVersion
2014-09-10 18:47 - 2014-09-10 18:47 - 00001410 _____ () C:\Users\Public\Desktop\World of Warcraft Public Test.lnk
2014-09-10 18:47 - 2014-09-10 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft Public Test
2014-09-10 00:00 - 2014-09-10 00:00 - 00034705 _____ () C:\Users\Chris\Downloads\Addition.txt
2014-09-09 23:59 - 2014-09-10 23:39 - 00010780 _____ () C:\Users\Chris\Desktop\FRST.txt
2014-09-09 23:58 - 2014-09-10 23:39 - 00000000 ____D () C:\FRST
2014-09-09 23:57 - 2014-09-10 23:09 - 02105856 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-09-09 23:35 - 2014-09-10 23:38 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-09 23:35 - 2014-09-09 23:35 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-09-09 23:35 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-09-09 23:35 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-09-09 23:32 - 2014-09-09 23:34 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-09 23:13 - 2014-09-10 19:28 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft Public Test
2014-09-08 18:15 - 2014-09-08 18:16 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_2.0.1.zip
2014-09-01 01:48 - 2014-09-01 01:48 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_1.9.9a.zip
2014-09-01 01:26 - 2014-09-01 01:26 - 00000000 ____D () C:\windows\pss
2014-08-22 01:03 - 2014-08-22 01:03 - 00000000 ____D () C:\Users\Chris\Documents\Diablo III
2014-08-20 21:50 - 2014-09-10 23:14 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForChris.job
2014-08-20 21:50 - 2014-09-10 21:37 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForChris
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieUserList
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieSiteList
2014-08-19 12:14 - 2014-09-01 12:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\CrashDumps
2014-08-19 10:32 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-08-19 10:32 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-08-19 10:32 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-08-19 10:32 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-08-19 10:32 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-08-19 10:32 - 2013-11-23 14:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2014-08-19 10:32 - 2013-11-23 13:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-08-19 10:32 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-08-19 10:31 - 2014-07-31 19:41 - 00348856 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-08-19 10:31 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-08-19 10:31 - 2014-07-25 10:52 - 23645696 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-08-19 10:31 - 2014-07-25 10:02 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-08-19 10:31 - 2014-07-25 10:01 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-08-19 10:31 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-08-19 10:31 - 2014-07-25 09:30 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-08-19 10:31 - 2014-07-25 09:28 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-08-19 10:31 - 2014-07-25 09:28 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-08-19 10:31 - 2014-07-25 09:25 - 02774528 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-08-19 10:31 - 2014-07-25 09:25 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-08-19 10:31 - 2014-07-25 09:11 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-08-19 10:31 - 2014-07-25 09:10 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-08-19 10:31 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-08-19 10:31 - 2014-07-25 09:03 - 00598016 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-08-19 10:31 - 2014-07-25 09:00 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-08-19 10:31 - 2014-07-25 09:00 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-08-19 10:31 - 2014-07-25 08:59 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-08-19 10:31 - 2014-07-25 08:47 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-08-19 10:31 - 2014-07-25 08:40 - 00452096 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-08-19 10:31 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-08-19 10:31 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-08-19 10:31 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-08-19 10:31 - 2014-07-25 08:28 - 05824512 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-08-19 10:31 - 2014-07-25 08:28 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-08-19 10:31 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-08-19 10:31 - 2014-07-25 08:19 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-08-19 10:31 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-08-19 10:31 - 2014-07-25 08:17 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-08-19 10:31 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-08-19 10:31 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-08-19 10:31 - 2014-07-25 08:10 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-08-19 10:31 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-08-19 10:31 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-08-19 10:31 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-08-19 10:31 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-08-19 10:31 - 2014-07-25 07:47 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-08-19 10:31 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-19 10:31 - 2014-07-25 07:42 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-08-19 10:31 - 2014-07-25 07:39 - 02087936 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-08-19 10:31 - 2014-07-25 07:39 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-08-19 10:31 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-08-19 10:31 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-08-19 10:31 - 2014-07-25 07:23 - 13547008 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-08-19 10:31 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-08-19 10:31 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-08-19 10:31 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-08-19 10:31 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-08-19 10:31 - 2014-07-25 06:52 - 02266624 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-08-19 10:31 - 2014-07-25 06:26 - 01431040 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-08-19 10:31 - 2014-07-25 06:17 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-08-19 10:31 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-08-19 10:31 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-08-19 10:31 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-08-19 10:31 - 2014-02-03 22:32 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-08-19 10:31 - 2014-02-03 22:04 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-08-19 03:09 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2014-08-19 03:07 - 2014-08-19 03:07 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-08-19 03:05 - 2014-08-19 03:05 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:04 - 2014-08-19 03:09 - 00009161 _____ () C:\windows\IE11_main.log
2014-08-18 22:51 - 2014-08-23 00:03 - 00000000 ____D () C:\Program Files (x86)\Toontown Rewritten
2014-08-18 22:51 - 2014-08-18 22:51 - 08682361 _____ (The TTR Team) C:\Users\Chris\Downloads\TTRBetaInstaller-v1.1.3.exe
2014-08-18 22:51 - 2014-08-18 22:51 - 00001083 _____ () C:\Users\Public\Desktop\Toontown Rewritten.lnk
2014-08-18 22:51 - 2014-08-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontown Rewritten
2014-08-18 02:32 - 2014-08-18 15:53 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-18 02:32 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\windows\system32\Drivers\GEARAspiWDM.sys
2014-08-18 02:31 - 2014-08-18 02:31 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-08-18 02:30 - 2014-08-18 02:31 - 00000000 ____D () C:\ProgramData\Apple
2014-08-18 02:29 - 2014-08-18 02:30 - 113492816 _____ (Apple Inc.) C:\Users\Chris\Downloads\iTunes64Setup.exe
2014-08-16 00:17 - 2014-08-16 00:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-08-15 14:23 - 2012-02-11 02:36 - 00559104 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2014-08-15 14:23 - 2012-02-11 02:36 - 00067072 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2014-08-15 03:20 - 2013-05-10 01:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-08-15 03:20 - 2013-05-10 01:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-08-15 03:20 - 2013-05-10 00:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-08-15 03:20 - 2013-05-10 00:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-08-15 02:56 - 2014-08-16 00:18 - 00295406 _____ () C:\windows\msxml4-KB973688-enu.LOG
2014-08-15 02:46 - 2014-08-16 00:18 - 00296280 _____ () C:\windows\msxml4-KB954430-enu.LOG
2014-08-15 02:32 - 2012-07-25 23:08 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2014-08-15 02:32 - 2012-07-25 23:08 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2014-08-15 02:32 - 2012-07-25 23:08 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2014-08-15 02:32 - 2012-07-25 22:26 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2014-08-15 02:32 - 2012-07-25 22:26 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2014-08-15 02:32 - 2012-06-02 10:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-08-15 02:27 - 2012-03-01 02:46 - 00023408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fs_rec.sys
2014-08-15 02:27 - 2012-03-01 02:28 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\wmi.dll
2014-08-15 02:27 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmi.dll
2014-08-15 02:21 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-08-15 02:21 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-08-15 02:21 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-08-15 02:21 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-08-15 02:21 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-08-15 02:21 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-08-15 02:21 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-08-15 02:21 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-08-15 02:20 - 2014-08-15 02:20 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Chris\AppData\Local\Skype
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-14 22:47 - 2014-08-14 22:48 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-14 22:41 - 2014-08-14 22:41 - 35589728 _____ (Skype Technologies S.A.) C:\Users\Chris\Downloads\SkypeSetupFull.exe
2014-08-14 22:32 - 2014-08-19 17:08 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Skype
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2014-08-14 13:34 - 2014-07-08 22:03 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2014-08-14 13:34 - 2014-07-08 21:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2014-08-14 13:34 - 2014-07-08 18:38 - 00419992 _____ () C:\windows\system32\locale.nls
2014-08-14 13:34 - 2014-07-08 18:30 - 00419992 _____ () C:\windows\SysWOW64\locale.nls
2014-08-14 13:34 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2014-08-14 13:34 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-08-14 13:34 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2014-08-14 13:34 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-08-14 13:34 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2014-08-14 13:34 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-08-14 13:34 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2014-08-14 13:34 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-08-14 13:34 - 2013-10-29 22:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-08-14 13:34 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2014-08-14 13:34 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-08-14 13:34 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-08-14 13:34 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-08-14 13:34 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-08-14 13:34 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-08-14 13:34 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-08-14 13:34 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2014-08-14 13:34 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-08-14 13:34 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-08-14 13:34 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2014-08-14 13:34 - 2012-01-04 06:44 - 00509952 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2014-08-14 13:34 - 2012-01-04 04:58 - 00442880 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2014-08-14 13:34 - 2011-11-17 02:35 - 00395776 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2014-08-14 13:34 - 2011-11-17 01:35 - 00314880 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2014-08-14 13:33 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-08-14 13:33 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-08-14 13:33 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-08-14 13:33 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-08-14 13:33 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2014-08-14 13:33 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-08-14 13:33 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-08-14 13:33 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-08-14 13:33 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-08-14 13:33 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-08-14 13:33 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-08-14 13:33 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2014-08-14 13:33 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2014-08-14 13:33 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2014-08-14 13:33 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2014-08-14 13:33 - 2014-01-23 22:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-08-14 13:33 - 2013-12-03 22:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-08-14 13:33 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-08-14 13:33 - 2013-12-03 22:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-08-14 13:33 - 2013-12-03 22:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-08-14 13:33 - 2013-12-03 22:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-08-14 13:33 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-08-14 13:33 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-08-14 13:33 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-08-14 13:33 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-08-14 13:33 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-08-14 13:33 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-08-14 13:33 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-08-14 13:33 - 2013-10-03 22:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-08-14 13:33 - 2013-10-03 22:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-08-14 13:33 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2014-08-14 13:33 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2014-08-14 13:33 - 2013-08-04 22:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2014-08-14 13:33 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2014-08-14 13:33 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2014-08-14 13:33 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-08-14 13:33 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-08-14 13:33 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2014-08-14 13:33 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2014-08-14 13:33 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-08-14 13:33 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-08-14 13:33 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-08-14 13:33 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2014-08-14 13:33 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2014-08-14 13:33 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2014-08-14 13:33 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\certenc.dll
2014-08-14 13:33 - 2013-05-10 01:49 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2014-08-14 13:33 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2014-08-14 13:33 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-08-14 13:33 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2014-08-14 13:33 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2014-08-14 13:33 - 2013-01-24 02:01 - 00223752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2014-08-14 13:33 - 2012-11-22 23:13 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2014-08-14 13:33 - 2012-11-02 01:59 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2014-08-14 13:33 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnet.dll
2014-08-14 13:33 - 2012-08-21 17:01 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2014-08-14 13:33 - 2012-07-06 16:07 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2014-08-14 13:33 - 2012-07-04 18:16 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2014-08-14 13:33 - 2012-07-04 18:13 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2014-08-14 13:33 - 2012-07-04 18:13 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2014-08-14 13:33 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2014-08-14 13:33 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\browcli.dll
2014-08-14 13:33 - 2012-05-01 01:40 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2014-08-14 13:33 - 2012-04-27 23:55 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-08-14 13:32 - 2014-08-06 22:06 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-14 13:32 - 2014-08-06 22:01 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-14 13:32 - 2014-07-15 23:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-08-14 13:32 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-08-14 13:32 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-08-14 13:32 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-08-14 13:32 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-08-14 13:32 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-08-14 13:32 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-08-14 13:32 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-08-14 13:32 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-08-14 13:32 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-08-14 13:32 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-08-14 13:32 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-08-14 13:32 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2014-08-14 13:32 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2014-08-14 13:32 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-08-14 13:32 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-08-14 13:32 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-08-14 13:32 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-08-14 13:32 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-08-14 13:32 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-08-14 13:32 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-08-14 13:32 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2014-08-14 13:32 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-08-14 13:32 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-08-14 13:32 - 2014-01-27 22:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-08-14 13:32 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-08-14 13:32 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-08-14 13:32 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2014-08-14 13:32 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-08-14 13:32 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-08-14 13:32 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2014-08-14 13:32 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2014-08-14 13:32 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-08-14 13:32 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-08-14 13:32 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2014-08-14 13:32 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2014-08-14 13:32 - 2013-09-07 22:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-08-14 13:32 - 2013-09-07 22:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2014-08-14 13:32 - 2013-08-27 21:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-08-14 13:32 - 2013-07-04 08:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-08-14 13:32 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-08-14 13:32 - 2013-07-04 08:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-08-14 13:32 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-08-14 13:32 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2014-08-14 13:32 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2014-08-14 13:32 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2014-08-14 13:32 - 2013-07-04 06:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-08-14 13:32 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-08-14 13:32 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-08-14 13:32 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-08-14 13:32 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-08-14 13:32 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-08-14 13:32 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-08-14 13:32 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-08-14 13:32 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-08-14 13:32 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2014-08-14 13:32 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2014-08-14 13:32 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2014-08-14 13:32 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-08-14 13:32 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2014-08-14 13:32 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2014-08-14 13:32 - 2013-04-25 19:30 - 01505280 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2014-08-14 13:32 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-08-14 13:32 - 2013-03-31 18:52 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2014-08-14 13:32 - 2013-03-19 01:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2014-08-14 13:32 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2014-08-14 13:32 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-08-14 13:32 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-08-14 13:32 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll
2014-08-14 13:32 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-08-14 13:32 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\aaclient.dll
2014-08-14 13:32 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-08-14 13:32 - 2012-12-07 09:20 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2014-08-14 13:32 - 2012-12-07 09:15 - 02746368 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2014-08-14 13:32 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2014-08-14 13:32 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2014-08-14 13:32 - 2012-12-07 07:20 - 00045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00030720 _____ (Microsoft) C:\windows\system32\usk.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2014-08-14 13:32 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00055296 _____ (Microsoft) C:\windows\system32\cero.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00021504 _____ (Microsoft) C:\windows\system32\grb.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2014-08-14 13:32 - 2012-12-07 07:19 - 00015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\windows\SysWOW64\cero.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\windows\SysWOW64\esrb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\windows\SysWOW64\fpb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\windows\SysWOW64\oflc-nz.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\windows\SysWOW64\pegibbfc.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\windows\SysWOW64\csrr.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\windows\SysWOW64\cob-au.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\windows\SysWOW64\usk.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\windows\SysWOW64\oflc.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\windows\SysWOW64\grb.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-pt.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-fi.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi.rs
2014-08-14 13:32 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\windows\SysWOW64\djctq.rs
2014-08-14 13:32 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2014-08-14 13:32 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2014-08-14 13:32 - 2012-11-28 18:56 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-14 13:32 - 2012-10-09 14:17 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2014-08-14 13:32 - 2012-10-09 14:17 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2014-08-14 13:32 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2014-08-14 13:32 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2014-08-14 13:32 - 2012-10-03 13:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2014-08-14 13:32 - 2012-10-03 13:42 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2014-08-14 13:32 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\netevent.dll
2014-08-14 13:32 - 2012-10-03 12:07 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2014-08-14 13:32 - 2012-08-22 14:12 - 00950128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2014-08-14 13:32 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2014-08-14 13:32 - 2012-06-06 02:02 - 01133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2014-08-14 13:32 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2014-08-14 13:32 - 2012-05-14 01:26 - 00956928 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2014-08-14 13:32 - 2012-04-26 01:41 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-08-14 13:32 - 2012-04-26 01:41 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\rdpwsx.dll
2014-08-14 13:32 - 2012-04-26 01:34 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\rdrmemptylst.exe
2014-08-14 13:32 - 2012-01-13 03:12 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2014-08-14 13:32 - 2011-12-30 02:26 - 00515584 _____ (Microsoft Corporation) C:\windows\system32\timedate.cpl
2014-08-14 13:32 - 2011-12-30 01:27 - 00478720 _____ (Microsoft Corporation) C:\windows\SysWOW64\timedate.cpl
2014-08-14 13:32 - 2011-11-19 10:58 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-08-14 13:32 - 2011-11-19 10:01 - 00067072 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2014-08-14 13:32 - 2011-10-26 01:25 - 01572864 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2014-08-14 13:32 - 2011-10-26 01:25 - 00366592 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-08-14 13:32 - 2011-10-26 00:32 - 01328128 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2014-08-14 13:32 - 2011-10-26 00:32 - 00514560 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2014-08-14 13:32 - 2011-04-09 02:58 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2014-08-14 13:32 - 2011-04-09 01:56 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2014-08-14 13:32 - 2011-02-23 00:55 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2014-08-14 13:32 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-08-14 13:31 - 2014-07-15 23:25 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-08-14 13:31 - 2014-07-15 22:46 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-08-14 13:31 - 2014-07-15 22:12 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-14 13:31 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-08-14 13:31 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-08-14 13:31 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-08-14 13:31 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-08-14 13:31 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-08-14 13:31 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-08-14 13:31 - 2014-02-03 22:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-08-14 13:31 - 2014-02-03 22:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-08-14 13:31 - 2014-02-03 22:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-08-14 13:31 - 2014-02-03 22:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-08-14 13:31 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll
2014-08-14 13:31 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-08-14 13:31 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-08-14 13:31 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-08-14 13:31 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2014-08-14 13:31 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2014-08-14 13:31 - 2013-08-28 22:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-08-14 13:31 - 2013-08-28 22:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-08-14 13:31 - 2013-08-28 22:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-08-14 13:31 - 2013-08-28 21:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-08-14 13:31 - 2013-08-28 21:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2014-08-14 13:31 - 2013-08-28 21:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2014-08-14 13:31 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-14 13:31 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-08-14 13:31 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\synceng.dll
2014-08-14 13:31 - 2012-09-25 18:46 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2014-08-14 13:31 - 2012-05-05 04:36 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2014-08-14 13:31 - 2012-05-05 03:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2014-08-14 13:31 - 2012-03-17 03:58 - 00075120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2014-08-14 13:31 - 2011-12-16 04:46 - 00634880 _____ (Microsoft Corporation) C:\windows\system32\msvcrt.dll
2014-08-14 13:31 - 2011-12-16 03:52 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcrt.dll
2014-08-13 21:43 - 2014-08-13 21:43 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\WinBatch
2014-08-13 21:21 - 2014-09-10 21:37 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-08-13 21:19 - 2014-09-10 21:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HP Support Assistant
2014-08-13 03:56 - 2014-09-10 21:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HpUpdate
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\Documents\Razer
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer_Inc
2014-08-13 02:23 - 2014-08-13 02:23 - 00002131 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-08-13 02:22 - 2014-08-13 02:23 - 41954352 _____ (Razer Inc. ) C:\Users\Chris\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-08-12 20:10 - 2014-08-12 20:10 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard
2014-08-12 19:25 - 2014-08-12 19:25 - 00000000 ____D () C:\Users\Chris\AppData\Local\PunkBuster
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\Users\Chris\Documents\My Games
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-12 18:23 - 2014-08-12 18:23 - 00000219 _____ () C:\Users\Chris\Desktop\Portal 2.url
2014-08-12 18:18 - 2014-08-30 20:44 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-12 18:18 - 2014-08-12 18:18 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\Users\Chris\AppData\Local\AMD
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-12 18:17 - 2014-08-12 18:17 - 01141680 _____ () C:\Users\Chris\Downloads\SteamSetup.exe
2014-08-12 18:15 - 2014-08-12 18:15 - 00000318 _____ () C:\Users\Chris\Desktop\Curse Client.appref-ms
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Curse Advertising
2014-08-12 18:14 - 2014-09-10 23:10 - 00000000 ____D () C:\Users\Chris\AppData\Local\Deployment
2014-08-12 18:14 - 2014-08-12 18:14 - 00402696 _____ () C:\Users\Chris\Downloads\setup.exe
2014-08-12 18:14 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apps\2.0
2014-08-12 18:12 - 2014-08-12 18:12 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\library_dir
2014-08-12 18:11 - 2014-08-31 18:23 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-12 18:11 - 2014-08-12 18:11 - 00061432 _____ () C:\windows\SysWOW64\CCCInstall_201408121811423973.log
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\ATI
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\AMD
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-12 18:10 - 2014-08-12 18:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 18:06 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-12 18:05 - 2014-08-12 18:05 - 00000000 ____D () C:\AMD
2014-08-12 18:03 - 2014-08-12 18:03 - 00890744 _____ (AMD) C:\Users\Chris\Downloads\amddriverdownloader.exe
2014-08-12 07:19 - 2014-08-12 07:20 - 00000000 ____D () C:\ProgramData\Recovery
2014-08-12 06:27 - 2014-08-12 03:31 - 00000000 __RSH () C:\windows\SysWOW64\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 06:27 - 2014-08-12 03:31 - 00000000 __RSH () C:\windows\system32\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 04:12 - 2014-08-12 04:12 - 00001701 _____ () C:\Users\Chris\Desktop\World of Warcraft Launcher.lnk
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:09 - 00047826 _____ () C:\windows\DPINST.LOG
2014-08-12 04:08 - 2014-08-12 04:08 - 00001396 _____ () C:\Users\Chris\Desktop\Mumble.lnk
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____D () C:\windows\Razer Core
2014-08-12 04:08 - 2014-04-18 11:02 - 00129472 _____ (Razer, Inc.) C:\windows\system32\Drivers\RzDxgk.sys
2014-08-12 04:08 - 2014-04-18 11:02 - 00074432 _____ (Razer, Inc.) C:\windows\system32\Drivers\RzFilter.sys
2014-08-12 04:07 - 2014-08-13 02:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-08-12 04:06 - 2014-08-12 04:06 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Adobe
2014-08-12 04:05 - 2014-08-13 02:36 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer
2014-08-12 04:05 - 2014-08-13 02:23 - 00000000 ____D () C:\ProgramData\Razer
2014-08-12 04:05 - 2014-08-12 04:07 - 00002452 _____ () C:\Users\Chris\Desktop\RzSynapse.lnk
2014-08-12 04:03 - 2014-08-12 04:12 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-12 04:03 - 2014-08-12 04:03 - 00001559 _____ () C:\Users\Chris\Desktop\Battle.net Launcher.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001546 _____ () C:\Users\Chris\Desktop\Far Cry 3.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001500 _____ () C:\Users\Chris\Desktop\Hearthstone.lnk
2014-08-12 04:01 - 2014-08-12 04:01 - 00001557 _____ () C:\Users\Chris\Desktop\Diablo III Launcher.lnk
2014-08-12 04:00 - 2014-08-12 04:00 - 00001374 _____ () C:\Users\Chris\Desktop\Ventrilo.lnk
2014-08-12 03:59 - 2014-08-18 16:27 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Ventrilo
2014-08-12 03:58 - 2014-09-10 23:38 - 00000000 ____D () C:\Users\Chris\AppData\Local\Battle.net
2014-08-12 03:58 - 2014-08-29 16:23 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Battle.net
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard Entertainment
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-08-12 03:57 - 2014-08-25 16:16 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2014-08-12 03:56 - 2014-08-13 12:36 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files\Ventrilo
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Mumble
2014-08-12 03:54 - 2014-08-18 16:56 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-12 03:49 - 2014-07-08 23:06 - 00000134 _____ () C:\Users\Chris\Desktop\Norushen 25man comp.txt
2014-08-12 03:46 - 2014-08-12 03:46 - 00000000 ____D () C:\Program Files (x86)\Far Cry 3
2014-08-12 03:38 - 2014-08-26 15:59 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-08-12 03:38 - 2012-02-17 02:38 - 01031680 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2014-08-12 03:38 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2014-08-12 03:38 - 2012-02-17 00:57 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdtcp.sys
2014-08-12 03:37 - 2014-08-26 12:36 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-12 03:36 - 2014-08-15 14:16 - 00060032 _____ () C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\ATI
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Local\ATI
2014-08-12 03:35 - 2012-06-02 18:19 - 02428952 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00701976 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00057880 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-08-12 03:35 - 2012-06-02 18:19 - 00044056 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-08-12 03:35 - 2012-06-02 18:19 - 00038424 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-08-12 03:35 - 2012-06-02 18:15 - 02622464 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-08-12 03:35 - 2012-06-02 18:15 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-08-12 03:35 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-08-12 03:35 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-08-12 03:34 - 2014-09-10 21:21 - 00003926 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{D56E8CF9-621B-47E3-8568-8EA6C46B02CB}
2014-08-12 03:34 - 2014-09-01 03:34 - 00003820 _____ () C:\windows\System32\Tasks\SetupManager
2014-08-12 03:34 - 2014-08-19 03:29 - 00001419 _____ () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\VirtualStore
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\PDFC
2014-08-12 03:33 - 2014-08-13 21:42 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Hewlett-Packard
2014-08-12 03:31 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard_Company
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\TouchSmartData
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\RemEngine
2014-08-12 03:30 - 2014-09-10 23:36 - 01499743 _____ () C:\windows\WindowsUpdate.log
2014-08-12 03:30 - 2014-08-29 17:33 - 00000000 ____D () C:\Users\Chris
2014-08-12 03:30 - 2014-08-20 21:50 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard
2014-08-12 03:30 - 2014-08-12 03:30 - 00003290 _____ () C:\windows\System32\Tasks\RMCreator
2014-08-12 03:30 - 2014-08-12 03:30 - 00000020 ___SH () C:\Users\Chris\ntuser.ini
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mathematics
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Mathematics
2014-08-12 03:30 - 2012-06-06 11:56 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Macromedia
2014-08-12 03:30 - 2009-07-14 00:54 - 00000000 ___RD () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 03:30 - 2009-07-14 00:49 - 00000000 ___RD () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-10 23:39 - 2014-09-09 23:59 - 00010780 _____ () C:\Users\Chris\Desktop\FRST.txt
2014-09-10 23:39 - 2014-09-09 23:58 - 00000000 ____D () C:\FRST
2014-09-10 23:38 - 2014-09-09 23:35 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-10 23:38 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Battle.net
2014-09-10 23:37 - 2012-06-06 11:58 - 00000000 ____D () C:\ProgramData\PDFC
2014-09-10 23:37 - 2010-11-20 23:47 - 00557206 _____ () C:\windows\PFRO.log
2014-09-10 23:37 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-10 23:37 - 2009-07-14 00:51 - 00047213 _____ () C:\windows\setupact.log
2014-09-10 23:36 - 2014-09-10 23:33 - 00000000 ____D () C:\AdwCleaner
2014-09-10 23:36 - 2014-08-12 03:30 - 01499743 _____ () C:\windows\WindowsUpdate.log
2014-09-10 23:33 - 2014-09-10 23:32 - 01370467 _____ () C:\Users\Chris\Desktop\AdwCleaner.exe
2014-09-10 23:27 - 2014-09-10 23:27 - 00001948 _____ () C:\Users\Chris\Desktop\JRT.txt
2014-09-10 23:22 - 2009-07-14 00:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-10 23:22 - 2009-07-14 00:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-10 23:19 - 2014-09-10 23:19 - 01016261 _____ (Thisisu) C:\Users\Chris\Downloads\JRT.exe
2014-09-10 23:19 - 2014-09-10 23:19 - 00000000 ____D () C:\windows\ERUNT
2014-09-10 23:14 - 2014-08-20 21:50 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForChris.job
2014-09-10 23:14 - 2009-07-14 00:45 - 00295056 _____ () C:\windows\system32\FNTCACHE.DAT
2014-09-10 23:10 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Deployment
2014-09-10 23:09 - 2014-09-10 23:09 - 00000000 ____D () C:\Users\Chris\Desktop\FRST-OlderVersion
2014-09-10 23:09 - 2014-09-09 23:57 - 02105856 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-09-10 21:37 - 2014-08-20 21:50 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForChris
2014-09-10 21:37 - 2014-08-13 21:21 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-09-10 21:35 - 2014-08-13 21:19 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HP Support Assistant
2014-09-10 21:35 - 2014-08-13 03:56 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\HpUpdate
2014-09-10 21:21 - 2014-08-12 03:34 - 00003926 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{D56E8CF9-621B-47E3-8568-8EA6C46B02CB}
2014-09-10 19:28 - 2014-09-09 23:13 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft Public Test
2014-09-10 18:47 - 2014-09-10 18:47 - 00001410 _____ () C:\Users\Public\Desktop\World of Warcraft Public Test.lnk
2014-09-10 18:47 - 2014-09-10 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft Public Test
2014-09-10 00:00 - 2014-09-10 00:00 - 00034705 _____ () C:\Users\Chris\Downloads\Addition.txt
2014-09-09 23:35 - 2014-09-09 23:35 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-09 23:35 - 2014-09-09 23:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-09 23:34 - 2014-09-09 23:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-09 14:54 - 2009-07-14 01:13 - 00781790 _____ () C:\windows\system32\PerfStringBackup.INI
2014-09-08 18:16 - 2014-09-08 18:15 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_2.0.1.zip
2014-09-01 12:14 - 2014-08-19 12:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\CrashDumps
2014-09-01 03:34 - 2014-08-12 03:34 - 00003820 _____ () C:\windows\System32\Tasks\SetupManager
2014-09-01 01:48 - 2014-09-01 01:48 - 00001492 _____ () C:\Users\Chris\Downloads\oqueue_1.9.9a.zip
2014-09-01 01:26 - 2014-09-01 01:26 - 00000000 ____D () C:\windows\pss
2014-08-31 18:23 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-31 18:21 - 2012-06-06 11:56 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eReaders and Document Viewers
2014-08-30 20:44 - 2014-08-12 18:18 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-29 17:33 - 2014-08-12 03:30 - 00000000 ____D () C:\Users\Chris
2014-08-29 16:23 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Battle.net
2014-08-26 15:59 - 2014-08-12 03:38 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-08-26 12:36 - 2014-08-12 03:37 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-25 16:16 - 2014-08-12 03:57 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2014-08-23 00:03 - 2014-08-18 22:51 - 00000000 ____D () C:\Program Files (x86)\Toontown Rewritten
2014-08-22 01:03 - 2014-08-22 01:03 - 00000000 ____D () C:\Users\Chris\Documents\Diablo III
2014-08-20 21:50 - 2014-08-12 03:30 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard
2014-08-20 13:08 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\rescache
2014-08-20 07:22 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-08-20 03:02 - 2011-02-11 13:15 - 00773912 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-08-19 17:08 - 2014-08-14 22:32 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Skype
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieUserList
2014-08-19 12:57 - 2014-08-19 12:57 - 00000000 __SHD () C:\Users\Chris\AppData\Local\EmieSiteList
2014-08-19 03:29 - 2014-08-12 03:34 - 00001419 _____ () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\zh-HK
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\tr-TR
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\zh-HK
2014-08-19 03:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\tr-TR
2014-08-19 03:09 - 2014-08-19 03:04 - 00009161 _____ () C:\windows\IE11_main.log
2014-08-19 03:07 - 2014-08-19 03:07 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-08-19 03:07 - 2014-08-19 03:07 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-08-19 03:07 - 2014-08-19 03:07 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-08-19 03:07 - 2014-08-19 03:07 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-08-19 03:07 - 2014-08-19 03:07 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-08-19 03:07 - 2014-08-19 03:07 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-08-19 03:05 - 2014-08-19 03:05 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-19 03:05 - 2014-08-19 03:05 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-18 22:51 - 2014-08-18 22:51 - 08682361 _____ (The TTR Team) C:\Users\Chris\Downloads\TTRBetaInstaller-v1.1.3.exe
2014-08-18 22:51 - 2014-08-18 22:51 - 00001083 _____ () C:\Users\Public\Desktop\Toontown Rewritten.lnk
2014-08-18 22:51 - 2014-08-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontown Rewritten
2014-08-18 16:56 - 2014-08-12 03:54 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-18 16:27 - 2014-08-12 03:59 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Ventrilo
2014-08-18 15:53 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 02:32 - 2014-08-18 02:32 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-18 02:31 - 2014-08-18 02:31 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-18 02:31 - 2014-08-18 02:31 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-08-18 02:31 - 2014-08-18 02:30 - 00000000 ____D () C:\ProgramData\Apple
2014-08-18 02:30 - 2014-08-18 02:29 - 113492816 _____ (Apple Inc.) C:\Users\Chris\Downloads\iTunes64Setup.exe
2014-08-16 00:18 - 2014-08-15 02:56 - 00295406 _____ () C:\windows\msxml4-KB973688-enu.LOG
2014-08-16 00:18 - 2014-08-15 02:46 - 00296280 _____ () C:\windows\msxml4-KB954430-enu.LOG
2014-08-16 00:17 - 2014-08-16 00:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-08-15 14:16 - 2014-08-12 03:36 - 00060032 _____ () C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 14:09 - 2010-11-21 03:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-15 14:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-15 14:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Dism
2014-08-15 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-15 02:20 - 2014-08-15 02:20 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Chris\AppData\Local\Skype
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-14 22:48 - 2014-08-14 22:47 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-14 22:48 - 2012-06-06 11:48 - 00000000 ____D () C:\ProgramData\Skype
2014-08-14 22:41 - 2014-08-14 22:41 - 35589728 _____ (Skype Technologies S.A.) C:\Users\Chris\Downloads\SkypeSetupFull.exe
2014-08-13 21:44 - 2012-06-06 12:00 - 00000000 ___RD () C:\Program Files\Online Services
2014-08-13 21:44 - 2012-06-06 11:48 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2014-08-13 21:44 - 2011-02-11 12:32 - 00000000 ____D () C:\SWSETUP
2014-08-13 21:43 - 2014-08-13 21:43 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\WinBatch
2014-08-13 21:43 - 2012-06-06 11:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP TouchSmart
2014-08-13 21:42 - 2014-08-12 03:33 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Hewlett-Packard
2014-08-13 21:21 - 2012-06-06 11:40 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-08-13 12:36 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\Documents\Razer
2014-08-13 02:37 - 2014-08-13 02:37 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer_Inc
2014-08-13 02:36 - 2014-08-12 04:05 - 00000000 ____D () C:\Users\Chris\AppData\Local\Razer
2014-08-13 02:23 - 2014-08-13 02:23 - 00002131 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-08-13 02:23 - 2014-08-13 02:22 - 41954352 _____ (Razer Inc. ) C:\Users\Chris\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-08-13 02:23 - 2014-08-12 04:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-08-13 02:23 - 2014-08-12 04:05 - 00000000 ____D () C:\ProgramData\Razer
2014-08-12 20:10 - 2014-08-12 20:10 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard
2014-08-12 19:25 - 2014-08-12 19:25 - 00000000 ____D () C:\Users\Chris\AppData\Local\PunkBuster
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\Users\Chris\Documents\My Games
2014-08-12 19:24 - 2014-08-12 19:24 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-12 18:23 - 2014-08-12 18:23 - 00000219 _____ () C:\Users\Chris\Desktop\Portal 2.url
2014-08-12 18:18 - 2014-08-12 18:18 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\Users\Chris\AppData\Local\AMD
2014-08-12 18:18 - 2014-08-12 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-12 18:17 - 2014-08-12 18:17 - 01141680 _____ () C:\Users\Chris\Downloads\SteamSetup.exe
2014-08-12 18:15 - 2014-08-12 18:15 - 00000318 _____ () C:\Users\Chris\Desktop\Curse Client.appref-ms
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2014-08-12 18:15 - 2014-08-12 18:15 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Curse Advertising
2014-08-12 18:14 - 2014-08-12 18:14 - 00402696 _____ () C:\Users\Chris\Downloads\setup.exe
2014-08-12 18:14 - 2014-08-12 18:14 - 00000000 ____D () C:\Users\Chris\AppData\Local\Apps\2.0
2014-08-12 18:12 - 2014-08-12 18:12 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\library_dir
2014-08-12 18:11 - 2014-08-12 18:11 - 00061432 _____ () C:\windows\SysWOW64\CCCInstall_201408121811423973.log
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\ATI
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\ProgramData\AMD
2014-08-12 18:11 - 2014-08-12 18:11 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-12 18:11 - 2014-08-12 18:06 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-12 18:11 - 2012-06-06 11:42 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-12 18:10 - 2014-08-12 18:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 18:10 - 2012-06-06 11:42 - 00000000 ____D () C:\Program Files\AMD
2014-08-12 18:05 - 2014-08-12 18:05 - 00000000 ____D () C:\AMD
2014-08-12 18:03 - 2014-08-12 18:03 - 00890744 _____ (AMD) C:\Users\Chris\Downloads\amddriverdownloader.exe
2014-08-12 17:51 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-08-12 17:50 - 2009-07-14 01:32 - 00000000 ____D () C:\windows\system32\restore
2014-08-12 17:49 - 2012-06-06 12:01 - 00000000 ____D () C:\ProgramData\Norton
2014-08-12 07:20 - 2014-08-12 07:19 - 00000000 ____D () C:\ProgramData\Recovery
2014-08-12 06:27 - 2009-07-14 00:46 - 00005075 _____ () C:\windows\DtcInstall.log
2014-08-12 06:27 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\sysprep
2014-08-12 06:26 - 2011-02-11 13:04 - 00005949 _____ () C:\windows\TSSysprep.log
2014-08-12 06:25 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 04:12 - 2014-08-12 04:12 - 00001701 _____ () C:\Users\Chris\Desktop\World of Warcraft Launcher.lnk
2014-08-12 04:12 - 2014-08-12 04:03 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:09 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-08-12 04:09 - 2014-08-12 04:08 - 00047826 _____ () C:\windows\DPINST.LOG
2014-08-12 04:08 - 2014-08-12 04:08 - 00001396 _____ () C:\Users\Chris\Desktop\Mumble.lnk
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-08-12 04:08 - 2014-08-12 04:08 - 00000000 ____D () C:\windows\Razer Core
2014-08-12 04:07 - 2014-08-12 04:05 - 00002452 _____ () C:\Users\Chris\Desktop\RzSynapse.lnk
2014-08-12 04:06 - 2014-08-12 04:06 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\Adobe
2014-08-12 04:03 - 2014-08-12 04:03 - 00001559 _____ () C:\Users\Chris\Desktop\Battle.net Launcher.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001546 _____ () C:\Users\Chris\Desktop\Far Cry 3.lnk
2014-08-12 04:02 - 2014-08-12 04:02 - 00001500 _____ () C:\Users\Chris\Desktop\Hearthstone.lnk
2014-08-12 04:01 - 2014-08-12 04:01 - 00001557 _____ () C:\Users\Chris\Desktop\Diablo III Launcher.lnk
2014-08-12 04:00 - 2014-08-12 04:00 - 00001374 _____ () C:\Users\Chris\Desktop\Ventrilo.lnk
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\Users\Chris\AppData\Local\Blizzard Entertainment
2014-08-12 03:58 - 2014-08-12 03:58 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files\Ventrilo
2014-08-12 03:56 - 2014-08-12 03:56 - 00000000 ____D () C:\Program Files (x86)\Mumble
2014-08-12 03:46 - 2014-08-12 03:46 - 00000000 ____D () C:\Program Files (x86)\Far Cry 3
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Roaming\ATI
2014-08-12 03:35 - 2014-08-12 03:35 - 00000000 ____D () C:\Users\Chris\AppData\Local\ATI
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\VirtualStore
2014-08-12 03:34 - 2014-08-12 03:34 - 00000000 ____D () C:\Users\Chris\AppData\Local\PDFC
2014-08-12 03:34 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\Hewlett-Packard_Company
2014-08-12 03:33 - 2012-06-06 11:14 - 00000000 __RHD () C:\SYSTEM.SAV
2014-08-12 03:31 - 2014-08-12 06:27 - 00000000 __RSH () C:\windows\SysWOW64\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 03:31 - 2014-08-12 06:27 - 00000000 __RSH () C:\windows\system32\Drivers\103C_HP_cPC_p7-1234_Y53316J_0U_QMXU22702XP_E12NA1MRW605_4A_I2ACF_SPEGATRON CORPORATION_V1.03_B7.18_T120326_W73-1_L409_M7667_J1000_7AMD_8F10_92.60_#120808_N10EC8168;18145390_Z_G1002964A.MRK
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\TouchSmartData
2014-08-12 03:31 - 2014-08-12 03:31 - 00000000 ____D () C:\Users\Chris\AppData\Local\RemEngine
2014-08-12 03:31 - 2012-06-06 11:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-08-12 03:31 - 2012-06-06 11:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-08-12 03:31 - 2012-06-06 11:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-08-12 03:31 - 2012-06-06 11:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-08-12 03:31 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-12 03:31 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-08-12 03:30 - 2014-08-12 03:30 - 00003290 _____ () C:\windows\System32\Tasks\RMCreator
2014-08-12 03:30 - 2014-08-12 03:30 - 00000020 ___SH () C:\Users\Chris\ntuser.ini
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mathematics
2014-08-12 03:30 - 2014-08-12 03:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Mathematics
2014-08-12 03:30 - 2011-02-11 13:00 - 00000000 ____D () C:\windows\Panther

Some content of TEMP:
====================
C:\Users\Chris\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-29 15:59

==================== End Of Log ============================

 


  • 0

#4
Declian
Posted 10 September 2014 - 09:43 PM

Declian

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

The performance of my computer has drastically improved!! Thanks a ton!

-Declian


  • 0

#5
pystryker
Posted 11 September 2014 - 04:34 AM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts

The performance of my computer has drastically improved!! Thanks a ton!
-Declian


Excellent :) Let's continue the cleaning process. :thumbsup:



Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.


Step 1: Scan with Malwarebytes


Please download Malwarebytes Anti-Malware to your desktop
Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings_zpsb6b9ada0.jpg

Go back to the Dashboard and select Scan Now

MBAMScan_zps8ba7d192.jpg

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot_zps9089ab30.jpg

MBAMLog_zpsade07f42.jpg

On completion of the scan (or after the reboot), start MBAM,

Click History, then Application Logs, then check the Select box by the first Scan Log in the list.

Click View, then click Export, select text file and save to the desktop as MBAM.txt and post in your next reply.



Step 2: Scan with ESET Online Scanner


Please note: You can use Internet Explorer or Firefox for this step. Either browser used will have to be ran in admin mode.

Right click on either the Internet Explorer icon or the Firefox icon in the Start Menu or Quick Launch Bar on the Task bar and select Run as Administrator from the menu.

If you use Firefox, you will be prompted to download esetsmartinstaller_enu.exe. Please do so, then double click it to install it.

Please click on this link and then click the ESET Online Scanner bar ---->esetbar_zps93905f48.jpg
  • Select the option YES, I accept the Terms of Use then click on Start
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked.
  • Make sure that the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology
  • Now click on Start
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • Now click on Finish
  • Use notepad to open the logfile located at C:\Program Files(x86)\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.
Step 3: SecurityCheck Scan


Download Security Checksecuritycheck_zpsb7736812.jpg by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • NOTE: If SecurityCheck aborts and you get the following message: UNSUPPORTED OPERATING SYSTEM! ABORTED! try rebooting the system and then run SecurityCheck again.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Things I need to see in your next post:
  • ESET Scan Log
  • MBAM Log
  • SecurityCheck Log

  • 0

#6
Declian
Posted 11 September 2014 - 03:26 PM

Declian

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# product=EOS
# version=8
# IEXPLORE.EXE=11.00.9600.16428 (winblue_gdr.131013-1700)
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=6e3b608e1c034f4ebe9bd69a55bb67b6
# engine=20112
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-09-11 08:39:51
# local_time=2014-09-11 04:39:51 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 0 162011441 0 0
# scanned=142221
# found=2
# cleaned=0
# scan_time=5673
sh=E353A39225365AD9B250D2FE2F0E549E3B6362F1 ft=1 fh=f0d062cb3803b664 vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\FRST\Quarantine\C\Users\Chris\AppData\Local\VolunteerModel\VolunteerModel.dll"
sh=E353A39225365AD9B250D2FE2F0E549E3B6362F1 ft=1 fh=f0d062cb3803b664 vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Chris\AppData\LocalLow\yetqxes.dll"

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9/11/2014
Scan Time: 2:47:42 PM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.11.06
Rootkit Database: v2014.09.10.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Chris

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 302922
Time Elapsed: 8 min, 6 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

 

 

 Results of screen317's Security Check version 0.99.87 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
````````Process Check: objlist.exe by Laurent```````` 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbam.exe 
 Malwarebytes Anti-Malware mbamscheduler.exe -?-  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 4%
````````````````````End of Log``````````````````````
 

 


  • 0

#7
pystryker
Posted 11 September 2014 - 06:00 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Hello :)

Thank you for the logs. ESET only found 2 items, and one was already quarantined. Let's get rid of the other one. :thumbsup:
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste).
  • Save it your desktop as fixlist.txt

Start
C:\Users\Chris\AppData\LocalLow\yetqxes.dll
End


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating systemOn Vista or Windows 7


Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.

Things I need to see in your next post

Fixlog.txt Log
  • 0

#8
Declian
Posted 11 September 2014 - 06:17 PM

Declian

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 10-09-2014
Ran by Chris at 2014-09-11 20:16:15 Run:2
Running from C:\Users\Chris\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
C:\Users\Chris\AppData\LocalLow\yetqxes.dll
End

*****************

C:\Users\Chris\AppData\LocalLow\yetqxes.dll => Moved successfully.

==== End of Fixlog ====


  • 0

#9
pystryker
Posted 11 September 2014 - 07:06 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Very good :) That takes care of the last file and with that, your logs are CLEAN! :thumbsup: :) But we still have a couple things we need to address namely:
  • I need to remove the tools we installed on your machine.
  • I also have some tips and information for you to reduce your chances of infection.
Ok, here we go:


Step 1: Tool Removal with Delfix and Creation of a clean restore point
  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Create registry backup
    • Purge system restore
    delfix.jpg
  • Click Run
The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.

You can uninstall ESET Online Scanner at this time.

I recommend keeping Malwarebytes Anti-Malware installed. Make sure to update it and run it at least once a week. If it finds things such as PUP's (Potentially Unwanted Programs) you can delete those with no worries. However, if it finds something like a trojan, come see us.


Step 2: Tips, Information, and Optional Installation of Unchecky


Watch what you open in your emails. If you get an email from an unknown source with any attached files, do not open it.

Be careful of the websites you visit.

When installing new programs, don't be "click happy" and click through the screens. Many programs come with adware in them and are set to install them by default. Several programs require that you uncheck or select no to prevent the installation. Take you time and read each screen as you go. :)

To help protect yourself while on the web, I recommend you read How did I get infected in the first place?

Installation of Unchecky

This is a very good little program that will automatically uncheck any boxes during a software installation. This helps prevent the software from installing any malware that is by default checked while the program is being installed.

Click here to be taken to Unchecky.com

Click the very large Download button.

Click Save

Once downloaded, double click the program (Vista, Win 7, and 8, right click and Run as Administrator)

Once open, click the Install button.


unchecky1_zps667e512d.jpg


Then click Finish

unchecky2_zpsca4e7d0d.jpg


Unchecky is now installed and will help you keep unwanted check boxes unchecked. :thumbsup:

Are there any further issues I can assist you with?
  • 0

#10
Declian
Posted 11 September 2014 - 10:11 PM

Declian

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

# DelFix v10.8 - Logfile created 12/09/2014 at 00:08:31
# Updated 29/07/2014 by Xplode
# Username : Chris - CHRIS-HP
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Chris\Desktop\FRST-OlderVersion
Deleted : C:\Users\Chris\Desktop\AdwCleaner.exe
Deleted : C:\Users\Chris\Desktop\Fixlog.txt
Deleted : C:\Users\Chris\Desktop\FRST.txt
Deleted : C:\Users\Chris\Desktop\FRST64.exe
Deleted : C:\Users\Chris\Desktop\JRT.txt
Deleted : C:\Users\Chris\Desktop\SecurityCheck.exe
Deleted : C:\Users\Chris\Downloads\Addition.txt
Deleted : C:\Users\Chris\Downloads\JRT.exe
Deleted : HKLM\SOFTWARE\AdwCleaner

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #15 [Scheduled Checkpoint | 08/29/2014 20:06:01]
Deleted : RP #16 [Removed Blio. | 08/31/2014 22:19:45]
Deleted : RP #17 [Scheduled Checkpoint | 09/11/2014 21:11:19]

New restore point created !

########## - EOF - ##########

 

 

Everything seems to be running a lot better, thank you.


  • 0

#11
pystryker
Posted 12 September 2014 - 04:33 AM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts

Everything seems to be running a lot better, thank you.


You're quite welcome, safe surfing! :wave:

pystryker
  • 0

#12
pystryker
Posted 12 September 2014 - 04:34 AM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics


Also tagged with one or more of these keywords: Malware

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP