Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Malware, Malwre and.... Oh yeah, alware! [Closed]

malware

  • This topic is locked This topic is locked

#1
ededdneddy

ededdneddy

    New Member

  • Member
  • Pip
  • 4 posts

I installed cheat engine and then malware happened. My sound card started having problems and skype was playing up.

 

OTL logfile created on: 11/02/2015 16:26:01 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\EdEddnEddy\Downloads
64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
7.95 Gb Total Physical Memory | 6.34 Gb Available Physical Memory | 79.70% Memory free
9.20 Gb Paging File | 7.41 Gb Available in Paging File | 80.49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.00 Gb Total Space | 644.05 Gb Free Space | 69.18% Space Free | Partition Type: NTFS
 
Computer Name: ED | User Name: EdEddnEddy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2015/02/11 16:25:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\EdEddnEddy\Downloads\OTL.exe
PRC - [2015/02/04 09:02:55 | 000,843,592 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/02/03 13:59:01 | 000,076,152 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2015/01/23 22:33:46 | 001,530,048 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
PRC - [2015/01/23 22:33:44 | 001,942,720 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2015/01/23 22:33:44 | 000,834,752 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2015/01/06 21:58:48 | 003,440,080 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
PRC - [2015/01/06 21:49:50 | 000,309,232 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
PRC - [2014/07/14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2014/07/14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2015/02/04 09:02:53 | 014,965,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll
MOD - [2015/02/04 09:02:51 | 009,170,760 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
MOD - [2015/02/04 09:02:47 | 001,117,512 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
MOD - [2015/02/04 09:02:45 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
MOD - [2015/01/23 22:34:04 | 002,227,904 | ---- | M] () -- C:\Program Files (x86)\Steam\video.dll
MOD - [2015/01/23 22:33:44 | 000,696,512 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2015/01/15 23:42:26 | 034,641,288 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2015/01/15 23:42:26 | 001,709,960 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
MOD - [2014/12/02 00:29:50 | 005,002,752 | ---- | M] () -- C:\Program Files (x86)\Steam\v8.dll
MOD - [2014/12/02 00:29:34 | 001,612,800 | ---- | M] () -- C:\Program Files (x86)\Steam\icui18n.dll
MOD - [2014/12/02 00:29:34 | 001,210,368 | ---- | M] () -- C:\Program Files (x86)\Steam\icuuc.dll
MOD - [2014/12/01 21:31:16 | 002,396,672 | ---- | M] () -- C:\Program Files (x86)\Steam\libavcodec-56.dll
MOD - [2014/12/01 21:31:16 | 000,485,888 | ---- | M] () -- C:\Program Files (x86)\Steam\libswscale-3.dll
MOD - [2014/12/01 21:31:16 | 000,479,744 | ---- | M] () -- C:\Program Files (x86)\Steam\libavformat-56.dll
MOD - [2014/12/01 21:31:16 | 000,442,880 | ---- | M] () -- C:\Program Files (x86)\Steam\libavutil-54.dll
MOD - [2014/12/01 21:31:16 | 000,332,800 | ---- | M] () -- C:\Program Files (x86)\Steam\libavresample-2.dll
MOD - [2014/11/11 18:47:56 | 000,774,656 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2015/01/31 18:57:50 | 000,076,152 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - [2014/11/21 02:12:40 | 000,244,736 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014/10/31 04:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/09/24 17:23:07 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/09/24 16:56:28 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/09/24 16:56:26 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/09/24 16:39:27 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/09/24 16:30:20 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/09/24 16:30:19 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/09/24 16:30:12 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/09/24 16:30:11 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/09/24 16:30:10 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/09/24 16:30:06 | 000,399,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/09/24 15:57:43 | 000,183,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2014/09/24 15:57:42 | 000,090,464 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV:64bit: - [2014/09/22 03:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/09/02 22:08:01 | 001,674,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/08/16 00:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2014/08/16 00:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/08/22 11:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 11:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 11:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 11:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 11:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 10:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 10:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 09:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 09:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 09:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 09:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Start_Pending] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 09:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 09:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 09:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2015/02/03 13:59:01 | 000,076,152 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2015/01/27 19:58:49 | 000,817,536 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2015/01/27 11:40:45 | 001,910,128 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015/01/23 22:33:44 | 000,834,752 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/01/06 21:58:48 | 003,440,080 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2015/01/06 21:49:50 | 000,309,232 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/09/24 17:23:06 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/07/14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014/07/14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2013/08/22 03:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 02:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2015/02/11 14:57:49 | 000,022,512 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPPD.sys -- (SPPD)
DRV:64bit: - [2014/12/12 00:51:20 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2014/12/08 21:24:26 | 000,260,888 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2014/11/21 02:40:00 | 018,959,360 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014/11/21 02:08:54 | 000,589,312 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014/11/18 21:42:04 | 000,203,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2014/10/13 02:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/10/13 02:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/10/13 02:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/10/10 01:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/10/05 20:41:40 | 000,124,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2014/09/30 17:47:28 | 000,129,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2014/09/24 20:03:42 | 000,277,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgwfpa.sys -- (Avgwfpa)
DRV:64bit: - [2014/09/24 17:54:03 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/09/24 16:56:35 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/09/24 16:56:30 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/09/24 16:56:27 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/09/24 16:39:17 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2014/09/24 16:39:12 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/09/24 16:39:12 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/09/24 16:30:11 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/09/24 16:30:08 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/09/24 16:29:53 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/09/24 16:29:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/09/24 16:29:51 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/09/24 16:29:51 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/09/24 16:29:51 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/09/24 16:29:51 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/09/24 15:57:45 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
DRV:64bit: - [2014/09/24 15:57:35 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2014/09/24 15:57:34 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:64bit: - [2014/09/24 15:57:34 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2014/09/24 15:57:34 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2014/09/24 15:57:34 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2014/09/22 03:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/09/22 03:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/09/22 02:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/08/28 20:47:24 | 000,243,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2014/08/15 00:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/07/18 14:53:26 | 000,313,624 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2014/06/18 20:03:34 | 000,153,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgdiska.sys -- (Avgdiska)
DRV:64bit: - [2014/06/18 20:03:20 | 000,031,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2014/03/11 14:20:04 | 000,222,720 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWB6.sys -- (AtiHDAudioService)
DRV:64bit: - [2013/09/04 15:35:06 | 000,020,496 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\avgboota.sys -- (Avgboota)
DRV:64bit: - [2013/08/22 13:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 13:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 12:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 12:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 12:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 12:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 12:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 12:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 12:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 12:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 12:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 12:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 12:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 12:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 12:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 12:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 12:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 12:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 12:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 12:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 12:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 12:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 12:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 12:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 12:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 12:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 12:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 12:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 12:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 11:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 11:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 11:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 11:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 11:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 11:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 11:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 11:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 11:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 11:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 11:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 11:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 11:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 11:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 11:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 11:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 11:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 11:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 11:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 11:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 08:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 23:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 00:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 22:32:06 | 000,047,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2013/07/30 18:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 19:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 14:46:17 | 000,591,360 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/09/22 23:17:24 | 000,021,160 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd)
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com...=SP2203TB_sp_ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B3 3D 5E 11 87 37 D0 01  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://www.trovi.com...=SP2203TB_sp_ie
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\EdEddnEddy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
 
 
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_1\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2013/08/22 13:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Positive Finds) - {30c85a3d-1d96-4589-b63f-91fb7ef45a41} - C:\Program Files (x86)\Positive Finds\Extensions\30c85a3d-1d96-4589-b63f-91fb7ef45a41.dll ()
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2015\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Raptr] C:\Program Files (x86)\Raptr\raptrstub.exe (Raptr, Inc)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Spotify] C:\Users\EdEddnEddy\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D6EC88BC-297C-4AD7-95F5-3DBB4F9FE1E4}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2015/02/11 15:56:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ElevatedDiagnostics
[2015/02/11 14:32:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\AVG2015
[2015/02/11 14:30:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\TuneUp Software
[2015/02/11 14:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2015/02/11 14:29:45 | 000,000,000 | -H-D | C] -- C:\$AVG
[2015/02/11 14:29:45 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2015
[2015/02/11 14:28:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2015/02/11 13:22:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\MFAData
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Avg2015
[2015/02/11 13:09:36 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\avaxvbxvfy
[2015/02/11 13:09:29 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\SearchProtect
[2015/02/11 13:09:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchProtect
[2015/02/11 13:08:46 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\My Cheat Tables
[2015/02/11 13:08:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ORBTR
[2015/02/11 13:08:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
[2015/02/11 13:08:16 | 000,000,000 | ---D | C] -- C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
[2015/02/11 13:08:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Positive Finds
[2015/02/11 13:08:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
[2015/02/11 13:07:56 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\OpenCandy
[2015/02/11 13:07:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6.4
[2015/02/10 21:12:45 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\New Unity Project
[2015/02/10 21:12:18 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Unity
[2015/02/10 21:09:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Apple Computer
[2015/02/10 21:09:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Apple Computer
[2015/02/10 21:09:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Unity
[2015/02/10 21:08:33 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Unity
[2015/02/10 21:06:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Unity Projects
[2015/02/10 21:06:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity
[2015/02/10 20:58:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Unity
[2015/02/09 21:08:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Day 1 Studios
[2015/02/08 21:40:48 | 000,000,000 | ---D | C] -- C:\rads
[2015/02/05 22:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
[2015/02/05 22:29:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Guild Wars 2
[2015/02/05 22:09:20 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Guild Wars 2
[2015/02/04 18:18:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Nexus Mod Manager
[2015/02/04 18:18:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Black_Tree_Gaming
[2015/02/04 17:30:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
[2015/02/04 17:30:50 | 000,000,000 | ---D | C] -- C:\Program Files\Nexus Mod Manager
[2015/02/04 17:25:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Programs
[2015/02/03 23:31:21 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Skype
[2015/02/03 23:31:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Skype
[2015/02/03 23:31:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2015/02/03 23:31:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2015/02/03 23:31:08 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2015/02/03 23:31:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2015/02/03 16:47:03 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\BFH Beta 2
[2015/02/03 13:59:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline Beta
[2015/02/02 18:35:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Square Enix
[2015/02/02 18:15:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\LolClient
[2015/02/02 18:15:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Macromedia
[2015/02/02 14:26:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Riot Games
[2015/02/02 14:16:44 | 000,000,000 | ---D | C] -- C:\Riot Games
[2015/02/02 14:16:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2015/02/02 14:15:51 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Riot Games
[2015/02/02 14:09:46 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\AMD
[2015/02/02 14:09:44 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Blizzard Entertainment
[2015/02/02 14:09:35 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Battle.net
[2015/02/02 14:09:35 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Battle.net
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battle.net
[2015/02/02 14:03:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2015/02/02 11:08:11 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ArmA 2
[2015/02/02 11:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
[2015/02/01 16:34:57 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Skyrim
[2015/01/31 17:24:12 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\BFBC2
[2015/01/30 20:28:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Allmyapps
[2015/01/30 20:28:32 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\CrashRpt
[2015/01/30 20:24:16 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allmyapps
[2015/01/30 20:22:55 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Allmyapps
[2015/01/26 10:35:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\PunkBuster
[2015/01/26 10:17:43 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ESN
[2015/01/26 09:40:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Battlefield 4
[2015/01/26 09:37:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
[2015/01/26 08:49:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2015/01/26 02:25:12 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2015/01/26 02:25:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Bohemia Interactive Studio
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ArmA 2 OA
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\ArmA 2
[2015/01/25 16:22:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BattlEye
[2015/01/25 16:22:17 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
[2015/01/25 16:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2015/01/25 12:39:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
[2015/01/25 12:39:26 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\library_dir
[2015/01/25 12:34:53 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Raptr
[2015/01/25 12:34:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Raptr
[2015/01/25 12:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2015/01/25 12:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2015/01/25 12:34:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2015/01/25 12:34:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD
[2015/01/25 12:30:34 | 000,000,000 | ---D | C] -- C:\AMD
[2015/01/24 19:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2015/01/24 19:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2015/01/24 19:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2015/01/24 19:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2015/01/24 19:51:33 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Ubisoft Game Launcher
[2015/01/24 19:51:21 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
[2015/01/24 19:51:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2015/01/24 17:27:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\My Games
[2015/01/24 11:03:01 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Spotify
[2015/01/24 10:52:17 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Spotify
[2015/01/24 04:08:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2015/01/24 03:48:53 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2015/01/24 03:40:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2015/01/24 03:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2015/01/24 03:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2015/01/24 03:39:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/01/24 03:38:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2015/01/24 03:38:09 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Google
[2015/01/24 02:09:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\ATI
[2015/01/24 02:09:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ATI
[2015/01/24 02:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2015/01/24 02:07:42 | 000,142,848 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\SysNative\drivers\amdacpksl.sys
[2015/01/24 02:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2015/01/24 02:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2015/01/24 02:07:25 | 000,806,912 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_14.100.dll
[2015/01/24 02:06:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2015/01/24 02:06:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2015/01/24 02:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2015/01/24 02:05:01 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2015/01/23 22:46:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Goat Simulator
[2015/01/23 22:46:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Goat Simulator
[2015/01/23 22:42:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2015/01/23 22:41:40 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Origin
[2015/01/23 22:41:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Origin
[2015/01/23 22:39:37 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Desktop\Goat Simulator
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2015/01/23 22:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2015/01/23 21:49:52 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Criterion Games
[2015/01/23 07:34:12 | 000,000,000 | ---D | C] -- C:\Games
[2015/01/23 07:06:50 | 000,000,000 | -HSD | C] -- C:\Users\EdEddnEddy\AppData\Local\EmieUserList
[2015/01/23 07:06:50 | 000,000,000 | -HSD | C] -- C:\Users\EdEddnEddy\AppData\Local\EmieSiteList
[2015/01/23 07:06:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Diagnostics
[2015/01/23 07:04:18 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2015/01/23 07:04:18 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2015/01/23 07:04:17 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Searches
[2015/01/23 07:04:17 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Contacts
[2015/01/23 07:04:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Adobe
[2015/01/23 07:04:10 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\VirtualStore
[2015/01/23 07:03:59 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Packages
[2015/01/23 07:03:50 | 000,000,000 | --SD | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Videos
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Saved Games
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Pictures
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Music
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Links
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Favorites
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Downloads
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Documents
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Desktop
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2015/01/23 07:03:50 | 000,000,000 | -H-D | C] -- C:\Users\EdEddnEddy\AppData
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Temp
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Microsoft
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2015/01/23 07:03:42 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2015/01/23 07:02:15 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2015/01/23 06:54:59 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2015/01/23 06:54:49 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2015/01/23 06:54:03 | 000,000,000 | ---D | C] -- C:\Windows\Panther
 
========== Files - Modified Within 30 Days ==========
 
[2015/02/11 16:05:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/02/11 16:04:17 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/02/11 16:03:40 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/02/11 16:03:40 | 2536,636,415 | -HS- | M] () -- C:\hiberfil.sys
[2015/02/11 15:52:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/11 14:57:49 | 000,022,512 | ---- | M] () -- C:\Windows\SysNative\drivers\SPPD.sys
[2015/02/11 14:30:58 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/02/11 13:08:02 | 000,001,097 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Cheat Engine.lnk
[2015/02/10 22:48:50 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2015/02/10 22:48:50 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2015/02/10 21:06:57 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Unity.lnk
[2015/02/10 11:04:21 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2015/02/09 21:00:43 | 000,863,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/02/09 21:00:43 | 000,734,492 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/02/09 21:00:43 | 000,139,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/02/08 21:43:30 | 000,008,163 | ---- | M] () -- C:\Users\EdEddnEddy\Documents\LoL error.PNG
[2015/02/06 22:17:21 | 000,002,203 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/02/06 18:01:59 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2015/02/05 22:29:34 | 000,000,944 | ---- | M] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
[2015/02/04 17:30:53 | 000,000,902 | ---- | M] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2015/02/03 23:31:10 | 000,002,713 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2015/02/03 13:59:20 | 000,001,165 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield Hardline Beta.lnk
[2015/02/03 13:59:01 | 000,076,152 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2015/02/02 14:16:45 | 000,001,625 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/02/02 14:09:32 | 000,001,156 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2015/01/31 18:57:50 | 000,076,152 | ---- | M] () -- C:\Windows\SysNative\PnkBstrA.exe
[2015/01/31 17:23:01 | 002,434,856 | ---- | M] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2015/01/30 20:24:16 | 000,000,966 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Allmyapps.lnk
[2015/01/29 21:21:15 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/01/26 14:06:03 | 000,000,186 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\New shortcut (2).lnk
[2015/01/26 11:14:47 | 000,337,808 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/01/24 19:51:21 | 000,001,217 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Uplay.lnk
[2015/01/24 11:03:01 | 000,001,838 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Spotify.lnk
[2015/01/24 03:40:46 | 000,000,975 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2015/01/24 02:07:40 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2015/01/23 22:46:34 | 000,002,331 | ---- | M] () -- C:\Users\Public\Desktop\Goat Simulator.lnk
[2015/01/23 22:46:34 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\Cat-A-Cat Games.lnk
[2015/01/23 22:14:07 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2015/01/23 21:52:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2015/01/23 07:35:08 | 000,001,574 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Jazzpunk.lnk
[2015/01/23 07:32:05 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/01/23 06:58:00 | 000,042,522 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2015/01/23 06:58:00 | 000,042,522 | ---- | M] () -- C:\Windows\SysNative\license.rtf
 
========== Files Created - No Company Name ==========
 
[2015/02/11 14:57:48 | 000,022,512 | ---- | C] () -- C:\Windows\SysNative\drivers\SPPD.sys
[2015/02/11 14:30:58 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/02/11 13:08:02 | 000,001,097 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Cheat Engine.lnk
[2015/02/10 21:06:57 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Unity.lnk
[2015/02/08 21:43:30 | 000,008,163 | ---- | C] () -- C:\Users\EdEddnEddy\Documents\LoL error.PNG
[2015/02/06 18:01:59 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2015/02/05 22:29:34 | 000,000,944 | ---- | C] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
[2015/02/04 17:30:53 | 000,000,902 | ---- | C] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2015/02/03 23:31:10 | 000,002,713 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2015/02/03 13:59:20 | 000,001,165 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield Hardline Beta.lnk
[2015/02/02 14:16:45 | 000,001,625 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/02/02 14:09:32 | 000,001,156 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2015/01/31 17:24:17 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2015/01/31 17:23:01 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2015/01/30 20:24:16 | 000,000,966 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Allmyapps.lnk
[2015/01/29 21:21:15 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/01/26 14:06:03 | 000,000,186 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\New shortcut (2).lnk
[2015/01/26 10:45:32 | 000,076,152 | ---- | C] () -- C:\Windows\SysNative\PnkBstrA.exe
[2015/01/25 15:19:36 | 000,050,745 | ---- | C] () -- C:\Windows\SysNative\srms.dat
[2015/01/25 15:14:03 | 000,389,176 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/01/24 19:51:23 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2015/01/24 19:51:23 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2015/01/24 19:51:22 | 000,076,152 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2015/01/24 19:51:21 | 000,001,217 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Uplay.lnk
[2015/01/24 11:03:01 | 000,001,838 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Spotify.lnk
[2015/01/24 11:03:01 | 000,001,824 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2015/01/24 03:40:46 | 000,000,975 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2015/01/24 03:39:23 | 000,002,203 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/01/24 03:38:16 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/01/24 03:38:15 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/01/24 02:07:40 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2015/01/24 02:07:26 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2015/01/24 02:07:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2015/01/24 02:07:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2015/01/24 02:07:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2015/01/24 02:07:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2015/01/24 02:07:26 | 000,138,832 | ---- | C] () -- C:\Windows\SysNative\samu_krnl_isv_ci.sbin
[2015/01/24 02:07:26 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2015/01/24 02:07:26 | 000,003,917 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2015/01/24 02:07:25 | 001,187,342 | ---- | C] () -- C:\Windows\SysNative\amdocl_as64.exe
[2015/01/24 02:07:25 | 001,061,902 | ---- | C] () -- C:\Windows\SysNative\amdocl_ld64.exe
[2015/01/24 02:07:25 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2015/01/23 22:46:34 | 000,002,331 | ---- | C] () -- C:\Users\Public\Desktop\Goat Simulator.lnk
[2015/01/23 22:46:34 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\Cat-A-Cat Games.lnk
[2015/01/23 22:14:07 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2015/01/23 21:52:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2015/01/23 07:35:08 | 000,001,574 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Jazzpunk.lnk
[2015/01/23 07:32:05 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/01/23 07:04:13 | 000,001,442 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2015/01/23 07:03:50 | 000,000,369 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
[2015/01/23 07:03:50 | 000,000,369 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
[2015/01/23 06:58:25 | 2536,636,415 | -HS- | C] () -- C:\hiberfil.sys
[2015/01/23 06:54:51 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2014/11/21 02:25:30 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\amdhdl32.dll
[2014/11/20 21:35:00 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2014/09/24 16:30:24 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/09/24 16:29:54 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/08/22 15:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013/08/22 15:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013/08/22 14:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013/08/22 07:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013/08/22 03:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013/08/21 23:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013/08/21 23:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
========== ZeroAccess Check ==========
 
[2015/01/25 16:16:30 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/31 00:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 22:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 09:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 02:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 09:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2015/02/11 15:05:48 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Allmyapps
[2015/02/02 14:09:46 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\AMD
[2015/02/11 14:32:30 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\AVG2015
[2015/02/02 14:09:35 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Battle.net
[2015/02/09 21:08:54 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Day 1 Studios
[2015/02/08 16:37:03 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Guild Wars 2
[2015/01/25 12:39:26 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\library_dir
[2015/02/02 18:15:28 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\LolClient
[2015/02/11 13:07:58 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\OpenCandy
[2015/01/25 11:48:25 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Origin
[2015/02/11 15:00:05 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Raptr
[2015/02/02 14:17:12 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Riot Games
[2015/02/11 15:27:15 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Spotify
[2015/02/11 14:30:58 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\TuneUp Software
[2015/02/10 21:39:12 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Unity
 
========== Purity Check ==========
 
 
 
< End of report >
 

  • 0

Advertisements


#2
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Greetings ededdneddy and :welcome:

My nickname is Ruggie and I will be assisting you in cleaning your computer.

  • Malware removal can be a long process and will at times get complicated with multiple steps to perform to ensure that your system is no longer infected.
  • When we start the process, the list of instructions must be followed closely, it may seem difficult at times but it is important that you stay with me until your computer is declared clean.
  • If you are receiving help elsewhere, please let me know so we can close this thread and help someone else.

stop32.png Before going any further, I recommend that you print out (or save to a file) these guidelines and also the instructions when I post them, as part of the repair process may involve going into safe mode and therefore you will not have internet access.

The following guidelines are important but the ones highlighted in RED are of the highest importance and must not be skipped.

right-grn.pngPlease be aware, the fixes we perform are specific to this machine, at this moment in time. They must not be used on another computer or unsupervised at another time. This can render your computer unbootable.

right-grn.pngIf at all possible, Make backups of all your important files, whilst we will do our best to ensure that no files are lost or damaged, sometimes things can go wrong.

right-grn.png I will do everything in my power to ensure that this clean is successful, but occasionally failure hits us all. In this event, please have your original installation disks to hand and be prepared to have to format and reinstall your computer.

right-grn.png Refrain from using any tool that hasn't been instructed as it could alter the process that we are working through and cause further problems. Also only use the tools I instruct in the manner provided as they are very powerful and if not used properly can cause even more problems. It is best if you can avoid using the computer at all, apart from to perform the cleaning steps to ensure that any infections aren't spread.

right-grn.png Please stick with me until the end. malware removal is difficult and time consuming. We have to analyse hundreds of lines in log files. This takes time which we give freely so I ask that you do us the courtesy of seeing it through.

right-grn.png Only paste the contents of log files into your reply, DO NOT attach any log files unless requested to do so.

right-grn.png If you have any questions or get stuck, stop and ask....I am here to help you make this go as smoothly as possible.

right-grn.png If you do not reply within 3 days, your topic will be closed. It can be reopened if you ask. But if you plan on being gone for a longer period, just let me know and I will hold it open for you.

Ready? Now lets get to work

 

As you have Windows 8 - we need to look with a more current utility.

Initial FRST Scan

Please download Farbar Recovery Scan Tool and save it to your Desktop. There will be 2 versions offered, if you know which version is the one you need, download that one, if not, download both, only one will work on your computer, that is the one you need.

  • Right click frst.png to run as administrator. >> Windows 8 users will be prompted about Windows SmartScreen protection - click More information and Run.
  • When the tool opens click Yes to the disclaimer.
  • Ensure that the following are ticked as in the image below

Addition.txt

frst-addition.png
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • This will also generate another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


Items I need to see in your next post:

  • FRST.txt
  • Addition.txt

 


  • 0

#3
ededdneddy

ededdneddy

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-02-2015 01
Ran by EdEddnEddy (administrator) on ED on 11-02-2015 16:47:45
Running from C:\Users\EdEddnEddy\Downloads
Loaded Profiles: EdEddnEddy (Available profiles: EdEddnEddy)
Platform: Windows 8.1 Pro (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
 
 
 

OTL logfile created on: 11/02/2015 16:26:01 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\EdEddnEddy\Downloads
64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
7.95 Gb Total Physical Memory | 6.34 Gb Available Physical Memory | 79.70% Memory free
9.20 Gb Paging File | 7.41 Gb Available in Paging File | 80.49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.00 Gb Total Space | 644.05 Gb Free Space | 69.18% Space Free | Partition Type: NTFS
 
Computer Name: ED | User Name: EdEddnEddy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2015/02/11 16:25:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\EdEddnEddy\Downloads\OTL.exe
PRC - [2015/02/04 09:02:55 | 000,843,592 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/02/03 13:59:01 | 000,076,152 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2015/01/23 22:33:46 | 001,530,048 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
PRC - [2015/01/23 22:33:44 | 001,942,720 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2015/01/23 22:33:44 | 000,834,752 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2015/01/06 21:58:48 | 003,440,080 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
PRC - [2015/01/06 21:49:50 | 000,309,232 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
PRC - [2014/07/14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2014/07/14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2015/02/04 09:02:53 | 014,965,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll
MOD - [2015/02/04 09:02:51 | 009,170,760 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
MOD - [2015/02/04 09:02:47 | 001,117,512 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
MOD - [2015/02/04 09:02:45 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
MOD - [2015/01/23 22:34:04 | 002,227,904 | ---- | M] () -- C:\Program Files (x86)\Steam\video.dll
MOD - [2015/01/23 22:33:44 | 000,696,512 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2015/01/15 23:42:26 | 034,641,288 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2015/01/15 23:42:26 | 001,709,960 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
MOD - [2014/12/02 00:29:50 | 005,002,752 | ---- | M] () -- C:\Program Files (x86)\Steam\v8.dll
MOD - [2014/12/02 00:29:34 | 001,612,800 | ---- | M] () -- C:\Program Files (x86)\Steam\icui18n.dll
MOD - [2014/12/02 00:29:34 | 001,210,368 | ---- | M] () -- C:\Program Files (x86)\Steam\icuuc.dll
MOD - [2014/12/01 21:31:16 | 002,396,672 | ---- | M] () -- C:\Program Files (x86)\Steam\libavcodec-56.dll
MOD - [2014/12/01 21:31:16 | 000,485,888 | ---- | M] () -- C:\Program Files (x86)\Steam\libswscale-3.dll
MOD - [2014/12/01 21:31:16 | 000,479,744 | ---- | M] () -- C:\Program Files (x86)\Steam\libavformat-56.dll
MOD - [2014/12/01 21:31:16 | 000,442,880 | ---- | M] () -- C:\Program Files (x86)\Steam\libavutil-54.dll
MOD - [2014/12/01 21:31:16 | 000,332,800 | ---- | M] () -- C:\Program Files (x86)\Steam\libavresample-2.dll
MOD - [2014/11/11 18:47:56 | 000,774,656 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2015/01/31 18:57:50 | 000,076,152 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - [2014/11/21 02:12:40 | 000,244,736 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014/10/31 04:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/09/24 17:23:07 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/09/24 16:56:28 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/09/24 16:56:26 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/09/24 16:39:27 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/09/24 16:30:20 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/09/24 16:30:19 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/09/24 16:30:12 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/09/24 16:30:11 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/09/24 16:30:10 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/09/24 16:30:06 | 000,399,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/09/24 15:57:43 | 000,183,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2014/09/24 15:57:42 | 000,090,464 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV:64bit: - [2014/09/22 03:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/09/02 22:08:01 | 001,674,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/08/16 00:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2014/08/16 00:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/08/22 11:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 11:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 11:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 11:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 11:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 10:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 10:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 09:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 09:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 09:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 09:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Start_Pending] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 09:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 09:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 09:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2015/02/03 13:59:01 | 000,076,152 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2015/01/27 19:58:49 | 000,817,536 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2015/01/27 11:40:45 | 001,910,128 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015/01/23 22:33:44 | 000,834,752 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/01/06 21:58:48 | 003,440,080 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2015/01/06 21:49:50 | 000,309,232 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/09/24 17:23:06 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/07/14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014/07/14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2013/08/22 03:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 02:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2015/02/11 14:57:49 | 000,022,512 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPPD.sys -- (SPPD)
DRV:64bit: - [2014/12/12 00:51:20 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2014/12/08 21:24:26 | 000,260,888 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2014/11/21 02:40:00 | 018,959,360 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014/11/21 02:08:54 | 000,589,312 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014/11/18 21:42:04 | 000,203,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2014/10/13 02:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/10/13 02:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/10/13 02:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/10/10 01:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/10/05 20:41:40 | 000,124,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2014/09/30 17:47:28 | 000,129,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2014/09/24 20:03:42 | 000,277,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgwfpa.sys -- (Avgwfpa)
DRV:64bit: - [2014/09/24 17:54:03 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/09/24 16:56:35 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/09/24 16:56:30 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/09/24 16:56:27 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/09/24 16:39:17 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2014/09/24 16:39:12 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/09/24 16:39:12 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/09/24 16:30:11 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/09/24 16:30:08 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/09/24 16:29:53 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/09/24 16:29:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/09/24 16:29:51 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/09/24 16:29:51 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/09/24 16:29:51 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/09/24 16:29:51 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/09/24 15:57:45 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
DRV:64bit: - [2014/09/24 15:57:35 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2014/09/24 15:57:34 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:64bit: - [2014/09/24 15:57:34 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2014/09/24 15:57:34 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2014/09/24 15:57:34 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2014/09/22 03:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/09/22 03:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/09/22 02:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/08/28 20:47:24 | 000,243,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2014/08/15 00:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/07/18 14:53:26 | 000,313,624 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2014/06/18 20:03:34 | 000,153,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgdiska.sys -- (Avgdiska)
DRV:64bit: - [2014/06/18 20:03:20 | 000,031,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2014/03/11 14:20:04 | 000,222,720 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWB6.sys -- (AtiHDAudioService)
DRV:64bit: - [2013/09/04 15:35:06 | 000,020,496 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\avgboota.sys -- (Avgboota)
DRV:64bit: - [2013/08/22 13:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 13:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 12:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 12:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 12:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 12:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 12:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 12:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 12:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 12:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 12:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 12:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 12:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 12:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 12:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 12:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 12:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 12:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 12:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 12:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 12:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 12:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 12:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 12:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 12:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 12:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 12:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 12:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 12:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 11:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 11:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 11:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 11:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 11:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 11:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 11:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 11:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 11:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 11:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 11:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 11:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 11:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 11:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 11:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 11:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 11:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 11:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 11:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 11:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 08:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 23:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 00:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 22:32:06 | 000,047,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2013/07/30 18:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 19:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 14:46:17 | 000,591,360 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/09/22 23:17:24 | 000,021,160 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd)
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com...=SP2203TB_sp_ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B3 3D 5E 11 87 37 D0 01  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://www.trovi.com...=SP2203TB_sp_ie
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\EdEddnEddy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
 
 
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_1\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2013/08/22 13:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Positive Finds) - {30c85a3d-1d96-4589-b63f-91fb7ef45a41} - C:\Program Files (x86)\Positive Finds\Extensions\30c85a3d-1d96-4589-b63f-91fb7ef45a41.dll ()
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2015\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Raptr] C:\Program Files (x86)\Raptr\raptrstub.exe (Raptr, Inc)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Spotify] C:\Users\EdEddnEddy\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D6EC88BC-297C-4AD7-95F5-3DBB4F9FE1E4}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2015/02/11 15:56:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ElevatedDiagnostics
[2015/02/11 14:32:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\AVG2015
[2015/02/11 14:30:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\TuneUp Software
[2015/02/11 14:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2015/02/11 14:29:45 | 000,000,000 | -H-D | C] -- C:\$AVG
[2015/02/11 14:29:45 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2015
[2015/02/11 14:28:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2015/02/11 13:22:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\MFAData
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2015/02/11 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Avg2015
[2015/02/11 13:09:36 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\avaxvbxvfy
[2015/02/11 13:09:29 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\SearchProtect
[2015/02/11 13:09:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchProtect
[2015/02/11 13:08:46 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\My Cheat Tables
[2015/02/11 13:08:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ORBTR
[2015/02/11 13:08:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
[2015/02/11 13:08:16 | 000,000,000 | ---D | C] -- C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
[2015/02/11 13:08:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Positive Finds
[2015/02/11 13:08:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
[2015/02/11 13:07:56 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\OpenCandy
[2015/02/11 13:07:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6.4
[2015/02/10 21:12:45 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\New Unity Project
[2015/02/10 21:12:18 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Unity
[2015/02/10 21:09:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Apple Computer
[2015/02/10 21:09:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Apple Computer
[2015/02/10 21:09:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Unity
[2015/02/10 21:08:33 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Unity
[2015/02/10 21:06:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Unity Projects
[2015/02/10 21:06:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity
[2015/02/10 20:58:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Unity
[2015/02/09 21:08:54 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Day 1 Studios
[2015/02/08 21:40:48 | 000,000,000 | ---D | C] -- C:\rads
[2015/02/05 22:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
[2015/02/05 22:29:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Guild Wars 2
[2015/02/05 22:09:20 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Guild Wars 2
[2015/02/04 18:18:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Nexus Mod Manager
[2015/02/04 18:18:58 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Black_Tree_Gaming
[2015/02/04 17:30:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
[2015/02/04 17:30:50 | 000,000,000 | ---D | C] -- C:\Program Files\Nexus Mod Manager
[2015/02/04 17:25:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Programs
[2015/02/03 23:31:21 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Skype
[2015/02/03 23:31:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Skype
[2015/02/03 23:31:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2015/02/03 23:31:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2015/02/03 23:31:08 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2015/02/03 23:31:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2015/02/03 16:47:03 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\BFH Beta 2
[2015/02/03 13:59:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline Beta
[2015/02/02 18:35:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Square Enix
[2015/02/02 18:15:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\LolClient
[2015/02/02 18:15:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Macromedia
[2015/02/02 14:26:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Riot Games
[2015/02/02 14:16:44 | 000,000,000 | ---D | C] -- C:\Riot Games
[2015/02/02 14:16:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2015/02/02 14:15:51 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Riot Games
[2015/02/02 14:09:46 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\AMD
[2015/02/02 14:09:44 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Blizzard Entertainment
[2015/02/02 14:09:35 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Battle.net
[2015/02/02 14:09:35 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Battle.net
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2015/02/02 14:09:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battle.net
[2015/02/02 14:03:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2015/02/02 11:08:11 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ArmA 2
[2015/02/02 11:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
[2015/02/01 16:34:57 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Skyrim
[2015/01/31 17:24:12 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\BFBC2
[2015/01/30 20:28:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Allmyapps
[2015/01/30 20:28:32 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\CrashRpt
[2015/01/30 20:24:16 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allmyapps
[2015/01/30 20:22:55 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Allmyapps
[2015/01/26 10:35:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\PunkBuster
[2015/01/26 10:17:43 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ESN
[2015/01/26 09:40:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\Battlefield 4
[2015/01/26 09:37:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
[2015/01/26 08:49:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2015/01/26 02:25:12 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2015/01/26 02:25:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Bohemia Interactive Studio
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ArmA 2 OA
[2015/01/25 16:22:28 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\ArmA 2
[2015/01/25 16:22:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BattlEye
[2015/01/25 16:22:17 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
[2015/01/25 16:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2015/01/25 12:39:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
[2015/01/25 12:39:26 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\library_dir
[2015/01/25 12:34:53 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Raptr
[2015/01/25 12:34:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Raptr
[2015/01/25 12:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2015/01/25 12:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2015/01/25 12:34:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2015/01/25 12:34:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD
[2015/01/25 12:30:34 | 000,000,000 | ---D | C] -- C:\AMD
[2015/01/24 19:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2015/01/24 19:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2015/01/24 19:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2015/01/24 19:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2015/01/24 19:51:33 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Ubisoft Game Launcher
[2015/01/24 19:51:21 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
[2015/01/24 19:51:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2015/01/24 17:27:27 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Documents\My Games
[2015/01/24 11:03:01 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Spotify
[2015/01/24 10:52:17 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Spotify
[2015/01/24 04:08:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2015/01/24 03:48:53 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2015/01/24 03:40:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2015/01/24 03:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2015/01/24 03:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2015/01/24 03:39:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/01/24 03:38:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2015/01/24 03:38:09 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Google
[2015/01/24 02:09:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\ATI
[2015/01/24 02:09:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\ATI
[2015/01/24 02:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2015/01/24 02:07:42 | 000,142,848 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\SysNative\drivers\amdacpksl.sys
[2015/01/24 02:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2015/01/24 02:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2015/01/24 02:07:25 | 000,806,912 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_14.100.dll
[2015/01/24 02:06:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2015/01/24 02:06:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2015/01/24 02:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2015/01/24 02:05:01 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2015/01/23 22:46:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Goat Simulator
[2015/01/23 22:46:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Goat Simulator
[2015/01/23 22:42:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2015/01/23 22:41:40 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Origin
[2015/01/23 22:41:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Origin
[2015/01/23 22:39:37 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\Desktop\Goat Simulator
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2015/01/23 22:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2015/01/23 22:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2015/01/23 21:49:52 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Criterion Games
[2015/01/23 07:34:12 | 000,000,000 | ---D | C] -- C:\Games
[2015/01/23 07:06:50 | 000,000,000 | -HSD | C] -- C:\Users\EdEddnEddy\AppData\Local\EmieUserList
[2015/01/23 07:06:50 | 000,000,000 | -HSD | C] -- C:\Users\EdEddnEddy\AppData\Local\EmieSiteList
[2015/01/23 07:06:38 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Diagnostics
[2015/01/23 07:04:18 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2015/01/23 07:04:18 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2015/01/23 07:04:17 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Searches
[2015/01/23 07:04:17 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Contacts
[2015/01/23 07:04:13 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Adobe
[2015/01/23 07:04:10 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\VirtualStore
[2015/01/23 07:03:59 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Packages
[2015/01/23 07:03:50 | 000,000,000 | --SD | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Videos
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Saved Games
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Pictures
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Music
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Links
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Favorites
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Downloads
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Documents
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\Desktop
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2015/01/23 07:03:50 | 000,000,000 | R--D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2015/01/23 07:03:50 | 000,000,000 | -H-D | C] -- C:\Users\EdEddnEddy\AppData
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Temp
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Local\Microsoft
[2015/01/23 07:03:50 | 000,000,000 | ---D | C] -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2015/01/23 07:03:42 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2015/01/23 07:02:15 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2015/01/23 06:54:59 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2015/01/23 06:54:49 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2015/01/23 06:54:03 | 000,000,000 | ---D | C] -- C:\Windows\Panther
 
========== Files - Modified Within 30 Days ==========
 
[2015/02/11 16:05:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/02/11 16:04:17 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/02/11 16:03:40 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/02/11 16:03:40 | 2536,636,415 | -HS- | M] () -- C:\hiberfil.sys
[2015/02/11 15:52:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/11 14:57:49 | 000,022,512 | ---- | M] () -- C:\Windows\SysNative\drivers\SPPD.sys
[2015/02/11 14:30:58 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/02/11 13:08:02 | 000,001,097 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Cheat Engine.lnk
[2015/02/10 22:48:50 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2015/02/10 22:48:50 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2015/02/10 21:06:57 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Unity.lnk
[2015/02/10 11:04:21 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2015/02/09 21:00:43 | 000,863,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/02/09 21:00:43 | 000,734,492 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/02/09 21:00:43 | 000,139,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/02/08 21:43:30 | 000,008,163 | ---- | M] () -- C:\Users\EdEddnEddy\Documents\LoL error.PNG
[2015/02/06 22:17:21 | 000,002,203 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/02/06 18:01:59 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2015/02/05 22:29:34 | 000,000,944 | ---- | M] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
[2015/02/04 17:30:53 | 000,000,902 | ---- | M] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2015/02/03 23:31:10 | 000,002,713 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2015/02/03 13:59:20 | 000,001,165 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield Hardline Beta.lnk
[2015/02/03 13:59:01 | 000,076,152 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2015/02/02 14:16:45 | 000,001,625 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/02/02 14:09:32 | 000,001,156 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2015/01/31 18:57:50 | 000,076,152 | ---- | M] () -- C:\Windows\SysNative\PnkBstrA.exe
[2015/01/31 17:23:01 | 002,434,856 | ---- | M] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2015/01/30 20:24:16 | 000,000,966 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Allmyapps.lnk
[2015/01/29 21:21:15 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/01/26 14:06:03 | 000,000,186 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\New shortcut (2).lnk
[2015/01/26 11:14:47 | 000,337,808 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/01/24 19:51:21 | 000,001,217 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Uplay.lnk
[2015/01/24 11:03:01 | 000,001,838 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Spotify.lnk
[2015/01/24 03:40:46 | 000,000,975 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2015/01/24 02:07:40 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2015/01/23 22:46:34 | 000,002,331 | ---- | M] () -- C:\Users\Public\Desktop\Goat Simulator.lnk
[2015/01/23 22:46:34 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\Cat-A-Cat Games.lnk
[2015/01/23 22:14:07 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2015/01/23 21:52:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2015/01/23 07:35:08 | 000,001,574 | ---- | M] () -- C:\Users\EdEddnEddy\Desktop\Jazzpunk.lnk
[2015/01/23 07:32:05 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/01/23 06:58:00 | 000,042,522 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2015/01/23 06:58:00 | 000,042,522 | ---- | M] () -- C:\Windows\SysNative\license.rtf
 
========== Files Created - No Company Name ==========
 
[2015/02/11 14:57:48 | 000,022,512 | ---- | C] () -- C:\Windows\SysNative\drivers\SPPD.sys
[2015/02/11 14:30:58 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/02/11 13:08:02 | 000,001,097 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Cheat Engine.lnk
[2015/02/10 21:06:57 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Unity.lnk
[2015/02/08 21:43:30 | 000,008,163 | ---- | C] () -- C:\Users\EdEddnEddy\Documents\LoL error.PNG
[2015/02/06 18:01:59 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2015/02/05 22:29:34 | 000,000,944 | ---- | C] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
[2015/02/04 17:30:53 | 000,000,902 | ---- | C] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2015/02/03 23:31:10 | 000,002,713 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2015/02/03 13:59:20 | 000,001,165 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield Hardline Beta.lnk
[2015/02/02 14:16:45 | 000,001,625 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/02/02 14:09:32 | 000,001,156 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2015/01/31 17:24:17 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2015/01/31 17:23:01 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2015/01/30 20:24:16 | 000,000,966 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Allmyapps.lnk
[2015/01/29 21:21:15 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/01/26 14:06:03 | 000,000,186 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\New shortcut (2).lnk
[2015/01/26 10:45:32 | 000,076,152 | ---- | C] () -- C:\Windows\SysNative\PnkBstrA.exe
[2015/01/25 15:19:36 | 000,050,745 | ---- | C] () -- C:\Windows\SysNative\srms.dat
[2015/01/25 15:14:03 | 000,389,176 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/01/24 19:51:23 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2015/01/24 19:51:23 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2015/01/24 19:51:22 | 000,076,152 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2015/01/24 19:51:21 | 000,001,217 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Uplay.lnk
[2015/01/24 11:03:01 | 000,001,838 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Spotify.lnk
[2015/01/24 11:03:01 | 000,001,824 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2015/01/24 03:40:46 | 000,000,975 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2015/01/24 03:39:23 | 000,002,203 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/01/24 03:38:16 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/01/24 03:38:15 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/01/24 02:07:40 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2015/01/24 02:07:26 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2015/01/24 02:07:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2015/01/24 02:07:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2015/01/24 02:07:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2015/01/24 02:07:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2015/01/24 02:07:26 | 000,138,832 | ---- | C] () -- C:\Windows\SysNative\samu_krnl_isv_ci.sbin
[2015/01/24 02:07:26 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2015/01/24 02:07:26 | 000,003,917 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2015/01/24 02:07:25 | 001,187,342 | ---- | C] () -- C:\Windows\SysNative\amdocl_as64.exe
[2015/01/24 02:07:25 | 001,061,902 | ---- | C] () -- C:\Windows\SysNative\amdocl_ld64.exe
[2015/01/24 02:07:25 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2015/01/23 22:46:34 | 000,002,331 | ---- | C] () -- C:\Users\Public\Desktop\Goat Simulator.lnk
[2015/01/23 22:46:34 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\Cat-A-Cat Games.lnk
[2015/01/23 22:14:07 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2015/01/23 21:52:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2015/01/23 07:35:08 | 000,001,574 | ---- | C] () -- C:\Users\EdEddnEddy\Desktop\Jazzpunk.lnk
[2015/01/23 07:32:05 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/01/23 07:04:13 | 000,001,442 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2015/01/23 07:03:50 | 000,000,369 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
[2015/01/23 07:03:50 | 000,000,369 | ---- | C] () -- C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
[2015/01/23 06:58:25 | 2536,636,415 | -HS- | C] () -- C:\hiberfil.sys
[2015/01/23 06:54:51 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2014/11/21 02:25:30 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\amdhdl32.dll
[2014/11/20 21:35:00 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2014/09/24 16:30:24 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/09/24 16:29:54 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/08/22 15:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013/08/22 15:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013/08/22 14:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013/08/22 07:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013/08/22 03:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013/08/21 23:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013/08/21 23:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
========== ZeroAccess Check ==========
 
[2015/01/25 16:16:30 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/31 00:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 22:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 09:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 02:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 09:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2015/02/11 15:05:48 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Allmyapps
[2015/02/02 14:09:46 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\AMD
[2015/02/11 14:32:30 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\AVG2015
[2015/02/02 14:09:35 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Battle.net
[2015/02/09 21:08:54 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Day 1 Studios
[2015/02/08 16:37:03 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Guild Wars 2
[2015/01/25 12:39:26 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\library_dir
[2015/02/02 18:15:28 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\LolClient
[2015/02/11 13:07:58 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\OpenCandy
[2015/01/25 11:48:25 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Origin
[2015/02/11 15:00:05 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Raptr
[2015/02/02 14:17:12 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Riot Games
[2015/02/11 15:27:15 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Spotify
[2015/02/11 14:30:58 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\TuneUp Software
[2015/02/10 21:39:12 | 000,000,000 | ---D | M] -- C:\Users\EdEddnEddy\AppData\Roaming\Unity
 
========== Purity Check ==========
 
 
 
< End of report >
 
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\EdEddnEddy\Downloads\OTL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Farbar) C:\Users\EdEddnEddy\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-01-30] (Raptr, Inc)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3674576 2015-01-06] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3619160 2015-01-27] (Electronic Arts)
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Run: [Spotify] => C:\Users\EdEddnEddy\AppData\Roaming\Spotify\spotify.exe [6737976 2015-01-24] (Spotify Ltd)
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com...=SP2203TB_sp_ie
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehp
SearchScopes: HKU\S-1-5-21-3719750220-1313712170-279508179-1001 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com...=SP2203TB_sp_ie
SearchScopes: HKU\S-1-5-21-3719750220-1313712170-279508179-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com...=SP2203TB_sp_ie
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Positive Finds -> {30c85a3d-1d96-4589-b63f-91fb7ef45a41} -> C:\Program Files (x86)\Positive Finds\Extensions\30c85a3d-1d96-4589-b63f-91fb7ef45a41.dll ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
 
FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3719750220-1313712170-279508179-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\EdEddnEddy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3719750220-1313712170-279508179-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3322288&octid=EB_ORIGINAL_CTID&ISID=MDC77BC8B-BE88-4E25-91C1-BE95EACF1921&SearchSource=55&CUI=&UM=8&UP=SP37174111-BE0E-46F9-B10F-D9E617CE7632&SSPV=SP2203TB_sp_ch"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-24]
CHR Extension: (Google Docs) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-24]
CHR Extension: (Google Drive) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-24]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-03]
CHR Extension: (YouTube) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-24]
CHR Extension: (Google Search) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-24]
CHR Extension: (Google Sheets) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-24]
CHR Extension: (Skype Click to Call) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-02-04]
CHR Extension: (Google Wallet) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Extension: (Gmail) - C:\Users\EdEddnEddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-24]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3440080 2015-01-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [309232 2015-01-06] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [817536 2015-01-27] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-01-27] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-01-31] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-03] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1674640 2014-09-02] (Microsoft Corporation)
S2 Orbiter; C:/Program Files (x86)/ORBTR/orbiter.dll [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-22] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [260888 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [124184 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [277784 2014-09-24] (AVG Technologies CZ, s.r.o.)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [47008 2013-07-30] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 SPPD; C:\Windows\system32\drivers\SPPD.sys [22512 2015-02-11] () [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-11 16:47 - 2015-02-11 16:48 - 00013147 _____ () C:\Users\EdEddnEddy\Downloads\FRST.txt
2015-02-11 16:47 - 2015-02-11 16:47 - 02134016 _____ (Farbar) C:\Users\EdEddnEddy\Downloads\FRST64 (1).exe
2015-02-11 16:47 - 2015-02-11 16:47 - 00000000 ____D () C:\FRST
2015-02-11 16:45 - 2015-02-11 16:45 - 02134016 _____ (Farbar) C:\Users\EdEddnEddy\Downloads\FRST64.exe
2015-02-11 16:34 - 2015-02-11 16:34 - 00075218 _____ () C:\Users\EdEddnEddy\Downloads\Extras.Txt
2015-02-11 16:33 - 2015-02-11 16:33 - 00140344 _____ () C:\Users\EdEddnEddy\Downloads\OTL.Txt
2015-02-11 16:25 - 2015-02-11 16:25 - 00602112 _____ (OldTimer Tools) C:\Users\EdEddnEddy\Downloads\OTL.exe
2015-02-11 15:34 - 2015-02-11 15:38 - 131129072 _____ (Microsoft Corporation) C:\Users\EdEddnEddy\Downloads\msert.exe
2015-02-11 14:57 - 2015-02-11 14:57 - 00022512 _____ () C:\Windows\system32\Drivers\SPPD.sys
2015-02-11 14:32 - 2015-02-11 14:32 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\AVG2015
2015-02-11 14:30 - 2015-02-11 14:30 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-02-11 14:30 - 2015-02-11 14:30 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\TuneUp Software
2015-02-11 14:30 - 2015-02-11 14:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-02-11 14:29 - 2015-02-11 15:05 - 00000000 ____D () C:\ProgramData\AVG2015
2015-02-11 14:29 - 2015-02-11 14:29 - 00000000 ___HD () C:\$AVG
2015-02-11 14:28 - 2015-02-11 14:28 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-02-11 13:22 - 2015-02-11 15:27 - 00000000 ____D () C:\ProgramData\MFAData
2015-02-11 13:22 - 2015-02-11 14:56 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Avg2015
2015-02-11 13:22 - 2015-02-11 13:22 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\MFAData
2015-02-11 13:09 - 2015-02-11 13:10 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\avaxvbxvfy
2015-02-11 13:09 - 2015-02-11 13:09 - 00003472 _____ () C:\Windows\System32\Tasks\avaxvbxvfy
2015-02-11 13:09 - 2015-02-11 13:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\SearchProtect
2015-02-11 13:09 - 2015-02-11 13:09 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2015-02-11 13:08 - 2015-02-11 15:06 - 00000000 ____D () C:\Program Files (x86)\ORBTR
2015-02-11 13:08 - 2015-02-11 14:54 - 00000000 ____D () C:\Program Files (x86)\Positive Finds
2015-02-11 13:08 - 2015-02-11 14:32 - 00000000 ____D () C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
2015-02-11 13:08 - 2015-02-11 13:08 - 00001097 _____ () C:\Users\EdEddnEddy\Desktop\Cheat Engine.lnk
2015-02-11 13:08 - 2015-02-11 13:08 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\My Cheat Tables
2015-02-11 13:08 - 2015-02-11 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-02-11 13:07 - 2015-02-11 13:08 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2015-02-11 13:07 - 2015-02-11 13:07 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\OpenCandy
2015-02-11 13:04 - 2015-02-11 13:05 - 04578024 _____ (AVG Technologies) C:\Users\EdEddnEddy\Downloads\avg_avct_stb_all_2015_5315_ppc17.exe
2015-02-11 13:03 - 2015-02-11 13:06 - 09052192 _____ (Cheat Engine ) C:\Users\EdEddnEddy\Downloads\CheatEngine64.exe
2015-02-10 21:12 - 2015-02-11 12:45 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\New Unity Project
2015-02-10 21:12 - 2015-02-10 21:39 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Unity
2015-02-10 21:09 - 2015-02-11 12:45 - 00000000 ____D () C:\ProgramData\Unity
2015-02-10 21:09 - 2015-02-10 21:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Apple Computer
2015-02-10 21:09 - 2015-02-10 21:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Apple Computer
2015-02-10 21:08 - 2015-02-10 21:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Unity
2015-02-10 21:06 - 2015-02-10 21:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity
2015-02-10 21:06 - 2015-02-10 21:06 - 00001136 _____ () C:\Users\Public\Desktop\Unity.lnk
2015-02-10 21:06 - 2015-02-10 21:06 - 00000000 ____D () C:\Users\Public\Documents\Unity Projects
2015-02-10 20:58 - 2015-02-10 21:08 - 00000000 ____D () C:\Program Files (x86)\Unity
2015-02-10 20:19 - 2015-02-10 20:51 - 1548453856 _____ (Unity Technologies ApS) C:\Users\EdEddnEddy\Downloads\UnitySetup-4.6.2.exe
2015-02-09 21:08 - 2015-02-09 21:08 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Day 1 Studios
2015-02-08 21:40 - 2015-02-08 21:44 - 00000000 ____D () C:\rads
2015-02-06 18:01 - 2015-02-06 18:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-02-05 22:31 - 2015-02-05 22:31 - 00000032 _____ () C:\Users\EdEddnEddy\Documents\LoL.txt
2015-02-05 22:30 - 2015-02-05 22:30 - 00000084 _____ () C:\Users\EdEddnEddy\Documents\Guild Wars 2.txt
2015-02-05 22:29 - 2015-02-08 16:37 - 00000000 ____D () C:\Program Files (x86)\Guild Wars 2
2015-02-05 22:29 - 2015-02-05 22:29 - 00000944 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk
2015-02-05 22:29 - 2015-02-05 22:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-02-05 22:09 - 2015-02-08 16:37 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Guild Wars 2
2015-02-05 22:08 - 2015-02-05 22:08 - 26068984 _____ (ArenaNet) C:\Users\EdEddnEddy\Downloads\Gw2Setup.exe
2015-02-04 18:18 - 2015-02-04 18:18 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\Nexus Mod Manager
2015-02-04 18:18 - 2015-02-04 18:18 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Black_Tree_Gaming
2015-02-04 17:30 - 2015-02-04 17:30 - 00000902 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2015-02-04 17:30 - 2015-02-04 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2015-02-04 17:30 - 2015-02-04 17:30 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2015-02-04 17:29 - 2014-04-15 23:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-02-04 17:29 - 2014-04-15 23:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-02-04 17:24 - 2015-02-04 17:25 - 04288712 _____ (Black Tree Gaming ) C:\Users\EdEddnEddy\Downloads\Nexus Mod Manager-0.53.2.exe
2015-02-03 23:31 - 2015-02-11 16:44 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Skype
2015-02-03 23:31 - 2015-02-03 23:31 - 00002713 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-02-03 23:31 - 2015-02-03 23:31 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-02-03 23:31 - 2015-02-03 23:31 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Skype
2015-02-03 23:31 - 2015-02-03 23:31 - 00000000 ____D () C:\ProgramData\Skype
2015-02-03 23:31 - 2015-02-03 23:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-02-03 23:29 - 2015-02-03 23:29 - 01548384 _____ (Skype Technologies S.A.) C:\Users\EdEddnEddy\Downloads\SkypeSetup.exe
2015-02-03 16:47 - 2015-02-03 16:50 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\BFH Beta 2
2015-02-03 13:59 - 2015-02-03 13:59 - 00001165 _____ () C:\Users\Public\Desktop\Battlefield Hardline Beta.lnk
2015-02-03 13:59 - 2015-02-03 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline Beta
2015-02-02 18:35 - 2015-02-02 18:35 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\Square Enix
2015-02-02 18:15 - 2015-02-02 18:15 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Macromedia
2015-02-02 18:15 - 2015-02-02 18:15 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\LolClient
2015-02-02 14:26 - 2015-02-02 14:26 - 00000000 ____D () C:\ProgramData\Riot Games
2015-02-02 14:16 - 2015-02-02 14:16 - 00001625 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2015-02-02 14:16 - 2015-02-02 14:16 - 00000000 ____D () C:\Riot Games
2015-02-02 14:16 - 2015-02-02 14:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-02-02 14:16 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-02-02 14:16 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-02-02 14:16 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-02-02 14:15 - 2015-02-02 14:17 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Riot Games
2015-02-02 14:09 - 2015-02-09 21:36 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-02-02 14:09 - 2015-02-09 21:35 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Battle.net
2015-02-02 14:09 - 2015-02-02 14:09 - 00001156 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2015-02-02 14:09 - 2015-02-02 14:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Battle.net
2015-02-02 14:09 - 2015-02-02 14:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\AMD
2015-02-02 14:09 - 2015-02-02 14:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Blizzard Entertainment
2015-02-02 14:09 - 2015-02-02 14:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-02-02 14:09 - 2015-02-02 14:09 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-02-02 14:03 - 2015-02-02 14:10 - 30668968 _____ (Riot Games) C:\Users\EdEddnEddy\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2015-02-02 14:03 - 2015-02-02 14:04 - 00000000 ____D () C:\ProgramData\Battle.net
2015-02-02 14:03 - 2015-02-02 14:03 - 02942368 _____ (Blizzard Entertainment) C:\Users\EdEddnEddy\Downloads\World-of-Warcraft-Setup-enGB.exe
2015-02-02 13:07 - 2015-02-02 13:07 - 03426305 _____ () C:\Users\EdEddnEddy\Downloads\Personal Statement guidance.zip
2015-02-02 13:07 - 2015-02-02 13:07 - 00068481 _____ () C:\Users\EdEddnEddy\Downloads\Personal_Statement_examples.zip
2015-02-02 11:08 - 2015-02-02 11:08 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\ArmA 2
2015-02-02 11:08 - 2015-02-02 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-02-01 16:34 - 2015-02-11 15:52 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Skyrim
2015-01-31 17:24 - 2015-02-10 22:48 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-01-31 17:24 - 2015-01-31 17:24 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\BFBC2
2015-01-31 17:23 - 2015-01-31 17:23 - 02434856 _____ () C:\Windows\SysWOW64\pbsvc_bc2.exe
2015-01-30 20:28 - 2015-01-30 20:28 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\CrashRpt
2015-01-30 20:24 - 2015-01-30 20:24 - 00003422 _____ () C:\Windows\System32\Tasks\AllmyappsUpdateTask
2015-01-30 20:24 - 2015-01-30 20:24 - 00000966 _____ () C:\Users\EdEddnEddy\Desktop\Allmyapps.lnk
2015-01-30 20:23 - 2015-01-30 20:23 - 00537024 _____ () C:\Users\EdEddnEddy\Downloads\Uplay-PC_Allmyapps.exe
2015-01-30 20:22 - 2015-01-30 20:22 - 00537024 _____ () C:\Users\EdEddnEddy\Downloads\Allmyapps.exe
2015-01-29 21:21 - 2015-01-29 21:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-01-26 14:06 - 2015-01-26 14:06 - 00000186 _____ () C:\Users\EdEddnEddy\Desktop\New shortcut (2).lnk
2015-01-26 11:25 - 2015-01-26 11:25 - 01533584 _____ () C:\Users\EdEddnEddy\Downloads\battlelog-web-plugins_2.6.2_157 (3).exe
2015-01-26 10:45 - 2015-01-31 18:57 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-01-26 10:35 - 2015-02-03 16:47 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\PunkBuster
2015-01-26 10:17 - 2015-01-26 10:17 - 01533584 _____ () C:\Users\EdEddnEddy\Downloads\battlelog-web-plugins_2.6.2_157 (2).exe
2015-01-26 10:17 - 2015-01-26 10:17 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\ESN
2015-01-26 09:40 - 2015-01-26 09:43 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\Battlefield 4
2015-01-26 09:39 - 2015-01-26 09:39 - 01533584 _____ () C:\Users\EdEddnEddy\Downloads\battlelog-web-plugins_2.6.2_157 (1).exe
2015-01-26 09:38 - 2015-01-26 09:38 - 01533584 _____ () C:\Users\EdEddnEddy\Downloads\battlelog-web-plugins_2.6.2_157.exe
2015-01-26 09:37 - 2015-01-26 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2015-01-26 08:53 - 2014-12-31 11:14 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-26 08:49 - 2015-01-26 08:51 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-26 08:49 - 2014-12-31 13:12 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-26 02:25 - 2015-01-26 11:25 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2015-01-25 16:22 - 2015-02-02 11:13 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\ArmA 2 OA
2015-01-25 16:22 - 2015-02-02 11:08 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\ArmA 2
2015-01-25 16:22 - 2015-02-02 11:08 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-01-25 16:22 - 2015-01-25 16:22 - 00000000 ____D () C:\ProgramData\Bohemia Interactive Studio
2015-01-25 16:19 - 2015-01-25 16:19 - 00000000 ____D () C:\ProgramData\ATI
2015-01-25 15:45 - 2014-08-16 04:08 - 01507648 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-01-25 15:45 - 2014-08-16 04:01 - 01710184 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-25 15:45 - 2014-08-16 03:58 - 01112512 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-25 15:45 - 2014-08-16 03:16 - 01205976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-01-25 15:45 - 2014-08-16 03:03 - 01467384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-01-25 15:45 - 2014-08-16 01:31 - 00838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-01-25 15:45 - 2014-08-16 01:04 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-01-25 15:45 - 2014-08-16 00:58 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-01-25 15:45 - 2014-08-16 00:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-01-25 15:45 - 2014-08-16 00:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-01-25 15:45 - 2014-08-16 00:45 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-01-25 15:45 - 2014-08-16 00:43 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2015-01-25 15:45 - 2014-08-16 00:43 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-01-25 15:45 - 2014-08-16 00:31 - 00914432 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-25 15:45 - 2014-08-16 00:31 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2015-01-25 15:45 - 2014-08-16 00:29 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-01-25 15:45 - 2014-08-16 00:23 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-01-25 15:45 - 2014-08-16 00:22 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-01-25 15:45 - 2014-08-16 00:22 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-01-25 15:45 - 2014-08-16 00:19 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-01-25 15:45 - 2014-08-16 00:18 - 04758528 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-01-25 15:45 - 2014-08-16 00:17 - 08757760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-01-25 15:45 - 2014-08-16 00:14 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-01-25 15:45 - 2014-08-16 00:13 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-25 15:45 - 2014-08-16 00:13 - 05902848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-01-25 15:45 - 2014-08-16 00:13 - 00840192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-01-25 15:45 - 2014-08-16 00:11 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-01-25 15:45 - 2014-08-16 00:10 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-01-25 15:45 - 2014-08-16 00:08 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-01-25 15:45 - 2014-08-16 00:07 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-01-25 15:45 - 2014-08-15 00:36 - 00146752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2015-01-25 15:21 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-01-25 15:21 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-01-25 15:19 - 2014-05-13 07:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-01-25 15:19 - 2014-05-03 05:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-01-25 15:19 - 2014-05-03 05:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2015-01-25 15:19 - 2014-05-03 05:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-01-25 15:19 - 2014-05-03 05:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-01-25 15:19 - 2014-05-03 04:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2015-01-25 15:19 - 2014-05-03 04:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2015-01-25 15:19 - 2014-05-03 04:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2015-01-25 15:19 - 2014-05-02 23:26 - 00050745 _____ () C:\Windows\system32\srms.dat
2015-01-25 15:19 - 2014-04-30 06:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2015-01-25 15:19 - 2014-04-30 06:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-25 15:19 - 2014-04-30 06:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-01-25 15:19 - 2014-04-30 06:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2015-01-25 15:19 - 2014-04-30 05:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-01-25 15:19 - 2014-04-30 04:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-01-25 15:19 - 2014-04-30 04:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-01-25 15:19 - 2014-04-30 04:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-01-25 15:19 - 2014-04-30 04:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-01-25 15:19 - 2014-04-30 04:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-01-25 15:19 - 2014-04-30 04:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-01-25 15:19 - 2014-04-30 03:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-01-25 15:19 - 2014-04-30 03:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-01-25 15:19 - 2014-04-30 03:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-01-25 15:19 - 2014-04-30 03:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-01-25 15:19 - 2014-04-30 03:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-01-25 15:19 - 2014-04-30 03:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-01-25 15:19 - 2014-04-28 22:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-01-25 15:19 - 2014-04-26 18:41 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2015-01-25 15:19 - 2014-04-26 18:22 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2015-01-25 15:19 - 2014-04-26 18:04 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-01-25 15:19 - 2014-04-26 17:36 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2015-01-25 15:19 - 2014-04-26 16:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-01-25 15:19 - 2014-04-14 09:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-01-25 15:19 - 2014-04-14 08:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-01-25 15:19 - 2014-04-14 05:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-01-25 15:17 - 2014-11-22 03:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-25 15:17 - 2014-11-22 02:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-25 15:17 - 2014-11-22 02:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-25 15:17 - 2014-11-22 02:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-01-25 15:17 - 2014-11-22 02:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-01-25 15:17 - 2014-11-22 02:35 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-01-25 15:17 - 2014-11-22 02:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-01-25 15:17 - 2014-11-22 02:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-01-25 15:17 - 2014-11-22 02:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-25 15:17 - 2014-11-22 02:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-25 15:17 - 2014-11-22 02:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-01-25 15:17 - 2014-11-22 02:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-01-25 15:17 - 2014-11-22 02:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-01-25 15:17 - 2014-11-22 02:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-01-25 15:17 - 2014-11-22 02:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-01-25 15:17 - 2014-11-22 01:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-01-25 15:17 - 2014-11-22 01:55 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-01-25 15:17 - 2014-11-22 01:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-01-25 15:17 - 2014-11-22 01:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-25 15:17 - 2014-11-22 01:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-25 15:17 - 2014-11-22 01:49 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-25 15:17 - 2014-11-22 01:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-25 15:17 - 2014-11-22 01:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-25 15:17 - 2014-11-22 01:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-01-25 15:17 - 2014-11-22 01:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-01-25 15:17 - 2014-11-22 01:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-01-25 15:17 - 2014-11-22 01:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-01-25 15:17 - 2014-11-22 01:29 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-01-25 15:17 - 2014-11-22 01:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-25 15:17 - 2014-11-22 01:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-01-25 15:17 - 2014-11-22 01:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-01-25 15:17 - 2014-11-22 01:23 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-01-25 15:17 - 2014-11-22 01:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-01-25 15:17 - 2014-11-22 01:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-25 15:17 - 2014-11-22 01:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-01-25 15:17 - 2014-11-22 01:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-01-25 15:17 - 2014-11-22 01:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-01-25 15:17 - 2014-11-22 00:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-01-25 15:17 - 2014-11-22 00:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-01-25 15:17 - 2014-10-31 05:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-01-25 15:17 - 2014-10-31 05:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-01-25 15:17 - 2014-10-31 05:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-01-25 15:17 - 2014-10-31 05:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-01-25 15:17 - 2014-10-31 05:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-01-25 15:17 - 2014-10-31 05:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-01-25 15:17 - 2014-10-31 05:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-01-25 15:17 - 2014-10-31 05:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-01-25 15:17 - 2014-10-31 04:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-01-25 15:17 - 2014-10-31 04:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-01-25 15:17 - 2014-10-31 04:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-01-25 15:17 - 2014-10-31 04:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-01-25 15:17 - 2014-10-31 04:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2015-01-25 15:17 - 2014-10-31 04:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-25 15:17 - 2014-10-31 04:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-01-25 15:17 - 2014-10-31 04:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-01-25 15:17 - 2014-10-31 04:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-01-25 15:17 - 2014-10-31 04:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-01-25 15:17 - 2014-10-31 04:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-01-25 15:17 - 2014-10-31 04:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-01-25 15:17 - 2014-10-31 04:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-01-25 15:17 - 2014-10-31 04:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-01-25 15:17 - 2014-10-31 04:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-25 15:17 - 2014-10-31 04:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-01-25 15:17 - 2014-10-31 04:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-01-25 15:17 - 2014-10-31 03:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-01-25 15:17 - 2014-10-31 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-01-25 15:17 - 2014-10-31 03:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-01-25 15:17 - 2014-10-31 03:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-01-25 15:17 - 2014-10-31 03:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-01-25 15:17 - 2014-10-31 03:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-01-25 15:17 - 2014-10-31 03:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-01-25 15:17 - 2014-10-31 03:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-01-25 15:17 - 2014-10-31 03:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-01-25 15:17 - 2014-10-31 03:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-01-25 15:17 - 2014-10-31 03:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-01-25 15:17 - 2014-10-31 03:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-01-25 15:17 - 2014-10-31 03:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-01-25 15:17 - 2014-10-31 03:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-01-25 15:17 - 2014-10-31 03:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2015-01-25 15:17 - 2014-10-31 03:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-01-25 15:17 - 2014-10-31 03:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-01-25 15:17 - 2014-10-31 03:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-01-25 15:17 - 2014-10-31 03:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-01-25 15:17 - 2014-10-31 02:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-01-25 15:17 - 2014-10-31 02:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-01-25 15:17 - 2014-10-31 02:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-01-25 15:17 - 2014-10-31 02:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-01-25 15:17 - 2014-10-31 02:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-01-25 15:17 - 2014-10-31 02:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-01-25 15:17 - 2014-10-31 02:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-01-25 15:17 - 2014-10-31 02:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-01-25 15:17 - 2014-10-31 02:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-01-25 15:16 - 2014-11-07 04:16 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-25 15:16 - 2014-11-07 03:26 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-01-25 15:15 - 2014-06-02 02:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-01-25 15:15 - 2014-05-31 06:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-25 15:15 - 2014-05-31 06:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-25 15:15 - 2014-05-31 04:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-25 15:15 - 2014-05-31 04:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-25 15:15 - 2014-05-31 04:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-25 15:15 - 2014-05-29 06:21 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2015-01-25 15:15 - 2014-05-27 09:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-01-25 15:15 - 2014-05-27 09:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-01-25 15:15 - 2014-04-30 04:30 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-01-25 15:15 - 2014-04-30 03:52 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2015-01-25 15:14 - 2014-11-09 23:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-25 15:14 - 2014-11-09 23:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-01-25 15:14 - 2014-11-09 23:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-01-25 15:14 - 2014-11-09 23:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-01-25 15:14 - 2014-10-31 23:57 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-01-25 15:14 - 2014-10-31 23:47 - 00790528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-01-25 15:14 - 2014-10-30 22:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-01-25 15:14 - 2014-10-30 22:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-25 15:14 - 2014-09-27 07:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-01-25 15:14 - 2014-09-27 05:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-01-25 15:14 - 2014-09-27 03:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-25 15:14 - 2014-09-27 03:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-01-25 15:14 - 2014-09-27 03:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-01-25 15:14 - 2014-09-10 06:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-25 15:14 - 2014-09-08 03:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-25 15:14 - 2014-09-08 03:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-25 15:14 - 2014-09-07 22:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2015-01-25 15:14 - 2014-09-04 22:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-25 15:14 - 2014-09-04 22:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-25 15:14 - 2014-09-04 03:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-01-25 15:14 - 2014-09-04 02:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-01-25 15:14 - 2014-09-04 01:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-01-25 15:14 - 2014-09-04 00:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-01-25 15:14 - 2014-09-04 00:10 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-01-25 15:14 - 2014-08-31 00:17 - 00148800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-25 15:14 - 2014-08-31 00:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-25 15:14 - 2014-08-30 22:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-01-25 15:14 - 2014-08-30 22:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-01-25 15:14 - 2014-08-30 21:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-01-25 15:14 - 2014-08-30 21:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-01-25 15:14 - 2014-08-30 20:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-01-25 15:14 - 2014-08-30 20:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-01-25 15:14 - 2014-08-28 02:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-25 15:14 - 2014-08-28 00:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-25 15:14 - 2014-08-28 00:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-01-25 15:14 - 2014-08-23 05:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-01-25 15:14 - 2014-08-23 05:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-01-25 15:14 - 2014-08-23 04:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-01-25 15:14 - 2014-08-02 00:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-01-25 15:14 - 2014-08-02 00:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-01-25 15:12 - 2014-12-09 01:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-25 15:12 - 2014-12-08 19:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-25 15:12 - 2014-12-08 19:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-01-25 15:12 - 2014-12-06 01:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-01-25 15:12 - 2014-11-10 02:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-01-25 15:12 - 2014-11-10 01:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-01-25 15:12 - 2014-10-29 04:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-01-25 15:12 - 2014-10-29 04:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-01-25 15:12 - 2014-10-29 03:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-25 15:12 - 2014-10-29 03:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-25 15:12 - 2014-10-29 03:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-25 15:12 - 2014-10-29 03:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-01-25 15:12 - 2014-10-29 03:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-01-25 15:12 - 2014-10-29 03:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-01-25 15:12 - 2014-10-29 03:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-01-25 15:12 - 2014-10-29 03:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-01-25 15:12 - 2014-10-29 03:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-01-25 15:12 - 2014-10-29 02:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-01-25 15:12 - 2014-10-29 01:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-01-25 15:12 - 2014-10-29 01:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-25 15:12 - 2014-07-24 03:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-01-25 15:12 - 2014-07-24 03:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-01-25 15:11 - 2014-10-30 23:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-25 15:11 - 2014-10-30 23:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-01-25 15:11 - 2014-10-13 02:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-25 15:11 - 2014-10-11 00:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-25 15:11 - 2014-10-11 00:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-01-25 15:11 - 2014-10-08 07:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-25 15:11 - 2014-10-08 07:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-25 15:11 - 2014-10-08 06:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-01-25 15:11 - 2014-10-08 05:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-25 15:11 - 2014-10-08 05:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-01-25 15:11 - 2014-09-22 04:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-01-25 15:11 - 2014-09-22 03:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-01-25 15:11 - 2014-09-22 03:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-01-25 15:11 - 2014-09-22 02:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-01-25 15:11 - 2014-09-19 00:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-01-25 15:11 - 2014-09-02 22:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-01-25 15:11 - 2014-09-02 22:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-01-25 15:11 - 2014-08-23 07:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-25 15:11 - 2014-08-23 07:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-01-25 15:11 - 2014-08-23 06:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-01-25 15:11 - 2014-08-23 05:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-01-25 15:11 - 2014-08-23 04:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-01-25 15:09 - 2014-12-19 06:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-25 15:09 - 2014-12-12 02:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-25 15:09 - 2014-12-12 00:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-01-25 15:09 - 2014-10-17 07:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-25 15:09 - 2014-10-17 06:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-01-25 15:09 - 2014-10-10 01:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-01-25 15:09 - 2014-10-10 01:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-01-25 15:09 - 2014-10-10 01:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-01-25 15:09 - 2014-10-08 07:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-01-25 15:09 - 2014-10-08 07:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-01-25 15:09 - 2014-10-08 07:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-01-25 15:09 - 2014-10-08 07:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-01-25 15:09 - 2014-10-08 06:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-01-25 15:09 - 2014-10-08 06:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-01-25 15:09 - 2014-10-08 06:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-01-25 15:09 - 2014-10-08 06:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-01-25 15:09 - 2014-10-08 06:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-25 15:09 - 2014-10-08 05:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-01-25 15:09 - 2014-09-04 00:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-25 15:09 - 2014-09-04 00:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-01-25 15:09 - 2014-08-23 05:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-25 15:09 - 2014-08-23 05:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-01-25 15:09 - 2014-08-02 00:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-01-25 15:09 - 2014-07-15 18:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-01-25 15:09 - 2014-07-15 08:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-01-25 15:09 - 2014-07-15 08:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-01-25 15:09 - 2014-07-15 08:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-01-25 15:09 - 2014-07-10 04:08 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\lockscreencn.dll
2015-01-25 15:08 - 2014-10-23 05:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-01-25 15:08 - 2014-10-23 05:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-01-25 15:08 - 2014-10-13 02:43 - 00238912 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-01-25 15:08 - 2014-10-13 02:43 - 00153920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-01-25 15:08 - 2014-10-13 02:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-01-25 15:08 - 2014-10-13 02:43 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-01-25 15:07 - 2014-10-07 03:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-01-25 14:51 - 2014-12-06 03:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-25 14:51 - 2014-12-06 01:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-25 14:51 - 2014-10-29 01:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-25 14:51 - 2014-10-29 01:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-25 14:37 - 2014-07-12 04:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-01-25 12:39 - 2015-01-25 12:39 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\library_dir
2015-01-25 12:39 - 2015-01-25 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-01-25 12:34 - 2015-02-11 15:00 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Raptr
2015-01-25 12:34 - 2015-01-31 13:18 - 00000000 ____D () C:\Program Files (x86)\Raptr
2015-01-25 12:34 - 2015-01-25 12:34 - 00053564 _____ () C:\Windows\SysWOW64\CCCInstall_201501251234439306.log
2015-01-25 12:34 - 2015-01-25 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-01-25 12:34 - 2015-01-25 12:34 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-01-25 12:34 - 2015-01-25 12:34 - 00000000 ____D () C:\Program Files (x86)\AMD
2015-01-25 12:30 - 2015-01-25 12:30 - 00000000 ____D () C:\AMD
2015-01-25 11:56 - 2015-01-25 11:56 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\EdEddnEddy\Downloads\autodetectutility.exe
2015-01-24 19:54 - 2015-01-24 19:54 - 00000000 ____D () C:\Program Files\Reference Assemblies
2015-01-24 19:54 - 2015-01-24 19:54 - 00000000 ____D () C:\Program Files\MSBuild
2015-01-24 19:54 - 2015-01-24 19:54 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2015-01-24 19:54 - 2015-01-24 19:54 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-01-24 19:51 - 2015-02-10 22:48 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-01-24 19:51 - 2015-02-10 11:04 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-01-24 19:51 - 2015-02-03 13:59 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-01-24 19:51 - 2015-02-02 18:55 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Ubisoft Game Launcher
2015-01-24 19:51 - 2015-01-24 19:51 - 00001217 _____ () C:\Users\EdEddnEddy\Desktop\Uplay.lnk
2015-01-24 19:51 - 2015-01-24 19:51 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-01-24 19:51 - 2015-01-24 19:51 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2015-01-24 19:51 - 2013-08-03 04:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2015-01-24 19:51 - 2013-08-03 04:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-24 19:51 - 2013-08-03 04:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2015-01-24 19:51 - 2013-08-03 04:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-01-24 17:27 - 2015-02-02 18:40 - 00000000 ____D () C:\Users\EdEddnEddy\Documents\My Games
2015-01-24 17:27 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-01-24 17:27 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-01-24 17:27 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-01-24 17:27 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-01-24 17:27 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-01-24 17:27 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-01-24 17:27 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-01-24 17:27 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-01-24 17:27 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-01-24 17:27 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-01-24 17:27 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-01-24 17:27 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-01-24 17:27 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-01-24 17:27 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-01-24 17:27 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-01-24 17:27 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-01-24 17:27 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-01-24 17:27 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-01-24 17:27 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-01-24 11:03 - 2015-02-11 12:39 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Spotify
2015-01-24 11:03 - 2015-01-24 11:03 - 00001838 _____ () C:\Users\EdEddnEddy\Desktop\Spotify.lnk
2015-01-24 11:03 - 2015-01-24 11:03 - 00001824 _____ () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-01-24 10:52 - 2015-02-11 15:27 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Spotify
2015-01-24 10:51 - 2015-01-24 10:52 - 00137888 _____ (Spotify Ltd) C:\Users\EdEddnEddy\Downloads\SpotifySetup.exe
2015-01-24 04:08 - 2015-01-24 04:08 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-01-24 04:07 - 2015-01-24 04:07 - 00671744 _____ () C:\Users\EdEddnEddy\Downloads\Detection.msi
2015-01-24 03:48 - 2015-02-11 13:01 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-24 03:40 - 2015-02-11 16:16 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-24 03:40 - 2015-01-24 03:40 - 01142128 _____ () C:\Users\EdEddnEddy\Downloads\SteamSetup.exe
2015-01-24 03:40 - 2015-01-24 03:40 - 00000975 _____ () C:\Users\Public\Desktop\Steam.lnk
2015-01-24 03:40 - 2015-01-24 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-24 03:39 - 2015-02-06 22:17 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-24 03:39 - 2015-01-24 03:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-24 03:38 - 2015-02-11 16:04 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-24 03:38 - 2015-02-11 15:52 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-24 03:38 - 2015-02-06 20:47 - 00003884 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-24 03:38 - 2015-02-06 20:47 - 00003648 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-24 03:38 - 2015-01-24 03:39 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Google
2015-01-24 03:38 - 2015-01-24 03:39 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-24 02:09 - 2015-01-24 02:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\ATI
2015-01-24 02:09 - 2015-01-24 02:09 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\ATI
2015-01-24 02:08 - 2015-01-25 12:34 - 00000000 ____D () C:\ProgramData\AMD
2015-01-24 02:07 - 2015-01-25 12:31 - 00000000 ____D () C:\Program Files\AMD
2015-01-24 02:07 - 2015-01-24 02:07 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2015-01-24 02:07 - 2015-01-24 02:07 - 00000000 _____ () C:\Windows\ativpsrm.bin
2015-01-24 02:07 - 2014-04-18 02:22 - 01187342 _____ () C:\Windows\system32\amdocl_as64.exe
2015-01-24 02:07 - 2014-04-18 02:22 - 01061902 _____ () C:\Windows\system32\amdocl_ld64.exe
2015-01-24 02:07 - 2014-04-18 02:22 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as32.exe
2015-01-24 02:07 - 2014-04-18 02:22 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld32.exe
2015-01-24 02:07 - 2014-04-18 01:25 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2015-01-24 02:07 - 2014-04-18 01:25 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2015-01-24 02:07 - 2014-04-18 01:25 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2015-01-24 02:07 - 2014-04-18 01:25 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2015-01-24 02:07 - 2014-04-18 01:21 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2015-01-24 02:07 - 2014-03-11 14:20 - 00222720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdWB6.sys
2015-01-24 02:07 - 2014-03-11 14:19 - 00142848 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\amdacpksl.sys
2015-01-24 02:07 - 2014-03-11 14:18 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2015-01-24 02:07 - 2013-12-12 13:53 - 00138832 _____ () C:\Windows\system32\samu_krnl_isv_ci.sbin
2015-01-24 02:07 - 2011-09-12 22:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2015-01-24 02:07 - 2011-09-12 22:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2015-01-24 02:06 - 2015-01-26 02:24 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-24 02:06 - 2015-01-24 02:06 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2015-01-24 02:06 - 2012-09-22 23:17 - 00021160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2015-01-24 02:05 - 2015-01-25 12:33 - 00000000 ____D () C:\Program Files\ATI Technologies
2015-01-24 02:05 - 2015-01-24 02:05 - 00000000 ____D () C:\Program Files\ATI
2015-01-23 22:46 - 2015-01-23 22:46 - 00002331 _____ () C:\Users\Public\Desktop\Goat Simulator.lnk
2015-01-23 22:46 - 2015-01-23 22:46 - 00001896 _____ () C:\Users\Public\Desktop\Cat-A-Cat Games.lnk
2015-01-23 22:46 - 2015-01-23 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Goat Simulator
2015-01-23 22:46 - 2015-01-23 22:46 - 00000000 ____D () C:\Program Files (x86)\Goat Simulator
2015-01-23 22:42 - 2015-02-03 10:26 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-01-23 22:41 - 2015-01-25 11:48 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Origin
2015-01-23 22:41 - 2015-01-23 22:42 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Origin
2015-01-23 22:39 - 2015-01-23 22:45 - 00000000 ____D () C:\Users\EdEddnEddy\Desktop\Goat Simulator
2015-01-23 22:14 - 2015-02-11 12:40 - 00000000 ____D () C:\ProgramData\Origin
2015-01-23 22:14 - 2015-01-26 09:40 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-01-23 22:14 - 2015-01-23 22:14 - 00000991 _____ () C:\Users\Public\Desktop\Origin.lnk
2015-01-23 22:14 - 2015-01-23 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-01-23 22:13 - 2015-02-11 14:59 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-01-23 22:09 - 2015-01-23 22:12 - 17102864 _____ (Electronic Arts, Inc.) C:\Users\EdEddnEddy\Downloads\OriginThinSetup.exe
2015-01-23 21:52 - 2015-01-23 21:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-01-23 21:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-01-23 21:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-01-23 21:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-01-23 21:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-01-23 21:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-01-23 21:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-01-23 21:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-01-23 21:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-01-23 21:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-01-23 21:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-01-23 21:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-01-23 21:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-01-23 21:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-01-23 21:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-01-23 21:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-01-23 21:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-01-23 21:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-01-23 21:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-01-23 21:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-01-23 21:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-01-23 21:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-01-23 21:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-01-23 21:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-01-23 21:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-01-23 21:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-01-23 21:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-01-23 21:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-01-23 21:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-01-23 21:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-01-23 21:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-01-23 21:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-01-23 21:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-01-23 21:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-01-23 21:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-01-23 21:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-01-23 21:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-01-23 21:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-01-23 21:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-01-23 21:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-01-23 21:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-01-23 21:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-01-23 21:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-01-23 21:50 - 2015-02-09 15:54 - 00239198 _____ () C:\Windows\DirectX.log
2015-01-23 21:50 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-01-23 21:50 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-01-23 21:50 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-01-23 21:50 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-01-23 21:50 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-01-23 21:50 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-01-23 21:50 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-01-23 21:50 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-01-23 21:50 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-01-23 21:50 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-01-23 21:50 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-01-23 21:50 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-01-23 21:50 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-01-23 21:50 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-01-23 21:50 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-01-23 21:50 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-01-23 21:50 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-01-23 21:50 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-01-23 21:50 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-01-23 21:50 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-01-23 21:50 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-01-23 21:50 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-01-23 21:50 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-01-23 21:50 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-01-23 21:50 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-01-23 21:50 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-01-23 21:50 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-01-23 21:50 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-01-23 21:50 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-01-23 21:50 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-01-23 21:50 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-01-23 21:50 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-01-23 21:50 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-01-23 21:50 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-01-23 21:50 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-01-23 21:50 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-01-23 21:50 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-01-23 21:50 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-01-23 21:50 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-01-23 21:50 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-01-23 21:50 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-01-23 21:50 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-01-23 21:50 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-01-23 21:50 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-01-23 21:50 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-01-23 21:50 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-01-23 21:50 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-01-23 21:50 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-01-23 21:50 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-01-23 21:50 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-01-23 21:50 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-01-23 21:50 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-01-23 21:49 - 2015-01-23 21:49 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Criterion Games
2015-01-23 07:35 - 2015-01-23 07:35 - 00001574 _____ () C:\Users\EdEddnEddy\Desktop\Jazzpunk.lnk
2015-01-23 07:34 - 2015-02-04 18:20 - 00000000 ____D () C:\Games
2015-01-23 07:32 - 2015-01-23 07:32 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-01-23 07:09 - 2015-02-11 15:47 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3719750220-1313712170-279508179-1001
2015-01-23 07:06 - 2015-02-11 12:42 - 00003922 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E4CECDFB-DBEF-4992-8800-060DA54F332F}
2015-01-23 07:06 - 2015-01-23 07:06 - 00000000 __SHD () C:\Users\EdEddnEddy\AppData\Local\EmieUserList
2015-01-23 07:06 - 2015-01-23 07:06 - 00000000 __SHD () C:\Users\EdEddnEddy\AppData\Local\EmieSiteList
2015-01-23 07:04 - 2015-01-23 07:04 - 00001442 _____ () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-23 07:04 - 2015-01-23 07:04 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Adobe
2015-01-23 07:04 - 2015-01-23 07:04 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\VirtualStore
2015-01-23 07:03 - 2015-02-11 15:53 - 01709625 _____ () C:\Windows\WindowsUpdate.log
2015-01-23 07:03 - 2015-02-05 23:28 - 00000000 ____D () C:\Users\EdEddnEddy
2015-01-23 07:03 - 2015-01-23 07:04 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Local\Packages
2015-01-23 07:03 - 2015-01-23 07:03 - 00000020 ___SH () C:\Users\EdEddnEddy\ntuser.ini
2015-01-23 07:03 - 2014-09-24 18:59 - 00000000 ___RD () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-23 07:03 - 2014-09-24 18:59 - 00000000 ___RD () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-01-23 07:03 - 2014-09-24 16:30 - 00000369 _____ () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-01-23 07:03 - 2014-09-24 16:30 - 00000369 _____ () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-01-23 07:03 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-23 07:03 - 2013-08-22 15:36 - 00000000 ____D () C:\Users\EdEddnEddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-23 07:02 - 2015-01-23 07:02 - 00000000 ____D () C:\Windows\CSC
2015-01-23 06:54 - 2015-01-23 07:04 - 00000000 ____D () C:\Windows\Panther
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-11 16:03 - 2013-08-22 14:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-11 16:00 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-11 14:59 - 2013-08-22 14:46 - 00028856 _____ () C:\Windows\setupact.log
2015-02-11 14:58 - 2014-09-24 08:08 - 00017150 _____ () C:\Windows\PFRO.log
2015-02-11 14:55 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-02-11 14:30 - 2013-08-22 15:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-02-11 12:54 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-02-11 12:53 - 2013-08-22 15:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-02-09 21:00 - 2014-09-24 16:21 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-03 19:31 - 2014-09-24 19:04 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-03 19:31 - 2014-09-24 19:04 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-27 17:09 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-01-27 11:56 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\rescache
2015-01-26 11:17 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ToastData
2015-01-26 11:17 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-01-26 11:17 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\en-GB
2015-01-26 11:17 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\en-GB
2015-01-26 11:17 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-26 11:14 - 2013-08-22 14:44 - 00337808 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-26 11:13 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\MediaViewer
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\FileManager
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\Camera
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-26 11:11 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-01-26 11:10 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\WinStore
2015-01-24 02:06 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\restore
2015-01-23 07:18 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\tracing
2015-01-23 06:57 - 2013-08-22 15:37 - 00002664 _____ () C:\Windows\DtcInstall.log
2015-01-23 06:57 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-01-23 06:54 - 2013-08-22 13:36 - 00000000 __RHD () C:\Users\Default
2015-01-23 06:53 - 2013-08-22 15:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
 
Some content of TEMP:
====================
C:\Users\EdEddnEddy\AppData\Local\Temp\amd-catalyst-omega-14.12-without-dotnet45-win8.1-64bit.exe
C:\Users\EdEddnEddy\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\EdEddnEddy\AppData\Local\Temp\Gw2.exe
C:\Users\EdEddnEddy\AppData\Local\Temp\raptrpatch.exe
C:\Users\EdEddnEddy\AppData\Local\Temp\raptr_stub.exe
C:\Users\EdEddnEddy\AppData\Local\Temp\sonarinst.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-02-04 18:09
 
==================== End Of Log ============================

  • 0

#4
ededdneddy

ededdneddy

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-02-2015 01
Ran by EdEddnEddy at 2015-02-11 16:49:42
Running from C:\Users\EdEddnEddy\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Allmyapps (HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Allmyapps) (Version: 2.0.0.30 - Allmyapps)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5646 - AVG Technologies)
AVG 2015 (Version: 15.0.4284 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5646 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23831 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Battlefield™ Hardline Beta (HKLM-x32\...\{F5526D9D-13AD-4270-8707-AC921D168299}) (Version: 1.0.0.2 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Borderlands: The Pre-Sequel (HKLM-x32\...\Steam App 261640) (Version:  - 2K Australia)
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version:  - Infinity Ward)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.53.2 - Black Tree Gaming)
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Red Faction: Guerrilla Steam Edition (HKLM-x32\...\Steam App 20500) (Version:  - Volition)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.20.30.71 - Client Connect LTD) <==== ATTENTION
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
System Requirements Lab Detection (HKLM-x32\...\{7CDE7F70-36F3-4C5F-A957-D4C252A49A5F}) (Version: 2.2.4.0 - Husdawg, LLC)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
Unity (HKLM-x32\...\Unity) (Version: 4.6.2f1 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-3719750220-1313712170-279508179-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
02-02-2015 11:06:26 Installed DirectX
03-02-2015 13:57:21 Installed DirectX
04-02-2015 19:48:13 Installed Microsoft Visual C++ 2005 Redistributable
09-02-2015 15:52:33 Installed DirectX
11-02-2015 14:27:58 Installed AVG 2015
11-02-2015 14:28:55 Installed AVG 2015
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 13:25 - 2013-08-22 13:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {1A7537A6-8A10-4933-8DE8-DD98B7D9E052} - System32\Tasks\avaxvbxvfy => C:\Users\EdEddnEddy\AppData\Local\avaxvbxvfy\avaxvbxvfy.exe [2015-02-09] ()
Task: {3AE828CE-56A4-4834-B35E-D09CC373D8B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-24] (Google Inc.)
Task: {6ED4EA8F-5381-4AAE-902F-2D88877E8F73} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-12-31] (Microsoft Corporation)
Task: {8FE787AA-C320-46C4-9F88-E1078FC3F3F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-24] (Google Inc.)
Task: {9E67B554-FBDE-4FBE-9B51-35101A4894D7} - System32\Tasks\AllmyappsUpdateTask => C:\Users\EdEddnEddy\AppData\Roaming\Allmyapps\Allmyapps.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2015-01-24 19:51 - 2015-02-03 13:59 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-02-06 22:17 - 2015-02-04 09:02 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
2015-02-06 22:17 - 2015-02-04 09:02 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
2015-02-06 22:17 - 2015-02-04 09:02 - 09170760 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
2015-02-06 22:17 - 2015-02-04 09:02 - 14965064 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll
2015-01-24 03:43 - 2014-12-01 21:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-01-24 03:43 - 2014-12-01 21:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-01-24 03:43 - 2014-12-01 21:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-01-24 03:43 - 2014-12-01 21:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-01-24 03:43 - 2014-11-11 18:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-24 03:43 - 2014-12-02 00:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-01-24 03:43 - 2015-01-23 22:34 - 02227904 _____ () C:\Program Files (x86)\Steam\video.dll
2015-01-24 03:43 - 2014-12-02 00:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-24 03:43 - 2014-12-02 00:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-01-24 03:43 - 2014-12-01 21:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-01-24 03:43 - 2015-01-23 22:33 - 00696512 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-01-24 03:43 - 2015-01-15 23:42 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-01-24 03:43 - 2015-01-15 23:42 - 01709960 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3719750220-1313712170-279508179-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\EdEddnEddy\Pictures\Lamborghini-Aventador-Hd-Wallpapers-Free-Download-1.jpg
DNS Servers: 192.168.1.254
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3719750220-1313712170-279508179-500 - Administrator - Disabled)
EdEddnEddy (S-1-5-21-3719750220-1313712170-279508179-1001 - Administrator - Enabled) => C:\Users\EdEddnEddy
Guest (S-1-5-21-3719750220-1313712170-279508179-501 - Limited - Disabled)
 
==================== Faulty Device Manager Devices =============
 
Name: SM Bus Controller
Description: SM Bus Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/11/2015 02:29:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (02/11/2015 02:28:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (02/11/2015 00:53:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 15a0
 
Start Time: 01d045f95499c761
 
Termination Time: 4294967295
 
Application Path: C:\Windows\system32\wwahost.exe
 
Report Id: f7f32691-b1ec-11e4-8274-448a5bd01b51
 
Faulting package full name: Microsoft.BingFinance_3.0.4.298_x64__8wekyb3d8bbwe
 
Faulting package-relative application ID: AppexFinance
 
Error: (02/11/2015 00:53:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Ed)
Description: Package Microsoft.BingFinance_3.0.4.298_x64__8wekyb3d8bbwe+AppexFinance was terminated because it took too long to suspend.
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: ATI EEU failed to create a QNode
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: ATI EEU failed to create a QNode
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: ATI EEU failed to create a QNode
 
Error: (02/09/2015 03:52:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (02/08/2015 09:44:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Faulting module name: MSVCR80.dll, version: 8.0.50727.8428, time stamp: 0x520b1060
Exception code: 0xc0000005
Fault offset: 0x00012f4b
Faulting process ID: 0x12a8
Faulting application start time: 0xrads_user_kernel.exe0
Faulting application path: rads_user_kernel.exe1
Faulting module path: rads_user_kernel.exe2
Report ID: rads_user_kernel.exe3
Faulting package full name: rads_user_kernel.exe4
Faulting package-relative application ID: rads_user_kernel.exe5
 
Error: (02/08/2015 09:42:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Faulting module name: MSVCR80.dll, version: 8.0.50727.8428, time stamp: 0x520b1060
Exception code: 0xc0000005
Fault offset: 0x00012f4b
Faulting process ID: 0x954
Faulting application start time: 0xrads_user_kernel.exe0
Faulting application path: rads_user_kernel.exe1
Faulting module path: rads_user_kernel.exe2
Report ID: rads_user_kernel.exe3
Faulting package full name: rads_user_kernel.exe4
Faulting package-relative application ID: rads_user_kernel.exe5
 
 
System errors:
=============
Error: (02/11/2015 04:48:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Network List Service service terminated with the following error: 
%%127
 
Error: (02/11/2015 04:48:06 PM) (Source: DCOM) (EventID: 10010) (User: Ed)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (02/11/2015 04:46:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Network List Service service terminated with the following error: 
%%127
 
Error: (02/11/2015 04:46:06 PM) (Source: DCOM) (EventID: 10010) (User: Ed)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (02/11/2015 04:44:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Network List Service service terminated with the following error: 
%%127
 
Error: (02/11/2015 04:44:06 PM) (Source: DCOM) (EventID: 10010) (User: Ed)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (02/11/2015 04:42:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Audio service terminated with the following error: 
%%2147944140
 
Error: (02/11/2015 04:42:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Audio service terminated with the following error: 
%%2147944140
 
Error: (02/11/2015 04:42:24 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Audio service terminated with the following error: 
%%2147944140
 
Error: (02/11/2015 04:42:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Network List Service service terminated with the following error: 
%%127
 
 
Microsoft Office Sessions:
=========================
Error: (02/11/2015 02:29:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
 
Error: (02/11/2015 02:28:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
 
Error: (02/11/2015 00:53:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.1703115a001d045f95499c7614294967295C:\Windows\system32\wwahost.exef7f32691-b1ec-11e4-8274-448a5bd01b51Microsoft.BingFinance_3.0.4.298_x64__8wekyb3d8bbweAppexFinance
 
Error: (02/11/2015 00:53:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Ed)
Description: Microsoft.BingFinance_3.0.4.298_x64__8wekyb3d8bbwe+AppexFinance
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: 
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: 
 
Error: (02/09/2015 05:12:21 PM) (Source: ATIeRecord) (EventID: 16393) (User: )
Description: 
 
Error: (02/09/2015 03:52:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
 
Error: (02/08/2015 09:44:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: rads_user_kernel.exe0.0.0.04e65c1acMSVCR80.dll8.0.50727.8428520b1060c000000500012f4b12a801d043e861138a4dC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeC:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_d08a11e2442dc25d\MSVCR80.dll9ec40804-afdb-11e4-8273-448a5bd01b51
 
Error: (02/08/2015 09:42:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: rads_user_kernel.exe0.0.0.04e65c1acMSVCR80.dll8.0.50727.8428520b1060c000000500012f4b95401d043e8259413bdC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeC:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_d08a11e2442dc25d\MSVCR80.dll6343677e-afdb-11e4-8273-448a5bd01b51
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4440 CPU @ 3.10GHz
Percentage of memory in use: 26%
Total physical RAM: 8143.91 MB
Available physical RAM: 5969.67 MB
Total Pagefile: 9423.91 MB
Available Pagefile: 7130.88 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:931 GB) (Free:643.96 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================

  • 0

#5
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Hi.

Ok lets get going.

There appears to be some drivers missing as well so this may be related to your sound issue - we will look at that later.

 

Step 1

 

We need to uninstall some programs.

Open Programs and Features by clicking the Start button, clicking Control Panel, clicking Programs, and then clicking Programs and Features.

Select the following programs from the list below, one at a time and click Uninstall.
 

  • Unity
  • Unity Web Player

 

 

Step 2

 

FRST Fix

If FRST.exe/FRST64.exe is not on your desktop, please download Farbar Recovery Scan Tool and save it to your desktop.
 

  • Download the attached Attached File  fixlist.txt   2.63KB   144 downloads and save it to your desktop <<< very important - it must be in the same location as FRST.exe/FRST64.exe
  • Right click frst.png and run as administrator. When the tool opens click Yes to the disclaimer.
  • Press the Fix button.
  • It will produce a log called fixlog.txt on your Desktop.
  • Please copy and paste the contents of that log back here.

    NOTICE: This script was written specifically for this user, for use on that particular machine, at this point in time. Running this on another machine may cause damage to your operating system.

 

 

Step 3

 

 jrt.pngJunkware Removal Tool
Please download Junkware Removal Tool to your desktop. << Important
Ensure that any security software is temporarily disabled for the duration of the scan. Don't forget to re-enable it afterwards.
 

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by right-clicking jrt.png and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

 

Step 4

 

adwcleaner.pngAdwCleaner by Xplode

Download AdwCleaner from here or from here. Save the file to the desktop.


NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.

Close all open windows and browsers.

  • Vista/7/8 users: Right click the adwcleaner.pngAdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
    You will see the following console:

    AdwScan.jpg?
  • Click the Scan button and wait for the scan to finish.
  • After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: Pending. Please uncheck elements you don't want to remove. Please Do Not delete anything at this time.
  • Click the Report button to get the log.
  • Copy and Paste it into your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[R0].txt.
  • Click the X in the upper right corner of the program or click the File menu and click Exit to close the program.

Optional:

NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.

 

 

Items I need to see in your next post:
 

  • Did the uninstalls go ok?
  • FRST Fixlog
  • JRT Log
  • ADWcleaner Scan log

 

 

 

 


  • 0

#6
ededdneddy

ededdneddy

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

Ruggie, I'm 110% certain unity isn't the problem, I use it for college work...


  • 0

#7
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Ok, feel free to leave it. It regularly gets bundled with some other rubbish which is why I added it.

 

Use the following fixlist instead when you run FRST.

 

Attached File  fixlist.txt   2.03KB   61 downloads

 

 


  • 0

#8
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics


Also tagged with one or more of these keywords: malware

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP