Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My PC wont finish downloads or load webpages properly


  • Please log in to reply

#1
dobby200

dobby200

    Member

  • Member
  • PipPip
  • 22 posts

My PC wont load web pages properly, and any downloads i try to do stop with 1kb remaining.

I am running Windows 8.1.

I have scanned with Avast, normal scans didn't discover anything, but a boot time scan did, the first one picked somethng up and removed it, but i dont remember the name of the removed file. All scans after have been clean.

 

Here is my FRST.txt log (in blue) and the Addition.txt log (in green)

 

In the quote box further down is the OTL log with the extras log (in red)

 

 

Thank you for your time

Dobby

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-02-2015
Ran by Dobby D (administrator) on DOBBY-LAPTOP on 22-02-2015 22:14:56
Running from G:\
Loaded Profiles: Dobby D (Available profiles: Dobby D)
Platform: Windows 8.1 (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Gaming Center\vivokey.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Windows\SysWOW64\UMonit64.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dropbox, Inc.) C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\Dropbox.exe
(OldTimer Tools) G:\OTL.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2473800 2014-09-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3276040 2014-05-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-15] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [ASUS ROG MacroKey] => C:\Program Files (x86)\ASUS\ASUS ROG MacroKey\Hid.exe [2036224 2014-07-30] (ASUS)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-02-10] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-755688246-219275176-976515087-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.uk/
HKU\S-1-5-21-755688246-219275176-976515087-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-755688246-219275176-976515087-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-755688246-219275176-976515087-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-10]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.yahoo.co.uk/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-10]
CHR Extension: (Google Docs) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-10]
CHR Extension: (Google Drive) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-10]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-10]
CHR Extension: (YouTube) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-10]
CHR Extension: (Google Search) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-10]
CHR Extension: (Avast SafePrice) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-02-22]
CHR Extension: (Google Sheets) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-10]
CHR Extension: (AdBlock) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-10]
CHR Extension: (Avast Online Security) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-10]
CHR Extension: (Ashish Mishra) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnkdbjbjpnpjeciipoaflmpcddinpjjp [2015-02-10]
CHR Extension: (Google Wallet) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-10]
CHR Extension: (Double Arch HD Theme) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\phldjclfomoapckofhlcpanpkjokglhh [2015-02-10]
CHR Extension: (Gmail) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-02-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-02-10]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [345912 2014-08-29] (ASUSTeK)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-02-10] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-02-10] (Avast Software)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [102152 2014-05-09] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-11] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-09] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [121288 2014-05-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel® Corporation) [File not signed]
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19438920 2014-09-09] (NVIDIA Corporation)
S3 ThunderboltService; C:\Program Files\Intel\Thunderbolt Software\tbtsvc.exe [1179944 2014-05-13] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-02-10] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [87912 2015-02-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-02-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-02-10] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-02-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-02-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-02-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-02-10] ()
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-04-22] (Motorola Solutions, Inc.)
U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [107208 2014-01-17] (GenesysLogic)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [192456 2014-05-09] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [77992 2014-08-04] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3446240 2014-06-18] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R1 NFC_Driver; C:\Windows\System32\drivers\NFC_Driver.sys [48336 2014-03-27] (Titan ARC Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-09] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40264 2014-09-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-02-10] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 22:14 - 2015-02-22 22:15 - 00000000 ____D () C:\FRST
2015-02-22 20:37 - 2015-02-22 20:37 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-22 20:35 - 2015-02-22 20:35 - 00000000 ____D () C:\ProgramData\F-Secure
2015-02-22 20:32 - 2015-02-22 20:32 - 00000036 _____ () C:\Users\Dobby D\AppData\Local\housecall.guid.cache
2015-02-22 20:14 - 2015-02-22 20:15 - 08280776 _____ (McAfee, Inc.) C:\Users\Dobby D\Downloads\SecurityScan_Release.exe
2015-02-22 20:05 - 2015-02-22 20:05 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieBrowserModeList
2015-02-22 20:00 - 2015-02-22 20:08 - 02490180 _____ (Trend Micro Inc.) C:\Users\Dobby D\Downloads\HousecallLauncher64 (1).exe
2015-02-22 18:03 - 2015-02-22 18:04 - 00816888 _____ () C:\Users\Dobby D\Downloads\Detection.msi
2015-02-22 14:38 - 2015-02-22 22:16 - 00000000 ___RD () C:\Users\Dobby D\Dropbox
2015-02-14 12:55 - 2015-02-03 19:31 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-14 12:55 - 2015-02-03 19:31 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-14 01:17 - 2015-02-14 01:17 - 00000074 _____ () C:\Users\Dobby D\Desktop\WOL brutal.txt
2015-02-13 19:42 - 2015-02-13 19:42 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-13 19:40 - 2015-02-13 19:40 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-02-13 19:40 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Sun
2015-02-13 19:40 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-13 19:39 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Oracle
2015-02-13 19:39 - 2015-02-13 19:39 - 00000000 ____D () C:\Program Files\Java
2015-02-13 18:41 - 2015-02-13 23:11 - 00000000 ____D () C:\Users\Dobby D\Documents\StarCraft II
2015-02-13 18:41 - 2015-02-13 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2015-02-13 18:36 - 2015-02-14 01:18 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Battle.net
2015-02-13 18:36 - 2015-02-13 18:41 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-02-13 18:36 - 2015-02-13 18:40 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Battle.net
2015-02-13 18:36 - 2015-02-13 18:36 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Blizzard Entertainment
2015-02-13 18:36 - 2015-02-13 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-02-13 18:32 - 2015-02-13 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Back to the Future - The Game [GOG.com]
2015-02-13 18:32 - 2015-02-13 18:32 - 00000000 ____D () C:\ProgramData\Battle.net
2015-02-13 17:43 - 2015-02-13 17:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTL - Advanced Edition [GOG.com]
2015-02-12 23:57 - 2015-02-12 23:57 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\GOG
2015-02-12 23:57 - 2015-02-12 23:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper 2 [GOG.com]
2015-02-12 23:22 - 2015-02-12 23:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex GOTY [GOG.com]
2015-02-12 23:10 - 2015-02-12 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simon the Sorcerer [GOG.com]
2015-02-12 23:09 - 2015-02-12 23:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight of the Amazon Queen [GOG.com]
2015-02-12 23:07 - 2015-02-12 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper Gold [GOG.com]
2015-02-12 23:05 - 2015-02-12 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beneath a Steel Sky [GOG.com]
2015-02-12 09:37 - 2015-01-12 03:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-12 09:37 - 2015-01-12 02:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-12 09:37 - 2015-01-12 02:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-12 09:37 - 2015-01-12 02:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-12 09:37 - 2015-01-12 02:34 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-02-12 09:37 - 2015-01-12 02:32 - 06041088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-12 09:37 - 2015-01-12 02:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-12 09:37 - 2015-01-12 02:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-12 09:37 - 2015-01-12 02:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-12 09:37 - 2015-01-12 02:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-12 09:37 - 2015-01-12 02:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-12 09:37 - 2015-01-12 02:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-12 09:37 - 2015-01-12 01:58 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-02-12 09:37 - 2015-01-12 01:55 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-02-12 09:37 - 2015-01-12 01:51 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-02-12 09:37 - 2015-01-12 01:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-12 09:37 - 2015-01-12 01:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-12 09:37 - 2015-01-12 01:48 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-12 09:37 - 2015-01-12 01:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-12 09:37 - 2015-01-12 01:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-12 09:37 - 2015-01-12 01:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-12 09:37 - 2015-01-12 01:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-02-12 09:37 - 2015-01-12 01:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-02-12 09:37 - 2015-01-12 01:29 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-12 09:37 - 2015-01-12 01:27 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-02-12 09:37 - 2015-01-12 01:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-12 09:37 - 2015-01-12 01:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-02-12 09:37 - 2015-01-12 01:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-12 09:37 - 2015-01-12 01:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-12 09:37 - 2015-01-12 01:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-12 09:37 - 2015-01-12 01:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-12 09:37 - 2015-01-12 01:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-12 09:37 - 2015-01-12 01:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-12 09:37 - 2015-01-12 01:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-12 09:37 - 2015-01-12 00:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-12 09:37 - 2015-01-12 00:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-12 09:37 - 2014-11-22 02:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-02-12 09:37 - 2014-11-22 02:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-02-12 09:37 - 2014-11-22 02:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-02-12 09:37 - 2014-11-22 02:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-12 09:37 - 2014-11-22 01:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-12 09:37 - 2014-11-22 01:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-12 09:37 - 2014-10-31 05:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-02-12 09:37 - 2014-10-31 05:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-02-12 09:37 - 2014-10-31 05:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-02-12 09:37 - 2014-10-31 05:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-02-12 09:37 - 2014-10-31 05:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-02-12 09:37 - 2014-10-31 05:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-02-12 09:37 - 2014-10-31 05:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-12 09:37 - 2014-10-31 05:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-12 09:37 - 2014-10-31 04:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-12 09:37 - 2014-10-31 04:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-12 09:37 - 2014-10-31 04:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-02-12 09:37 - 2014-10-31 04:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-12 09:37 - 2014-10-31 04:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2015-02-12 09:37 - 2014-10-31 04:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-12 09:37 - 2014-10-31 04:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-12 09:37 - 2014-10-31 04:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-12 09:37 - 2014-10-31 04:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-02-12 09:37 - 2014-10-31 04:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-12 09:37 - 2014-10-31 04:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-02-12 09:37 - 2014-10-31 04:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-02-12 09:37 - 2014-10-31 04:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-02-12 09:37 - 2014-10-31 04:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-12 09:37 - 2014-10-31 04:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-02-12 09:37 - 2014-10-31 04:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-02-12 09:37 - 2014-10-31 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-02-12 09:37 - 2014-10-31 03:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-02-12 09:37 - 2014-10-31 03:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-02-12 09:37 - 2014-10-31 03:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-02-12 09:37 - 2014-10-31 03:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-02-12 09:37 - 2014-10-31 03:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-02-12 09:37 - 2014-10-31 03:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-02-12 09:37 - 2014-10-31 03:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-12 09:37 - 2014-10-31 03:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-12 09:37 - 2014-10-31 03:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-12 09:37 - 2014-10-31 03:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-12 09:37 - 2014-10-31 03:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-02-12 09:37 - 2014-10-31 03:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-12 09:37 - 2014-10-31 03:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2015-02-12 09:37 - 2014-10-31 03:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-12 09:37 - 2014-10-31 03:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-12 09:37 - 2014-10-31 03:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-02-12 09:37 - 2014-10-31 02:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-02-12 09:37 - 2014-10-31 02:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-12 09:37 - 2014-10-31 02:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-02-12 09:37 - 2014-10-31 02:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-02-12 09:37 - 2014-10-31 02:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-02-12 09:37 - 2014-10-31 02:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-02-12 09:37 - 2014-08-16 04:08 - 01507648 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-02-12 09:37 - 2014-08-16 03:16 - 01205976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-02-12 09:37 - 2014-08-16 00:29 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-12 09:37 - 2014-08-16 00:23 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-02-12 09:37 - 2014-08-16 00:22 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-02-12 09:37 - 2014-08-16 00:19 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-12 09:37 - 2014-08-16 00:17 - 08757760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-02-12 09:37 - 2014-08-16 00:14 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 05902848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 00840192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-02-12 09:37 - 2014-08-16 00:11 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-02-12 09:37 - 2014-08-16 00:08 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-12 09:37 - 2014-08-16 00:07 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-02-12 09:37 - 2014-07-24 15:28 - 00468288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-02-12 09:37 - 2014-07-24 11:42 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-02-12 09:37 - 2014-03-19 07:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-02-12 09:37 - 2014-02-06 11:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-12 09:37 - 2014-02-06 11:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-12 09:37 - 2014-02-06 10:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-12 09:37 - 2014-01-27 18:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-02-12 09:36 - 2014-10-30 22:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-02-12 09:36 - 2014-10-30 22:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-02-12 09:36 - 2014-08-23 07:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-02-12 09:36 - 2014-08-23 07:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-02-12 09:36 - 2014-08-23 06:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-02-12 09:36 - 2014-08-23 05:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-02-12 09:36 - 2014-08-23 04:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-02-12 09:36 - 2014-08-16 03:58 - 01112512 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-02-12 09:36 - 2014-08-16 01:31 - 00838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-02-12 09:36 - 2014-08-16 01:04 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-02-12 09:36 - 2014-08-16 00:58 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-02-12 09:36 - 2014-08-16 00:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-02-12 09:36 - 2014-08-16 00:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-02-12 09:36 - 2014-08-16 00:45 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-02-12 09:36 - 2014-08-16 00:43 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2015-02-12 09:36 - 2014-08-16 00:43 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-02-12 09:36 - 2014-08-16 00:31 - 00914432 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-02-12 09:36 - 2014-08-16 00:31 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2015-02-12 09:36 - 2014-08-16 00:22 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-02-12 09:36 - 2014-08-16 00:18 - 04758528 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-02-12 09:36 - 2014-08-16 00:10 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-02-12 09:36 - 2014-07-24 11:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2015-02-12 09:36 - 2014-07-24 10:09 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-02-12 09:36 - 2014-07-24 09:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-02-12 06:20 - 2015-01-10 08:22 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-12 06:14 - 2015-02-12 06:14 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\daedalic entertainment
2015-02-12 05:18 - 2015-01-10 07:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-12 05:18 - 2015-01-10 06:38 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-12 04:52 - 2015-01-15 22:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-12 04:52 - 2015-01-15 22:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-12 04:52 - 2015-01-14 04:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-02-12 04:52 - 2015-01-14 03:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-02-12 04:52 - 2015-01-13 22:11 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-12 04:52 - 2015-01-13 22:04 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-12 04:52 - 2015-01-10 09:10 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-12 04:52 - 2015-01-10 09:10 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-02-12 04:52 - 2015-01-10 08:28 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-02-12 04:52 - 2014-10-29 02:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-12 04:52 - 2014-10-29 02:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-12 04:52 - 2014-10-29 02:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-12 04:52 - 2014-10-29 02:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-12 04:52 - 2014-10-29 02:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-02-12 04:52 - 2014-10-29 02:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-02-12 04:52 - 2014-10-29 01:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-02-12 04:52 - 2014-10-29 01:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-12 04:52 - 2014-10-29 01:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-02-12 04:52 - 2014-10-29 01:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-02-12 04:52 - 2014-10-29 01:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-02-12 04:52 - 2014-10-29 01:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-02-12 04:52 - 2014-10-29 01:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-02-12 01:59 - 2014-12-09 03:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-12 01:59 - 2014-12-09 01:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-12 00:32 - 2014-03-20 04:19 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-02-12 00:32 - 2014-03-20 03:41 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-02-12 00:32 - 2014-03-20 03:41 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-02-12 00:32 - 2014-03-20 00:53 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-02-12 00:32 - 2014-03-20 00:48 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2015-02-12 00:32 - 2014-03-19 23:55 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-02-12 00:32 - 2014-03-19 23:39 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-02-12 00:32 - 2014-03-19 23:36 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-02-12 00:32 - 2014-03-19 05:31 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-02-12 00:32 - 2014-03-19 05:08 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-02-12 00:32 - 2014-03-11 15:18 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-02-12 00:32 - 2014-03-11 14:28 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2015-02-12 00:32 - 2014-03-08 20:38 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-02-12 00:32 - 2014-03-08 20:35 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-02-12 00:32 - 2014-03-08 15:29 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-02-12 00:32 - 2014-03-08 11:34 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-02-12 00:32 - 2014-03-08 08:33 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-02-12 00:32 - 2014-03-08 07:47 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2015-02-12 00:32 - 2014-03-08 07:04 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-02-12 00:32 - 2014-03-08 06:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-02-12 00:32 - 2014-03-08 06:40 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-02-12 00:32 - 2014-03-08 06:31 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2015-02-12 00:32 - 2014-03-08 06:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-02-12 00:32 - 2014-03-08 05:41 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-02-12 00:32 - 2014-03-08 05:11 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-02-12 00:32 - 2014-03-06 14:34 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-02-12 00:32 - 2014-03-06 12:51 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-02-12 00:32 - 2014-03-06 12:40 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-02-12 00:32 - 2014-03-06 11:19 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-02-12 00:32 - 2014-03-06 10:46 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-02-12 00:32 - 2014-03-06 10:35 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-02-12 00:32 - 2014-03-06 09:29 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-02-12 00:32 - 2014-03-06 09:22 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-02-12 00:32 - 2014-03-06 09:22 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-02-12 00:32 - 2014-03-06 09:20 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2015-02-12 00:32 - 2014-03-06 09:20 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-02-12 00:32 - 2014-03-06 09:19 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2015-02-12 00:32 - 2014-03-06 08:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-02-12 00:32 - 2014-03-06 08:20 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-02-12 00:32 - 2014-03-06 08:00 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-02-12 00:32 - 2014-03-06 07:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-02-12 00:32 - 2014-03-06 07:02 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-02-12 00:32 - 2014-03-06 06:57 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-02-12 00:32 - 2014-03-06 06:51 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-02-12 00:32 - 2014-03-06 06:32 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-02-12 00:32 - 2014-03-06 06:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2015-02-12 00:32 - 2014-03-06 06:23 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-02-12 00:32 - 2014-03-06 06:23 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2015-02-12 00:32 - 2014-03-06 06:21 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-02-12 00:32 - 2014-03-06 06:21 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2015-02-12 00:32 - 2014-03-06 06:16 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-02-12 00:32 - 2014-03-06 06:13 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-02-12 00:32 - 2014-03-06 06:05 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-02-12 00:32 - 2014-03-06 06:04 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-02-12 00:32 - 2014-03-06 06:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2015-02-12 00:32 - 2014-03-06 05:54 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-02-12 00:32 - 2014-03-06 05:47 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-02-12 00:32 - 2014-03-06 05:42 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2015-02-12 00:32 - 2014-03-04 12:14 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-02-12 00:32 - 2014-03-04 11:10 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-02-12 00:32 - 2014-03-04 07:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-02-12 00:32 - 2014-03-04 07:13 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-02-12 00:32 - 2014-03-04 07:00 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2015-02-12 00:32 - 2014-03-04 06:42 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-02-12 00:32 - 2014-03-04 06:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2015-02-12 00:32 - 2014-03-04 06:03 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-02-12 00:32 - 2014-03-04 05:52 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-02-12 00:31 - 2014-09-27 07:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-02-12 00:31 - 2014-09-27 05:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-02-12 00:31 - 2014-09-27 03:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-02-12 00:31 - 2014-08-23 05:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-02-12 00:31 - 2014-08-23 05:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-02-12 00:31 - 2014-05-03 05:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-02-12 00:31 - 2014-05-03 05:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2015-02-12 00:31 - 2014-05-03 05:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-02-12 00:31 - 2014-05-03 05:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-02-12 00:31 - 2014-05-03 04:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2015-02-12 00:31 - 2014-05-03 04:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2015-02-12 00:31 - 2014-05-03 04:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2015-02-12 00:31 - 2014-05-02 23:26 - 00050745 _____ () C:\Windows\system32\srms.dat
2015-02-12 00:31 - 2014-04-30 06:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2015-02-12 00:31 - 2014-04-30 05:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-02-12 00:31 - 2014-04-30 04:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-02-12 00:31 - 2014-04-30 04:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-02-12 00:31 - 2014-04-30 04:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-02-12 00:31 - 2014-04-30 03:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-02-12 00:31 - 2014-04-30 03:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-02-12 00:31 - 2014-04-30 03:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-02-12 00:31 - 2014-04-30 03:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-02-12 00:31 - 2014-04-30 03:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-02-12 00:31 - 2014-04-30 03:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-02-12 00:31 - 2014-04-28 22:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-02-12 00:31 - 2014-04-26 22:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-02-12 00:31 - 2014-04-26 20:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-02-12 00:31 - 2014-04-26 16:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-02-12 00:31 - 2014-04-14 09:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-02-12 00:31 - 2014-04-14 08:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-02-12 00:31 - 2014-04-14 05:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-02-12 00:31 - 2014-04-09 06:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-02-12 00:31 - 2014-04-09 05:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-02-12 00:31 - 2014-03-19 05:50 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-02-12 00:31 - 2014-03-19 05:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2015-02-12 00:31 - 2014-03-08 20:40 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-02-12 00:31 - 2014-03-08 09:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2015-02-12 00:31 - 2014-03-08 08:25 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2015-02-12 00:31 - 2014-03-08 08:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2015-02-12 00:31 - 2014-03-08 07:51 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2015-02-12 00:31 - 2014-03-08 06:41 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-02-12 00:31 - 2014-03-08 06:25 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-02-12 00:31 - 2014-03-08 06:04 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-02-12 00:31 - 2014-03-08 05:58 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-02-12 00:31 - 2014-03-06 14:34 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-02-12 00:31 - 2014-03-06 11:19 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2015-02-12 00:31 - 2014-03-06 09:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-02-12 00:31 - 2014-03-06 09:24 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-02-12 00:31 - 2014-03-06 09:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-02-12 00:31 - 2014-03-06 09:19 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-02-12 00:31 - 2014-03-06 09:19 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-02-12 00:31 - 2014-03-06 09:19 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-02-12 00:31 - 2014-03-06 09:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2015-02-12 00:31 - 2014-03-06 08:41 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2015-02-12 00:31 - 2014-03-06 08:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-02-12 00:31 - 2014-03-06 08:10 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2015-02-12 00:31 - 2014-03-06 07:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-02-12 00:31 - 2014-03-06 06:24 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-02-12 00:31 - 2014-03-06 06:13 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-02-12 00:31 - 2014-03-06 06:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2015-02-12 00:31 - 2014-03-06 06:01 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2015-02-12 00:31 - 2014-03-06 05:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2015-02-12 00:31 - 2014-03-04 07:08 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-02-12 00:31 - 2014-03-04 06:56 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2015-02-12 00:31 - 2014-03-04 06:39 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2015-02-12 00:31 - 2014-03-04 06:15 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2015-02-12 00:31 - 2014-03-04 06:05 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2015-02-12 00:31 - 2014-03-04 06:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2015-02-12 00:31 - 2014-03-04 05:54 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2015-02-12 00:31 - 2014-02-06 22:59 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-02-12 00:31 - 2014-02-06 21:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-02-12 00:31 - 2013-12-23 23:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-02-12 00:31 - 2013-12-23 23:26 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-02-12 00:27 - 2014-12-09 01:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-02-12 00:27 - 2014-09-22 04:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-02-12 00:27 - 2014-09-22 03:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-02-12 00:27 - 2014-09-22 03:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-02-12 00:27 - 2014-09-22 02:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-02-12 00:27 - 2014-09-19 00:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-02-12 00:27 - 2014-09-02 22:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-02-12 00:27 - 2014-09-02 22:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-02-12 00:27 - 2014-06-16 22:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-02-12 00:27 - 2014-06-16 22:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-02-12 00:27 - 2014-06-05 14:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-02-12 00:27 - 2014-06-05 13:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-02-12 00:27 - 2014-06-02 02:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-02-12 00:27 - 2014-05-31 10:07 - 00440664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00419672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-02-12 00:27 - 2014-05-31 06:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-02-12 00:27 - 2014-05-31 06:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-02-12 00:27 - 2014-05-31 06:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-02-12 00:27 - 2014-05-31 04:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-02-12 00:27 - 2014-05-31 04:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-02-12 00:27 - 2014-05-31 04:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-02-12 00:27 - 2014-05-30 03:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-02-12 00:27 - 2014-05-27 09:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-02-12 00:27 - 2014-05-27 09:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-02-12 00:27 - 2014-05-17 04:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-02-12 00:27 - 2014-05-17 04:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-02-12 00:25 - 2014-06-20 01:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-02-12 00:25 - 2014-06-19 23:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-02-12 00:23 - 2014-08-07 02:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-02-12 00:23 - 2014-08-02 03:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-02-12 00:23 - 2014-06-13 01:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-02-12 00:23 - 2014-06-13 01:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-02-12 00:23 - 2014-06-13 00:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-02-12 00:23 - 2014-06-06 11:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-02-12 00:23 - 2014-03-06 12:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-02-12 00:23 - 2014-03-06 12:51 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-02-12 00:23 - 2014-03-06 12:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-02-12 00:23 - 2014-03-06 11:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-02-12 00:23 - 2014-03-06 06:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-02-12 00:20 - 2014-12-19 06:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-02-12 00:20 - 2014-12-12 02:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-02-12 00:20 - 2014-12-12 00:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-02-12 00:20 - 2014-10-17 07:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-12 00:20 - 2014-10-17 06:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-12 00:20 - 2014-10-10 01:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-02-12 00:20 - 2014-10-08 07:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-02-12 00:20 - 2014-10-08 07:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-02-12 00:20 - 2014-10-08 05:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-02-12 00:20 - 2014-09-04 00:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-02-12 00:20 - 2014-09-04 00:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-02-12 00:20 - 2014-08-02 00:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-02-12 00:20 - 2014-07-15 18:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-02-12 00:20 - 2014-07-15 08:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-02-12 00:20 - 2014-07-15 08:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-02-12 00:20 - 2014-07-15 08:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-02-12 00:20 - 2014-04-11 03:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-02-12 00:20 - 2014-04-11 03:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-02-12 00:20 - 2014-04-11 03:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-02-12 00:20 - 2014-04-11 03:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-02-12 00:20 - 2014-04-11 03:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-02-12 00:20 - 2014-04-11 02:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-02-12 00:20 - 2014-04-11 02:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-02-12 00:20 - 2014-04-11 02:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-02-12 00:02 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-02-12 00:02 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-02-12 00:01 - 2015-02-12 00:01 - 00000000 ____D () C:\Users\Dobby D\Documents\my games
2015-02-12 00:01 - 2014-10-23 05:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-02-12 00:01 - 2014-10-23 05:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-02-12 00:01 - 2014-05-19 06:31 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2015-02-12 00:01 - 2014-05-19 06:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2015-02-12 00:01 - 2014-05-19 05:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-02-12 00:01 - 2014-04-30 04:43 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-02-12 00:01 - 2014-04-30 04:26 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-02-12 00:01 - 2014-04-30 03:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-02-11 23:44 - 2014-08-29 01:58 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-02-11 23:44 - 2014-08-29 01:32 - 02779136 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-02-11 23:44 - 2014-08-29 00:59 - 03117568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-02-11 23:44 - 2014-08-28 23:56 - 02646016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-02-11 23:44 - 2014-08-28 23:47 - 02321920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-02-11 23:44 - 2014-05-31 06:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-02-11 19:12 - 2015-02-11 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2015-02-11 19:05 - 2015-02-11 19:05 - 00000000 ____D () C:\Users\Dobby D\Documents\zelda
2015-02-11 18:16 - 2015-02-11 18:16 - 00000000 ____D () C:\ProgramData\BlueStacks
2015-02-11 18:00 - 2015-02-11 18:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-02-11 17:57 - 2015-02-11 17:57 - 00000247 _____ () C:\Windows\system32\2015-02-11-17-57-28.008-aswFe.exe-992.log
2015-02-11 17:57 - 2015-02-11 17:57 - 00000197 _____ () C:\Windows\system32\2015-02-11-17-57-26.051-AvastVBoxSVC.exe-3028.log
2015-02-10 22:12 - 2015-02-10 22:12 - 00000247 _____ () C:\Windows\system32\2015-02-10-22-12-49.068-aswFe.exe-8544.log
2015-02-10 22:12 - 2015-02-10 22:12 - 00000197 _____ () C:\Windows\system32\2015-02-10-22-12-48.052-AvastVBoxSVC.exe-8744.log
2015-02-10 22:04 - 2015-02-10 22:04 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2015-02-10 22:04 - 2015-02-10 22:04 - 00000000 ____D () C:\Windows\system32\vbox
2015-02-10 04:28 - 2015-02-22 20:32 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Dropbox
2015-02-10 04:24 - 2015-02-10 04:24 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\AVAST Software
2015-02-10 04:22 - 2015-02-22 17:13 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-02-10 04:22 - 2015-02-10 04:22 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-02-10 04:22 - 2015-02-10 04:22 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00087912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-02-10 04:22 - 2015-02-10 04:22 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-02-10 04:22 - 2015-02-10 04:22 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-02-10 04:20 - 2015-02-10 04:20 - 00000000 ____D () C:\Program Files\AVAST Software
2015-02-10 04:17 - 2015-02-10 04:20 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-02-10 03:33 - 2015-02-10 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-10 03:32 - 2015-02-22 21:37 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7.job
2015-02-10 03:32 - 2015-02-22 19:47 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-10 03:32 - 2015-02-11 19:12 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-10 03:32 - 2015-02-10 03:33 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Google
2015-02-10 03:32 - 2015-02-10 03:32 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7
2015-02-10 03:32 - 2015-02-10 03:32 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-10 03:32 - 2015-02-10 03:32 - 00003662 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-10 03:32 - 2015-02-10 03:32 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-10 03:31 - 2015-02-10 03:32 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Deployment
2015-02-10 03:31 - 2015-02-10 03:31 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Apps\2.0
2015-02-10 02:29 - 2015-02-12 08:26 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 02:29 - 2015-02-12 08:19 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 02:18 - 2014-12-08 19:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-02-10 02:18 - 2014-12-08 19:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-02-10 02:18 - 2014-12-06 03:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-02-10 02:18 - 2014-12-06 01:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-02-10 02:18 - 2014-12-06 01:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-02-10 02:18 - 2014-11-09 23:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 02:18 - 2014-11-09 23:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-10 02:18 - 2014-11-09 23:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-02-10 02:18 - 2014-11-09 23:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-02-10 02:18 - 2014-10-29 04:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-02-10 02:18 - 2014-10-29 04:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-02-10 02:18 - 2014-10-29 03:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-02-10 02:18 - 2014-10-29 03:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-02-10 02:18 - 2014-10-29 03:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-02-10 02:18 - 2014-10-29 03:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-02-10 02:18 - 2014-10-29 03:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-02-10 02:18 - 2014-10-29 03:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-02-10 02:18 - 2014-10-29 02:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-02-10 02:18 - 2014-10-29 01:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-02-10 02:18 - 2014-10-29 01:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-02-10 02:18 - 2014-10-29 01:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-02-10 02:18 - 2014-10-29 01:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-02-10 02:18 - 2014-10-13 02:43 - 00238912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00153920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-02-10 02:18 - 2014-09-10 06:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-02-10 02:18 - 2014-09-08 03:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-02-10 02:18 - 2014-09-08 03:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-02-10 02:18 - 2014-09-07 22:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2015-02-10 02:18 - 2014-09-04 22:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-02-10 02:18 - 2014-09-04 22:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-02-10 02:18 - 2014-09-04 03:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-02-10 02:18 - 2014-09-04 02:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-02-10 02:18 - 2014-09-04 01:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-02-10 02:18 - 2014-09-04 00:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-02-10 02:18 - 2014-09-04 00:10 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-02-10 02:18 - 2014-09-03 23:57 - 00921600 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-02-10 02:18 - 2014-09-03 23:49 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-02-10 02:18 - 2014-08-31 00:17 - 00148800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-02-10 02:18 - 2014-08-31 00:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-02-10 02:18 - 2014-08-30 22:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-02-10 02:18 - 2014-08-30 22:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-02-10 02:18 - 2014-08-30 21:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-02-10 02:18 - 2014-08-30 21:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-02-10 02:18 - 2014-08-30 20:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-02-10 02:18 - 2014-08-30 20:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-02-10 02:18 - 2014-08-28 00:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-02-10 02:18 - 2014-08-28 00:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-02-10 02:18 - 2014-08-23 05:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-02-10 02:18 - 2014-08-23 05:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-02-10 02:18 - 2014-08-23 04:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-02-10 02:18 - 2014-08-02 00:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-02-10 02:18 - 2014-08-02 00:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-02-10 02:18 - 2014-07-24 11:22 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-02-10 02:18 - 2014-07-24 09:53 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2015-02-10 02:18 - 2014-07-24 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2015-02-10 02:18 - 2014-07-24 08:20 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2015-02-10 02:18 - 2014-07-24 08:08 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2015-02-10 02:18 - 2014-07-24 07:49 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2015-02-10 02:18 - 2014-07-24 07:43 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2015-02-10 02:18 - 2014-07-24 03:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-02-10 02:18 - 2014-07-24 03:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-02-10 02:18 - 2014-06-06 13:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-02-10 02:18 - 2014-06-06 12:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-02-10 02:18 - 2014-06-04 09:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-02-10 02:18 - 2014-06-04 05:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-02-10 02:18 - 2014-06-04 04:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-02-10 02:18 - 2014-05-13 07:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-02-10 02:18 - 2014-03-06 06:27 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-02-10 02:17 - 2014-10-12 08:53 - 00054592 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-02-10 02:17 - 2014-07-12 04:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-02-10 02:17 - 2014-05-01 13:31 - 00055328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-02-10 02:17 - 2014-05-01 05:24 - 02834944 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-02-10 02:03 - 2014-05-31 10:07 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-02-10 02:03 - 2014-05-31 10:06 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-02-10 02:03 - 2014-05-31 03:06 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-02-10 02:03 - 2014-05-31 03:03 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-02-10 02:03 - 2014-05-31 02:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-02-10 02:03 - 2014-05-31 02:54 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-02-10 02:03 - 2014-05-31 02:48 - 03463680 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-02-10 02:03 - 2014-05-31 02:37 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-02-10 02:03 - 2014-05-31 02:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-02-10 02:03 - 2014-04-11 08:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-02-10 02:03 - 2014-04-11 06:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-02-10 02:03 - 2014-04-11 05:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2015-02-10 02:03 - 2014-04-11 05:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-02-10 01:49 - 2015-02-10 01:49 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Macromedia
2015-02-09 21:48 - 2015-02-11 19:05 - 00000000 ____D () C:\Users\Dobby D\Documents\games
2015-02-09 21:47 - 2014-09-14 16:17 - 00015013 _____ () C:\Users\Dobby D\Documents\enders game books.ods
2015-02-09 21:47 - 2014-04-11 00:00 - 00017871 _____ () C:\Users\Dobby D\Documents\best man speach.odt
2015-02-09 21:47 - 2014-04-10 23:59 - 00003239 _____ () C:\Users\Dobby D\Documents\best man speach.txt
2015-02-09 21:47 - 2013-11-22 19:52 - 00000764 _____ () C:\Users\Dobby D\Documents\christmas presents.txt
2015-02-09 21:47 - 2012-02-26 06:39 - 00000746 _____ () C:\Users\Dobby D\Documents\birthdays.txt
2015-02-09 21:30 - 2015-02-11 19:12 - 00000000 ____D () C:\Users\Dobby D\Documents\LimeWire
2015-02-09 21:30 - 2014-10-17 15:12 - 00000277 _____ () C:\Users\Dobby D\Documents\phone numbers.txt
2015-02-09 21:30 - 2014-09-14 16:05 - 00001263 _____ () C:\Users\Dobby D\Documents\music.txt
2015-02-09 21:30 - 2014-06-24 22:45 - 00021814 _____ () C:\Users\Dobby D\Documents\Mike Dobinson CV.odt
2015-02-09 21:30 - 2014-02-08 14:36 - 00000096 _____ () C:\Users\Dobby D\Documents\tes.txt
2015-02-09 21:30 - 2013-10-30 17:27 - 15803425 _____ () C:\Users\Dobby D\Documents\Monkey Island book.zip
2015-02-09 21:30 - 2010-02-19 23:58 - 00000322 _____ () C:\Users\Dobby D\Documents\fingerboard training.txt
2015-02-08 08:12 - 2015-02-11 18:15 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\WildTangent
2015-02-08 08:10 - 2015-02-08 08:10 - 00000000 ____D () C:\Windows\system32\Plug-In Settings
2015-02-08 08:10 - 2015-02-08 08:10 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\NVIDIA
2015-02-08 08:09 - 2015-02-08 08:09 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieUserList
2015-02-08 08:09 - 2015-02-08 08:09 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieSiteList
2015-02-08 08:08 - 2015-02-08 08:08 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-02-08 07:57 - 2015-02-22 19:53 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-755688246-219275176-976515087-1001
2015-02-08 07:57 - 2015-02-10 22:02 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\WebStorage
2015-02-08 07:52 - 2015-02-22 19:47 - 00000093 _____ () C:\Users\Dobby D\AppData\Roaming\sp_data.sys
2015-02-08 07:52 - 2015-02-22 14:38 - 00000000 ____D () C:\Users\Dobby D
2015-02-08 07:52 - 2015-02-08 08:24 - 00000000 ____D () C:\ProgramData\USBChargerPlus
2015-02-08 07:52 - 2015-02-08 07:52 - 00001440 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-08 07:52 - 2015-02-08 07:52 - 00000184 _____ () C:\Windows\FixPatch.log
2015-02-08 07:52 - 2015-02-08 07:52 - 00000020 ___SH () C:\Users\Dobby D\ntuser.ini
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\Documents\My Received Files
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Intel
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\ASUS
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Adobe
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\VirtualStore
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Packages
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\NVIDIA Corporation
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\NVIDIA
2015-02-08 07:52 - 2014-05-16 00:42 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-08 07:52 - 2014-03-18 15:38 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-08 07:52 - 2014-03-18 15:27 - 00000369 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-02-08 07:52 - 2014-03-18 15:27 - 00000369 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-02-08 07:52 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-08 07:52 - 2013-08-22 15:36 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-27 00:23 - 2015-01-27 00:23 - 00014464 _____ (Western Digital Technologies) C:\Windows\system32\Drivers\wdcsam64.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 22:15 - 2014-10-15 10:22 - 01886163 _____ () C:\Windows\WindowsUpdate.log
2015-02-22 22:00 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-22 21:58 - 2013-08-22 15:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-02-22 20:36 - 2014-03-18 15:26 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-22 20:32 - 2013-08-22 14:46 - 00022994 _____ () C:\Windows\setupact.log
2015-02-22 20:23 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\rescache
2015-02-22 20:04 - 2014-03-18 15:10 - 00000000 ____D () C:\Program Files\Windows Journal
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\winrm
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\WCN
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\slmgr
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ___SD () C:\Windows\system32\dsc
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\WinStore
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Com
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\MUI
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\migwiz
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Com
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\IME
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\Help
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\oobe
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\Dism
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\servicing
2015-02-22 19:54 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2015-02-22 19:08 - 2013-08-22 14:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-22 19:07 - 2014-10-15 10:26 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-22 17:32 - 2014-10-15 10:40 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-22 16:48 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-02-22 15:28 - 2014-03-18 08:16 - 00023614 _____ () C:\Windows\PFRO.log
2015-02-22 14:46 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-02-14 12:54 - 2013-08-22 14:44 - 00337808 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ToastData
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\en-GB
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\setup
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\en-GB
2015-02-11 18:15 - 2014-05-15 15:59 - 00002460 ____N () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - asus.lnk
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ____D () C:\ProgramData\WildTangent
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2015-02-10 22:31 - 2014-10-15 10:37 - 00000000 ____D () C:\ProgramData\McAfee
2015-02-10 22:31 - 2014-10-15 10:37 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\MediaViewer
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\FileManager
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\Camera
2015-02-10 22:05 - 2013-08-22 15:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-02-10 22:02 - 2014-05-15 15:58 - 00000000 ____D () C:\ProgramData\WebStorage
2015-02-10 22:01 - 2014-05-15 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-02-10 22:01 - 2014-05-15 15:58 - 00000000 ____D () C:\Program Files (x86)\ASUS
2015-02-10 02:29 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-02-10 02:17 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\restore
2015-02-10 02:13 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-08 07:52 - 2014-05-15 23:07 - 00000000 ____D () C:\Windows\Log
2015-02-08 07:47 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-02-08 07:42 - 2014-05-16 00:43 - 00000000 ____D () C:\Windows\Panther
2015-02-08 07:42 - 2013-08-22 13:36 - 00000000 __RHD () C:\Users\Default

==================== Files in the root of some directories =======

2015-02-08 07:52 - 2015-02-22 19:47 - 0000093 _____ () C:\Users\Dobby D\AppData\Roaming\sp_data.sys
2015-02-22 20:32 - 2015-02-22 20:32 - 0000036 _____ () C:\Users\Dobby D\AppData\Local\housecall.guid.cache
2014-10-15 10:30 - 2014-10-15 10:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-15 15:58 - 2012-09-07 11:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-05-15 15:58 - 2009-07-22 10:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-05-15 15:58 - 2012-09-07 11:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS


Some content of TEMP:
====================
C:\Users\Dobby D\AppData\Local\Temp\cleanup_tool.exe
C:\Users\Dobby D\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1slest.dll
C:\Users\Dobby D\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Dobby D\AppData\Local\Temp\{3D85ACBE-F763-4F01-971E-E98CB8F8C32D}-40.0.2214.115_40.0.2214.111_chrome64_updater.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-22 14:46

==================== End Of Log ============================

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-02-2015
Ran by Dobby D (administrator) on DOBBY-LAPTOP on 22-02-2015 22:14:56
Running from G:\
Loaded Profiles: Dobby D (Available profiles: Dobby D)
Platform: Windows 8.1 (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Gaming Center\vivokey.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Windows\SysWOW64\UMonit64.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dropbox, Inc.) C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\Dropbox.exe
(OldTimer Tools) G:\OTL.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2473800 2014-09-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3276040 2014-05-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-15] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [ASUS ROG MacroKey] => C:\Program Files (x86)\ASUS\ASUS ROG MacroKey\Hid.exe [2036224 2014-07-30] (ASUS)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-02-10] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-755688246-219275176-976515087-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.uk/
HKU\S-1-5-21-755688246-219275176-976515087-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-755688246-219275176-976515087-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-755688246-219275176-976515087-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-10]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.yahoo.co.uk/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-10]
CHR Extension: (Google Docs) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-10]
CHR Extension: (Google Drive) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-10]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-10]
CHR Extension: (YouTube) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-10]
CHR Extension: (Google Search) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-10]
CHR Extension: (Avast SafePrice) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-02-22]
CHR Extension: (Google Sheets) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-10]
CHR Extension: (AdBlock) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-10]
CHR Extension: (Avast Online Security) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-10]
CHR Extension: (Ashish Mishra) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnkdbjbjpnpjeciipoaflmpcddinpjjp [2015-02-10]
CHR Extension: (Google Wallet) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-10]
CHR Extension: (Double Arch HD Theme) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\phldjclfomoapckofhlcpanpkjokglhh [2015-02-10]
CHR Extension: (Gmail) - C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-02-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-02-10]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [345912 2014-08-29] (ASUSTeK)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-02-10] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-02-10] (Avast Software)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [102152 2014-05-09] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-11] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-09] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [121288 2014-05-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel® Corporation) [File not signed]
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19438920 2014-09-09] (NVIDIA Corporation)
S3 ThunderboltService; C:\Program Files\Intel\Thunderbolt Software\tbtsvc.exe [1179944 2014-05-13] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-02-10] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [87912 2015-02-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-02-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-02-10] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-02-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-02-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-02-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-02-10] ()
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-04-22] (Motorola Solutions, Inc.)
U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [107208 2014-01-17] (GenesysLogic)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [192456 2014-05-09] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [77992 2014-08-04] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3446240 2014-06-18] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R1 NFC_Driver; C:\Windows\System32\drivers\NFC_Driver.sys [48336 2014-03-27] (Titan ARC Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-09] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40264 2014-09-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-02-10] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 22:14 - 2015-02-22 22:15 - 00000000 ____D () C:\FRST
2015-02-22 20:37 - 2015-02-22 20:37 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-22 20:35 - 2015-02-22 20:35 - 00000000 ____D () C:\ProgramData\F-Secure
2015-02-22 20:32 - 2015-02-22 20:32 - 00000036 _____ () C:\Users\Dobby D\AppData\Local\housecall.guid.cache
2015-02-22 20:14 - 2015-02-22 20:15 - 08280776 _____ (McAfee, Inc.) C:\Users\Dobby D\Downloads\SecurityScan_Release.exe
2015-02-22 20:05 - 2015-02-22 20:05 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieBrowserModeList
2015-02-22 20:00 - 2015-02-22 20:08 - 02490180 _____ (Trend Micro Inc.) C:\Users\Dobby D\Downloads\HousecallLauncher64 (1).exe
2015-02-22 18:03 - 2015-02-22 18:04 - 00816888 _____ () C:\Users\Dobby D\Downloads\Detection.msi
2015-02-22 14:38 - 2015-02-22 22:16 - 00000000 ___RD () C:\Users\Dobby D\Dropbox
2015-02-14 12:55 - 2015-02-03 19:31 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-14 12:55 - 2015-02-03 19:31 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-14 01:17 - 2015-02-14 01:17 - 00000074 _____ () C:\Users\Dobby D\Desktop\WOL brutal.txt
2015-02-13 19:42 - 2015-02-13 19:42 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-13 19:40 - 2015-02-13 19:40 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-02-13 19:40 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Sun
2015-02-13 19:40 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-13 19:39 - 2015-02-13 19:40 - 00000000 ____D () C:\ProgramData\Oracle
2015-02-13 19:39 - 2015-02-13 19:39 - 00000000 ____D () C:\Program Files\Java
2015-02-13 18:41 - 2015-02-13 23:11 - 00000000 ____D () C:\Users\Dobby D\Documents\StarCraft II
2015-02-13 18:41 - 2015-02-13 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2015-02-13 18:36 - 2015-02-14 01:18 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Battle.net
2015-02-13 18:36 - 2015-02-13 18:41 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-02-13 18:36 - 2015-02-13 18:40 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Battle.net
2015-02-13 18:36 - 2015-02-13 18:36 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Blizzard Entertainment
2015-02-13 18:36 - 2015-02-13 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-02-13 18:32 - 2015-02-13 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Back to the Future - The Game [GOG.com]
2015-02-13 18:32 - 2015-02-13 18:32 - 00000000 ____D () C:\ProgramData\Battle.net
2015-02-13 17:43 - 2015-02-13 17:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTL - Advanced Edition [GOG.com]
2015-02-12 23:57 - 2015-02-12 23:57 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\GOG
2015-02-12 23:57 - 2015-02-12 23:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper 2 [GOG.com]
2015-02-12 23:22 - 2015-02-12 23:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex GOTY [GOG.com]
2015-02-12 23:10 - 2015-02-12 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simon the Sorcerer [GOG.com]
2015-02-12 23:09 - 2015-02-12 23:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight of the Amazon Queen [GOG.com]
2015-02-12 23:07 - 2015-02-12 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper Gold [GOG.com]
2015-02-12 23:05 - 2015-02-12 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beneath a Steel Sky [GOG.com]
2015-02-12 09:37 - 2015-01-12 03:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-12 09:37 - 2015-01-12 02:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-12 09:37 - 2015-01-12 02:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-12 09:37 - 2015-01-12 02:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-12 09:37 - 2015-01-12 02:34 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-02-12 09:37 - 2015-01-12 02:32 - 06041088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-12 09:37 - 2015-01-12 02:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-12 09:37 - 2015-01-12 02:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-12 09:37 - 2015-01-12 02:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-12 09:37 - 2015-01-12 02:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-12 09:37 - 2015-01-12 02:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-12 09:37 - 2015-01-12 02:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-12 09:37 - 2015-01-12 01:58 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-02-12 09:37 - 2015-01-12 01:55 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-02-12 09:37 - 2015-01-12 01:51 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-02-12 09:37 - 2015-01-12 01:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-12 09:37 - 2015-01-12 01:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-12 09:37 - 2015-01-12 01:48 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-12 09:37 - 2015-01-12 01:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-12 09:37 - 2015-01-12 01:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-12 09:37 - 2015-01-12 01:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-12 09:37 - 2015-01-12 01:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-02-12 09:37 - 2015-01-12 01:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-02-12 09:37 - 2015-01-12 01:29 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-12 09:37 - 2015-01-12 01:27 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-02-12 09:37 - 2015-01-12 01:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-12 09:37 - 2015-01-12 01:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-02-12 09:37 - 2015-01-12 01:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-12 09:37 - 2015-01-12 01:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-12 09:37 - 2015-01-12 01:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-12 09:37 - 2015-01-12 01:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-12 09:37 - 2015-01-12 01:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-12 09:37 - 2015-01-12 01:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-12 09:37 - 2015-01-12 01:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-12 09:37 - 2015-01-12 00:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-12 09:37 - 2015-01-12 00:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-12 09:37 - 2014-11-22 02:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-02-12 09:37 - 2014-11-22 02:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-02-12 09:37 - 2014-11-22 02:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-02-12 09:37 - 2014-11-22 02:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-12 09:37 - 2014-11-22 01:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-12 09:37 - 2014-11-22 01:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-12 09:37 - 2014-10-31 05:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-02-12 09:37 - 2014-10-31 05:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-02-12 09:37 - 2014-10-31 05:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-02-12 09:37 - 2014-10-31 05:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-02-12 09:37 - 2014-10-31 05:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-02-12 09:37 - 2014-10-31 05:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-02-12 09:37 - 2014-10-31 05:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-12 09:37 - 2014-10-31 05:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-12 09:37 - 2014-10-31 04:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-12 09:37 - 2014-10-31 04:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-12 09:37 - 2014-10-31 04:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-02-12 09:37 - 2014-10-31 04:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-12 09:37 - 2014-10-31 04:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2015-02-12 09:37 - 2014-10-31 04:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-12 09:37 - 2014-10-31 04:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-12 09:37 - 2014-10-31 04:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-12 09:37 - 2014-10-31 04:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-02-12 09:37 - 2014-10-31 04:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-12 09:37 - 2014-10-31 04:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-02-12 09:37 - 2014-10-31 04:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-02-12 09:37 - 2014-10-31 04:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-02-12 09:37 - 2014-10-31 04:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-12 09:37 - 2014-10-31 04:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-02-12 09:37 - 2014-10-31 04:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-02-12 09:37 - 2014-10-31 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-02-12 09:37 - 2014-10-31 03:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-02-12 09:37 - 2014-10-31 03:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-02-12 09:37 - 2014-10-31 03:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-02-12 09:37 - 2014-10-31 03:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-02-12 09:37 - 2014-10-31 03:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-02-12 09:37 - 2014-10-31 03:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-02-12 09:37 - 2014-10-31 03:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-12 09:37 - 2014-10-31 03:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-12 09:37 - 2014-10-31 03:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-12 09:37 - 2014-10-31 03:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-12 09:37 - 2014-10-31 03:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-02-12 09:37 - 2014-10-31 03:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-12 09:37 - 2014-10-31 03:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2015-02-12 09:37 - 2014-10-31 03:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-12 09:37 - 2014-10-31 03:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-12 09:37 - 2014-10-31 03:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-02-12 09:37 - 2014-10-31 02:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-02-12 09:37 - 2014-10-31 02:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-02-12 09:37 - 2014-10-31 02:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-12 09:37 - 2014-10-31 02:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-02-12 09:37 - 2014-10-31 02:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-02-12 09:37 - 2014-10-31 02:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-02-12 09:37 - 2014-10-31 02:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-02-12 09:37 - 2014-08-16 04:08 - 01507648 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-02-12 09:37 - 2014-08-16 03:16 - 01205976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-02-12 09:37 - 2014-08-16 00:29 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-12 09:37 - 2014-08-16 00:23 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-02-12 09:37 - 2014-08-16 00:22 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-02-12 09:37 - 2014-08-16 00:19 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-12 09:37 - 2014-08-16 00:17 - 08757760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-02-12 09:37 - 2014-08-16 00:14 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 05902848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-02-12 09:37 - 2014-08-16 00:13 - 00840192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-02-12 09:37 - 2014-08-16 00:11 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-02-12 09:37 - 2014-08-16 00:08 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-12 09:37 - 2014-08-16 00:07 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-02-12 09:37 - 2014-07-24 15:28 - 00468288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-02-12 09:37 - 2014-07-24 11:42 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-02-12 09:37 - 2014-03-19 07:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-02-12 09:37 - 2014-02-06 11:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-12 09:37 - 2014-02-06 11:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-12 09:37 - 2014-02-06 10:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-12 09:37 - 2014-01-27 18:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-02-12 09:36 - 2014-10-30 22:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-02-12 09:36 - 2014-10-30 22:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-02-12 09:36 - 2014-08-23 07:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-02-12 09:36 - 2014-08-23 07:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-02-12 09:36 - 2014-08-23 06:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-02-12 09:36 - 2014-08-23 05:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-02-12 09:36 - 2014-08-23 04:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-02-12 09:36 - 2014-08-16 03:58 - 01112512 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-02-12 09:36 - 2014-08-16 01:31 - 00838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-02-12 09:36 - 2014-08-16 01:04 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-02-12 09:36 - 2014-08-16 00:58 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-02-12 09:36 - 2014-08-16 00:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-02-12 09:36 - 2014-08-16 00:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-02-12 09:36 - 2014-08-16 00:45 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-02-12 09:36 - 2014-08-16 00:43 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2015-02-12 09:36 - 2014-08-16 00:43 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-02-12 09:36 - 2014-08-16 00:31 - 00914432 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-02-12 09:36 - 2014-08-16 00:31 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2015-02-12 09:36 - 2014-08-16 00:22 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-02-12 09:36 - 2014-08-16 00:18 - 04758528 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-02-12 09:36 - 2014-08-16 00:10 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-02-12 09:36 - 2014-07-24 11:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2015-02-12 09:36 - 2014-07-24 10:09 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-02-12 09:36 - 2014-07-24 09:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-02-12 06:20 - 2015-01-10 08:22 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-12 06:14 - 2015-02-12 06:14 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\daedalic entertainment
2015-02-12 05:18 - 2015-01-10 07:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-12 05:18 - 2015-01-10 06:38 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-12 04:52 - 2015-01-15 22:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-12 04:52 - 2015-01-15 22:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-12 04:52 - 2015-01-14 04:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-02-12 04:52 - 2015-01-14 03:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-02-12 04:52 - 2015-01-13 22:11 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-12 04:52 - 2015-01-13 22:04 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-12 04:52 - 2015-01-10 09:10 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-12 04:52 - 2015-01-10 09:10 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-02-12 04:52 - 2015-01-10 08:28 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-02-12 04:52 - 2014-10-29 02:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-12 04:52 - 2014-10-29 02:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-12 04:52 - 2014-10-29 02:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-12 04:52 - 2014-10-29 02:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-12 04:52 - 2014-10-29 02:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-02-12 04:52 - 2014-10-29 02:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-02-12 04:52 - 2014-10-29 01:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-02-12 04:52 - 2014-10-29 01:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-12 04:52 - 2014-10-29 01:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-02-12 04:52 - 2014-10-29 01:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-02-12 04:52 - 2014-10-29 01:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-02-12 04:52 - 2014-10-29 01:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-02-12 04:52 - 2014-10-29 01:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-02-12 01:59 - 2014-12-09 03:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-12 01:59 - 2014-12-09 01:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-12 00:32 - 2014-03-20 04:19 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-02-12 00:32 - 2014-03-20 03:41 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-02-12 00:32 - 2014-03-20 03:41 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-02-12 00:32 - 2014-03-20 00:53 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-02-12 00:32 - 2014-03-20 00:48 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2015-02-12 00:32 - 2014-03-19 23:55 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-02-12 00:32 - 2014-03-19 23:39 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-02-12 00:32 - 2014-03-19 23:36 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-02-12 00:32 - 2014-03-19 05:31 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-02-12 00:32 - 2014-03-19 05:08 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-02-12 00:32 - 2014-03-11 15:18 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-02-12 00:32 - 2014-03-11 14:28 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2015-02-12 00:32 - 2014-03-08 20:38 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-02-12 00:32 - 2014-03-08 20:35 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-02-12 00:32 - 2014-03-08 15:29 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-02-12 00:32 - 2014-03-08 11:34 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-02-12 00:32 - 2014-03-08 08:33 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-02-12 00:32 - 2014-03-08 07:47 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2015-02-12 00:32 - 2014-03-08 07:04 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-02-12 00:32 - 2014-03-08 06:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-02-12 00:32 - 2014-03-08 06:40 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-02-12 00:32 - 2014-03-08 06:31 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2015-02-12 00:32 - 2014-03-08 06:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-02-12 00:32 - 2014-03-08 05:41 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-02-12 00:32 - 2014-03-08 05:11 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-02-12 00:32 - 2014-03-06 14:34 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-02-12 00:32 - 2014-03-06 12:51 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-02-12 00:32 - 2014-03-06 12:40 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-02-12 00:32 - 2014-03-06 11:19 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-02-12 00:32 - 2014-03-06 10:46 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-02-12 00:32 - 2014-03-06 10:35 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-02-12 00:32 - 2014-03-06 09:29 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-02-12 00:32 - 2014-03-06 09:22 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-02-12 00:32 - 2014-03-06 09:22 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-02-12 00:32 - 2014-03-06 09:20 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2015-02-12 00:32 - 2014-03-06 09:20 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-02-12 00:32 - 2014-03-06 09:19 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2015-02-12 00:32 - 2014-03-06 08:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-02-12 00:32 - 2014-03-06 08:20 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-02-12 00:32 - 2014-03-06 08:00 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-02-12 00:32 - 2014-03-06 07:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-02-12 00:32 - 2014-03-06 07:02 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-02-12 00:32 - 2014-03-06 06:57 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-02-12 00:32 - 2014-03-06 06:51 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-02-12 00:32 - 2014-03-06 06:32 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-02-12 00:32 - 2014-03-06 06:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2015-02-12 00:32 - 2014-03-06 06:23 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-02-12 00:32 - 2014-03-06 06:23 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2015-02-12 00:32 - 2014-03-06 06:21 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-02-12 00:32 - 2014-03-06 06:21 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2015-02-12 00:32 - 2014-03-06 06:16 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-02-12 00:32 - 2014-03-06 06:13 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-02-12 00:32 - 2014-03-06 06:05 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-02-12 00:32 - 2014-03-06 06:04 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-02-12 00:32 - 2014-03-06 06:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2015-02-12 00:32 - 2014-03-06 05:54 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-02-12 00:32 - 2014-03-06 05:47 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-02-12 00:32 - 2014-03-06 05:42 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2015-02-12 00:32 - 2014-03-04 12:14 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-02-12 00:32 - 2014-03-04 11:10 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-02-12 00:32 - 2014-03-04 07:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-02-12 00:32 - 2014-03-04 07:13 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-02-12 00:32 - 2014-03-04 07:00 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2015-02-12 00:32 - 2014-03-04 06:42 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-02-12 00:32 - 2014-03-04 06:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2015-02-12 00:32 - 2014-03-04 06:03 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-02-12 00:32 - 2014-03-04 05:52 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-02-12 00:31 - 2014-09-27 07:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-02-12 00:31 - 2014-09-27 05:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-02-12 00:31 - 2014-09-27 03:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-02-12 00:31 - 2014-08-23 05:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-02-12 00:31 - 2014-08-23 05:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-02-12 00:31 - 2014-05-03 05:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-02-12 00:31 - 2014-05-03 05:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2015-02-12 00:31 - 2014-05-03 05:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-02-12 00:31 - 2014-05-03 05:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-02-12 00:31 - 2014-05-03 04:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2015-02-12 00:31 - 2014-05-03 04:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2015-02-12 00:31 - 2014-05-03 04:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2015-02-12 00:31 - 2014-05-02 23:26 - 00050745 _____ () C:\Windows\system32\srms.dat
2015-02-12 00:31 - 2014-04-30 06:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-02-12 00:31 - 2014-04-30 06:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2015-02-12 00:31 - 2014-04-30 05:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-02-12 00:31 - 2014-04-30 04:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-02-12 00:31 - 2014-04-30 04:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-02-12 00:31 - 2014-04-30 04:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-02-12 00:31 - 2014-04-30 04:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-02-12 00:31 - 2014-04-30 03:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-02-12 00:31 - 2014-04-30 03:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-02-12 00:31 - 2014-04-30 03:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-02-12 00:31 - 2014-04-30 03:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-02-12 00:31 - 2014-04-30 03:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-02-12 00:31 - 2014-04-30 03:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-02-12 00:31 - 2014-04-28 22:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-02-12 00:31 - 2014-04-26 22:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-02-12 00:31 - 2014-04-26 20:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-02-12 00:31 - 2014-04-26 16:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-02-12 00:31 - 2014-04-14 09:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-02-12 00:31 - 2014-04-14 08:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-02-12 00:31 - 2014-04-14 05:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-02-12 00:31 - 2014-04-09 06:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-02-12 00:31 - 2014-04-09 05:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-02-12 00:31 - 2014-03-19 05:50 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-02-12 00:31 - 2014-03-19 05:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2015-02-12 00:31 - 2014-03-08 20:40 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-02-12 00:31 - 2014-03-08 09:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2015-02-12 00:31 - 2014-03-08 08:25 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2015-02-12 00:31 - 2014-03-08 08:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2015-02-12 00:31 - 2014-03-08 07:51 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2015-02-12 00:31 - 2014-03-08 06:41 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-02-12 00:31 - 2014-03-08 06:25 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-02-12 00:31 - 2014-03-08 06:04 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-02-12 00:31 - 2014-03-08 05:58 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-02-12 00:31 - 2014-03-06 14:34 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-02-12 00:31 - 2014-03-06 11:19 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2015-02-12 00:31 - 2014-03-06 09:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-02-12 00:31 - 2014-03-06 09:24 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-02-12 00:31 - 2014-03-06 09:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-02-12 00:31 - 2014-03-06 09:19 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-02-12 00:31 - 2014-03-06 09:19 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-02-12 00:31 - 2014-03-06 09:19 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-02-12 00:31 - 2014-03-06 09:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2015-02-12 00:31 - 2014-03-06 08:41 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2015-02-12 00:31 - 2014-03-06 08:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-02-12 00:31 - 2014-03-06 08:10 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2015-02-12 00:31 - 2014-03-06 07:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-02-12 00:31 - 2014-03-06 06:24 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-02-12 00:31 - 2014-03-06 06:13 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-02-12 00:31 - 2014-03-06 06:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2015-02-12 00:31 - 2014-03-06 06:01 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2015-02-12 00:31 - 2014-03-06 05:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2015-02-12 00:31 - 2014-03-04 07:08 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-02-12 00:31 - 2014-03-04 06:56 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2015-02-12 00:31 - 2014-03-04 06:39 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2015-02-12 00:31 - 2014-03-04 06:15 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2015-02-12 00:31 - 2014-03-04 06:05 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2015-02-12 00:31 - 2014-03-04 06:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2015-02-12 00:31 - 2014-03-04 05:54 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2015-02-12 00:31 - 2014-02-06 22:59 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-02-12 00:31 - 2014-02-06 21:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-02-12 00:31 - 2013-12-23 23:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-02-12 00:31 - 2013-12-23 23:26 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-02-12 00:27 - 2014-12-09 01:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-02-12 00:27 - 2014-09-22 04:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-02-12 00:27 - 2014-09-22 03:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-02-12 00:27 - 2014-09-22 03:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-02-12 00:27 - 2014-09-22 02:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-02-12 00:27 - 2014-09-19 00:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-02-12 00:27 - 2014-09-02 22:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-02-12 00:27 - 2014-09-02 22:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-02-12 00:27 - 2014-06-16 22:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-02-12 00:27 - 2014-06-16 22:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-02-12 00:27 - 2014-06-05 14:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-02-12 00:27 - 2014-06-05 13:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-02-12 00:27 - 2014-06-02 02:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-02-12 00:27 - 2014-05-31 10:07 - 00440664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00419672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-02-12 00:27 - 2014-05-31 10:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-02-12 00:27 - 2014-05-31 06:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-02-12 00:27 - 2014-05-31 06:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-02-12 00:27 - 2014-05-31 06:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-02-12 00:27 - 2014-05-31 04:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-02-12 00:27 - 2014-05-31 04:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-02-12 00:27 - 2014-05-31 04:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-02-12 00:27 - 2014-05-30 03:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-02-12 00:27 - 2014-05-27 09:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-02-12 00:27 - 2014-05-27 09:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-02-12 00:27 - 2014-05-17 04:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-02-12 00:27 - 2014-05-17 04:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-02-12 00:25 - 2014-06-20 01:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-02-12 00:25 - 2014-06-19 23:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-02-12 00:23 - 2014-08-07 02:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-02-12 00:23 - 2014-08-02 03:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-02-12 00:23 - 2014-06-13 01:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-02-12 00:23 - 2014-06-13 01:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-02-12 00:23 - 2014-06-13 00:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-02-12 00:23 - 2014-06-06 11:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-02-12 00:23 - 2014-03-06 12:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-02-12 00:23 - 2014-03-06 12:51 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-02-12 00:23 - 2014-03-06 12:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-02-12 00:23 - 2014-03-06 11:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-02-12 00:23 - 2014-03-06 06:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-02-12 00:20 - 2014-12-19 06:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-02-12 00:20 - 2014-12-12 02:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-02-12 00:20 - 2014-12-12 00:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-02-12 00:20 - 2014-10-17 07:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-12 00:20 - 2014-10-17 06:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-12 00:20 - 2014-10-10 01:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-02-12 00:20 - 2014-10-08 07:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-02-12 00:20 - 2014-10-08 07:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-02-12 00:20 - 2014-10-08 05:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-02-12 00:20 - 2014-09-04 00:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-02-12 00:20 - 2014-09-04 00:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-02-12 00:20 - 2014-08-02 00:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-02-12 00:20 - 2014-07-15 18:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-02-12 00:20 - 2014-07-15 08:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-02-12 00:20 - 2014-07-15 08:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-02-12 00:20 - 2014-07-15 08:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-02-12 00:20 - 2014-04-11 03:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-02-12 00:20 - 2014-04-11 03:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-02-12 00:20 - 2014-04-11 03:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-02-12 00:20 - 2014-04-11 03:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-02-12 00:20 - 2014-04-11 03:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-02-12 00:20 - 2014-04-11 02:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-02-12 00:20 - 2014-04-11 02:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-02-12 00:20 - 2014-04-11 02:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-02-12 00:02 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-02-12 00:02 - 2014-06-09 22:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-02-12 00:01 - 2015-02-12 00:01 - 00000000 ____D () C:\Users\Dobby D\Documents\my games
2015-02-12 00:01 - 2014-10-23 05:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-02-12 00:01 - 2014-10-23 05:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-02-12 00:01 - 2014-05-19 06:31 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2015-02-12 00:01 - 2014-05-19 06:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2015-02-12 00:01 - 2014-05-19 05:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-02-12 00:01 - 2014-04-30 04:43 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-02-12 00:01 - 2014-04-30 04:26 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-02-12 00:01 - 2014-04-30 03:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-02-11 23:44 - 2014-08-29 01:58 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-02-11 23:44 - 2014-08-29 01:32 - 02779136 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-02-11 23:44 - 2014-08-29 00:59 - 03117568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-02-11 23:44 - 2014-08-28 23:56 - 02646016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-02-11 23:44 - 2014-08-28 23:47 - 02321920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-02-11 23:44 - 2014-05-31 06:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-02-11 19:12 - 2015-02-11 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2015-02-11 19:05 - 2015-02-11 19:05 - 00000000 ____D () C:\Users\Dobby D\Documents\zelda
2015-02-11 18:16 - 2015-02-11 18:16 - 00000000 ____D () C:\ProgramData\BlueStacks
2015-02-11 18:00 - 2015-02-11 18:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-02-11 17:57 - 2015-02-11 17:57 - 00000247 _____ () C:\Windows\system32\2015-02-11-17-57-28.008-aswFe.exe-992.log
2015-02-11 17:57 - 2015-02-11 17:57 - 00000197 _____ () C:\Windows\system32\2015-02-11-17-57-26.051-AvastVBoxSVC.exe-3028.log
2015-02-10 22:12 - 2015-02-10 22:12 - 00000247 _____ () C:\Windows\system32\2015-02-10-22-12-49.068-aswFe.exe-8544.log
2015-02-10 22:12 - 2015-02-10 22:12 - 00000197 _____ () C:\Windows\system32\2015-02-10-22-12-48.052-AvastVBoxSVC.exe-8744.log
2015-02-10 22:04 - 2015-02-10 22:04 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2015-02-10 22:04 - 2015-02-10 22:04 - 00000000 ____D () C:\Windows\system32\vbox
2015-02-10 04:28 - 2015-02-22 20:32 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Dropbox
2015-02-10 04:24 - 2015-02-10 04:24 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\AVAST Software
2015-02-10 04:22 - 2015-02-22 17:13 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-02-10 04:22 - 2015-02-10 04:22 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-02-10 04:22 - 2015-02-10 04:22 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00087912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-02-10 04:22 - 2015-02-10 04:22 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-02-10 04:22 - 2015-02-10 04:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-02-10 04:22 - 2015-02-10 04:22 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-02-10 04:20 - 2015-02-10 04:20 - 00000000 ____D () C:\Program Files\AVAST Software
2015-02-10 04:17 - 2015-02-10 04:20 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-02-10 03:33 - 2015-02-10 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-10 03:32 - 2015-02-22 21:37 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7.job
2015-02-10 03:32 - 2015-02-22 19:47 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-10 03:32 - 2015-02-11 19:12 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-10 03:32 - 2015-02-10 03:33 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Google
2015-02-10 03:32 - 2015-02-10 03:32 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7
2015-02-10 03:32 - 2015-02-10 03:32 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-10 03:32 - 2015-02-10 03:32 - 00003662 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-10 03:32 - 2015-02-10 03:32 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-10 03:31 - 2015-02-10 03:32 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Deployment
2015-02-10 03:31 - 2015-02-10 03:31 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Apps\2.0
2015-02-10 02:29 - 2015-02-12 08:26 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 02:29 - 2015-02-12 08:19 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 02:18 - 2014-12-08 19:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-02-10 02:18 - 2014-12-08 19:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-02-10 02:18 - 2014-12-08 19:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-02-10 02:18 - 2014-12-06 03:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-02-10 02:18 - 2014-12-06 01:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-02-10 02:18 - 2014-12-06 01:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-02-10 02:18 - 2014-11-09 23:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 02:18 - 2014-11-09 23:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-10 02:18 - 2014-11-09 23:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-02-10 02:18 - 2014-11-09 23:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-02-10 02:18 - 2014-10-29 04:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-02-10 02:18 - 2014-10-29 04:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-02-10 02:18 - 2014-10-29 03:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-02-10 02:18 - 2014-10-29 03:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-02-10 02:18 - 2014-10-29 03:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-02-10 02:18 - 2014-10-29 03:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-02-10 02:18 - 2014-10-29 03:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-02-10 02:18 - 2014-10-29 03:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-02-10 02:18 - 2014-10-29 03:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-02-10 02:18 - 2014-10-29 02:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-02-10 02:18 - 2014-10-29 01:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-02-10 02:18 - 2014-10-29 01:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-02-10 02:18 - 2014-10-29 01:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-02-10 02:18 - 2014-10-29 01:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-02-10 02:18 - 2014-10-13 02:43 - 00238912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00153920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-02-10 02:18 - 2014-10-13 02:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-02-10 02:18 - 2014-09-10 06:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-02-10 02:18 - 2014-09-08 03:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-02-10 02:18 - 2014-09-08 03:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-02-10 02:18 - 2014-09-07 22:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2015-02-10 02:18 - 2014-09-04 22:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-02-10 02:18 - 2014-09-04 22:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-02-10 02:18 - 2014-09-04 03:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-02-10 02:18 - 2014-09-04 02:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-02-10 02:18 - 2014-09-04 01:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-02-10 02:18 - 2014-09-04 00:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-02-10 02:18 - 2014-09-04 00:10 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-02-10 02:18 - 2014-09-03 23:57 - 00921600 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-02-10 02:18 - 2014-09-03 23:49 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-02-10 02:18 - 2014-08-31 00:17 - 00148800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-02-10 02:18 - 2014-08-31 00:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-02-10 02:18 - 2014-08-30 22:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-02-10 02:18 - 2014-08-30 22:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-02-10 02:18 - 2014-08-30 21:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-02-10 02:18 - 2014-08-30 21:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-02-10 02:18 - 2014-08-30 20:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-02-10 02:18 - 2014-08-30 20:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-02-10 02:18 - 2014-08-28 00:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-02-10 02:18 - 2014-08-28 00:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-02-10 02:18 - 2014-08-23 05:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-02-10 02:18 - 2014-08-23 05:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-02-10 02:18 - 2014-08-23 04:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-02-10 02:18 - 2014-08-02 00:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-02-10 02:18 - 2014-08-02 00:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-02-10 02:18 - 2014-07-24 11:22 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-02-10 02:18 - 2014-07-24 09:53 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2015-02-10 02:18 - 2014-07-24 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2015-02-10 02:18 - 2014-07-24 08:20 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2015-02-10 02:18 - 2014-07-24 08:08 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2015-02-10 02:18 - 2014-07-24 07:49 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2015-02-10 02:18 - 2014-07-24 07:43 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2015-02-10 02:18 - 2014-07-24 03:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-02-10 02:18 - 2014-07-24 03:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-02-10 02:18 - 2014-06-06 13:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-02-10 02:18 - 2014-06-06 12:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-02-10 02:18 - 2014-06-04 09:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-02-10 02:18 - 2014-06-04 05:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-02-10 02:18 - 2014-06-04 04:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-02-10 02:18 - 2014-05-13 07:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-02-10 02:18 - 2014-03-06 06:27 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-02-10 02:17 - 2014-10-12 08:53 - 00054592 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-02-10 02:17 - 2014-07-12 04:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-02-10 02:17 - 2014-05-01 13:31 - 00055328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-02-10 02:17 - 2014-05-01 05:24 - 02834944 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-02-10 02:03 - 2014-05-31 10:07 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-02-10 02:03 - 2014-05-31 10:06 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-02-10 02:03 - 2014-05-31 03:06 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-02-10 02:03 - 2014-05-31 03:03 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-02-10 02:03 - 2014-05-31 02:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-02-10 02:03 - 2014-05-31 02:54 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-02-10 02:03 - 2014-05-31 02:48 - 03463680 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-02-10 02:03 - 2014-05-31 02:37 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-02-10 02:03 - 2014-05-31 02:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-02-10 02:03 - 2014-04-11 08:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-02-10 02:03 - 2014-04-11 06:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-02-10 02:03 - 2014-04-11 05:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2015-02-10 02:03 - 2014-04-11 05:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-02-10 01:49 - 2015-02-10 01:49 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Macromedia
2015-02-09 21:48 - 2015-02-11 19:05 - 00000000 ____D () C:\Users\Dobby D\Documents\games
2015-02-09 21:47 - 2014-09-14 16:17 - 00015013 _____ () C:\Users\Dobby D\Documents\enders game books.ods
2015-02-09 21:47 - 2014-04-11 00:00 - 00017871 _____ () C:\Users\Dobby D\Documents\best man speach.odt
2015-02-09 21:47 - 2014-04-10 23:59 - 00003239 _____ () C:\Users\Dobby D\Documents\best man speach.txt
2015-02-09 21:47 - 2013-11-22 19:52 - 00000764 _____ () C:\Users\Dobby D\Documents\christmas presents.txt
2015-02-09 21:47 - 2012-02-26 06:39 - 00000746 _____ () C:\Users\Dobby D\Documents\birthdays.txt
2015-02-09 21:30 - 2015-02-11 19:12 - 00000000 ____D () C:\Users\Dobby D\Documents\LimeWire
2015-02-09 21:30 - 2014-10-17 15:12 - 00000277 _____ () C:\Users\Dobby D\Documents\phone numbers.txt
2015-02-09 21:30 - 2014-09-14 16:05 - 00001263 _____ () C:\Users\Dobby D\Documents\music.txt
2015-02-09 21:30 - 2014-06-24 22:45 - 00021814 _____ () C:\Users\Dobby D\Documents\Mike Dobinson CV.odt
2015-02-09 21:30 - 2014-02-08 14:36 - 00000096 _____ () C:\Users\Dobby D\Documents\tes.txt
2015-02-09 21:30 - 2013-10-30 17:27 - 15803425 _____ () C:\Users\Dobby D\Documents\Monkey Island book.zip
2015-02-09 21:30 - 2010-02-19 23:58 - 00000322 _____ () C:\Users\Dobby D\Documents\fingerboard training.txt
2015-02-08 08:12 - 2015-02-11 18:15 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\WildTangent
2015-02-08 08:10 - 2015-02-08 08:10 - 00000000 ____D () C:\Windows\system32\Plug-In Settings
2015-02-08 08:10 - 2015-02-08 08:10 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\NVIDIA
2015-02-08 08:09 - 2015-02-08 08:09 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieUserList
2015-02-08 08:09 - 2015-02-08 08:09 - 00000000 __SHD () C:\Users\Dobby D\AppData\Local\EmieSiteList
2015-02-08 08:08 - 2015-02-08 08:08 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-02-08 07:57 - 2015-02-22 19:53 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-755688246-219275176-976515087-1001
2015-02-08 07:57 - 2015-02-10 22:02 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\WebStorage
2015-02-08 07:52 - 2015-02-22 19:47 - 00000093 _____ () C:\Users\Dobby D\AppData\Roaming\sp_data.sys
2015-02-08 07:52 - 2015-02-22 14:38 - 00000000 ____D () C:\Users\Dobby D
2015-02-08 07:52 - 2015-02-08 08:24 - 00000000 ____D () C:\ProgramData\USBChargerPlus
2015-02-08 07:52 - 2015-02-08 07:52 - 00001440 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-08 07:52 - 2015-02-08 07:52 - 00000184 _____ () C:\Windows\FixPatch.log
2015-02-08 07:52 - 2015-02-08 07:52 - 00000020 ___SH () C:\Users\Dobby D\ntuser.ini
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\Documents\My Received Files
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Intel
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\ASUS
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Adobe
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\VirtualStore
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\Packages
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\NVIDIA Corporation
2015-02-08 07:52 - 2015-02-08 07:52 - 00000000 ____D () C:\Users\Dobby D\AppData\Local\NVIDIA
2015-02-08 07:52 - 2014-05-16 00:42 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-08 07:52 - 2014-03-18 15:38 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-08 07:52 - 2014-03-18 15:27 - 00000369 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-02-08 07:52 - 2014-03-18 15:27 - 00000369 _____ () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-02-08 07:52 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-08 07:52 - 2013-08-22 15:36 - 00000000 ____D () C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-27 00:23 - 2015-01-27 00:23 - 00014464 _____ (Western Digital Technologies) C:\Windows\system32\Drivers\wdcsam64.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 22:15 - 2014-10-15 10:22 - 01886163 _____ () C:\Windows\WindowsUpdate.log
2015-02-22 22:00 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-22 21:58 - 2013-08-22 15:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-02-22 20:36 - 2014-03-18 15:26 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-22 20:32 - 2013-08-22 14:46 - 00022994 _____ () C:\Windows\setupact.log
2015-02-22 20:23 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\rescache
2015-02-22 20:04 - 2014-03-18 15:10 - 00000000 ____D () C:\Program Files\Windows Journal
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\winrm
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\WCN
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\slmgr
2015-02-22 20:04 - 2014-03-18 14:58 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ___SD () C:\Windows\system32\dsc
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\WinStore
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Com
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\MUI
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\migwiz
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Com
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\IME
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\Help
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-02-22 20:04 - 2013-08-22 15:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\oobe
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\system32\Dism
2015-02-22 20:04 - 2013-08-22 13:36 - 00000000 ____D () C:\Windows\servicing
2015-02-22 19:54 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2015-02-22 19:08 - 2013-08-22 14:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-22 19:07 - 2014-10-15 10:26 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-22 17:32 - 2014-10-15 10:40 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-22 16:48 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-02-22 15:28 - 2014-03-18 08:16 - 00023614 _____ () C:\Windows\PFRO.log
2015-02-22 14:46 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-02-14 12:54 - 2013-08-22 14:44 - 00337808 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Windows\ToastData
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\SysWOW64\en-GB
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\setup
2015-02-14 01:25 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\en-GB
2015-02-11 18:15 - 2014-05-15 15:59 - 00002460 ____N () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - asus.lnk
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ____D () C:\ProgramData\WildTangent
2015-02-11 18:15 - 2014-05-15 15:59 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2015-02-10 22:31 - 2014-10-15 10:37 - 00000000 ____D () C:\ProgramData\McAfee
2015-02-10 22:31 - 2014-10-15 10:37 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\MediaViewer
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\FileManager
2015-02-10 22:16 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\Camera
2015-02-10 22:05 - 2013-08-22 15:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-02-10 22:02 - 2014-05-15 15:58 - 00000000 ____D () C:\ProgramData\WebStorage
2015-02-10 22:01 - 2014-05-15 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-02-10 22:01 - 2014-05-15 15:58 - 00000000 ____D () C:\Program Files (x86)\ASUS
2015-02-10 02:29 - 2013-08-22 13:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-02-10 02:17 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\restore
2015-02-10 02:13 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-08 07:52 - 2014-05-15 23:07 - 00000000 ____D () C:\Windows\Log
2015-02-08 07:47 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-02-08 07:42 - 2014-05-16 00:43 - 00000000 ____D () C:\Windows\Panther
2015-02-08 07:42 - 2013-08-22 13:36 - 00000000 __RHD () C:\Users\Default

==================== Files in the root of some directories =======

2015-02-08 07:52 - 2015-02-22 19:47 - 0000093 _____ () C:\Users\Dobby D\AppData\Roaming\sp_data.sys
2015-02-22 20:32 - 2015-02-22 20:32 - 0000036 _____ () C:\Users\Dobby D\AppData\Local\housecall.guid.cache
2014-10-15 10:30 - 2014-10-15 10:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-15 15:58 - 2012-09-07 11:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-05-15 15:58 - 2009-07-22 10:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-05-15 15:58 - 2012-09-07 11:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS


Some content of TEMP:
====================
C:\Users\Dobby D\AppData\Local\Temp\cleanup_tool.exe
C:\Users\Dobby D\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1slest.dll
C:\Users\Dobby D\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Dobby D\AppData\Local\Temp\{3D85ACBE-F763-4F01-971E-E98CB8F8C32D}-40.0.2214.115_40.0.2214.111_chrome64_updater.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-22 14:46

==================== End Of Log ============================

 

 

 

 

 

 

 

 

 

 

 

 

 

 

OTL logfile created on: 22/02/2015 21:54:32 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = G:\
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17631)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
15.95 Gb Total Physical Memory | 13.42 Gb Available Physical Memory | 84.11% Memory free
18.33 Gb Paging File | 15.58 Gb Available in Paging File | 85.03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 107.02 Gb Total Space | 35.48 Gb Free Space | 33.16% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 347.13 Gb Free Space | 74.53% Space Free | Partition Type: NTFS
Drive E: | 465.76 Gb Total Space | 387.21 Gb Free Space | 83.14% Space Free | Partition Type: NTFS
Drive G: | 3.98 Gb Total Space | 2.60 Gb Free Space | 65.23% Space Free | Partition Type: FAT32
 
Computer Name: DOBBY-LAPTOP | User Name: Dobby D | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2015/02/21 21:50:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\OTL.exe
PRC - [2015/02/11 18:15:38 | 000,347,200 | ---- | M] (WildTangent) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
PRC - [2015/02/11 01:12:27 | 042,555,824 | ---- | M] (Dropbox, Inc.) -- C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2015/02/10 04:22:43 | 005,227,112 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2015/02/10 04:22:15 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2015/02/10 03:32:37 | 000,232,264 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
PRC - [2014/09/09 02:49:52 | 002,473,800 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014/09/09 02:49:42 | 001,795,912 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014/09/06 02:51:27 | 000,411,976 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014/08/29 13:48:28 | 000,345,912 | ---- | M] (ASUSTeK) -- C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
PRC - [2014/07/09 17:10:10 | 019,858,000 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
PRC - [2014/06/23 18:33:30 | 000,209,720 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2014/06/03 19:01:26 | 000,058,440 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
PRC - [2014/05/26 08:47:22 | 000,303,928 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2014/05/15 14:23:42 | 000,406,328 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2014/05/09 07:27:16 | 000,121,288 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
PRC - [2014/04/30 10:18:22 | 002,256,152 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Gaming Center\vivokey.exe
PRC - [2014/04/11 15:41:18 | 000,012,288 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
PRC - [2014/03/26 14:24:44 | 000,115,512 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
PRC - [2014/03/26 11:37:04 | 001,165,688 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2014/03/26 11:36:30 | 001,206,648 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2014/02/26 03:13:02 | 000,053,248 | ---- | M] () -- C:\Windows\SysWOW64\UMonit64.exe
PRC - [2013/10/23 12:45:30 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2013/10/23 12:44:48 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
PRC - [2013/10/23 12:44:48 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2013/05/15 13:39:12 | 000,463,872 | ---- | M] () -- C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
PRC - [2012/05/28 09:04:48 | 000,113,312 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
PRC - [2011/11/21 13:19:50 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2015/02/22 20:32:28 | 000,043,008 | ---- | M] () -- c:\users\dobbyd~1\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1slest.dll
MOD - [2015/02/10 21:00:30 | 000,750,080 | ---- | M] () -- C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\libGLESv2.dll
MOD - [2015/02/10 21:00:30 | 000,047,616 | ---- | M] () -- C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\libEGL.dll
MOD - [2015/02/10 21:00:28 | 000,865,280 | ---- | M] () -- C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
MOD - [2015/02/10 21:00:28 | 000,200,704 | ---- | M] () -- C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
MOD - [2015/02/10 04:22:17 | 038,562,088 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014/06/03 19:01:26 | 000,117,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
MOD - [2014/06/03 19:01:26 | 000,037,936 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
MOD - [2014/06/03 19:01:26 | 000,020,528 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
MOD - [2014/06/03 19:01:26 | 000,018,992 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
MOD - [2014/04/11 15:41:18 | 000,012,288 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
MOD - [2014/02/26 03:13:02 | 000,053,248 | ---- | M] () -- C:\Windows\SysWOW64\UMonit64.exe
MOD - [2013/05/15 13:39:12 | 000,463,872 | ---- | M] () -- C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2015/02/10 04:22:15 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2015/02/10 04:22:09 | 004,012,248 | ---- | M] (Avast Software) [On_Demand | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV:64bit: - [2014/12/06 01:35:00 | 000,229,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/10/31 04:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/09/22 03:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/09/22 03:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/09/09 02:49:40 | 001,148,744 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:64bit: - [2014/09/09 02:49:36 | 019,438,920 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/08/16 00:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2014/08/16 00:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/05/29 18:58:58 | 003,816,176 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2014/05/29 18:58:28 | 000,284,912 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2014/05/29 18:58:06 | 000,632,048 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2014/05/29 18:57:32 | 000,154,864 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2014/05/13 08:18:40 | 001,179,944 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Thunderbolt Software\tbtsvc.exe -- (ThunderboltService)
SRV:64bit: - [2014/05/09 09:47:12 | 000,102,152 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV:64bit: - [2014/03/18 15:27:48 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/03/18 15:27:40 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/03/18 15:27:40 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/03/18 15:27:35 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/03/18 15:27:33 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/03/18 15:27:32 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/03/18 15:27:30 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/03/18 15:27:30 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/03/08 05:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/03/06 07:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2013/09/02 12:31:00 | 000,827,392 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel®
SRV:64bit: - [2013/08/22 11:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 11:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 11:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 11:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 11:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 10:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 10:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 10:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 09:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 09:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 09:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 09:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 09:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 09:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 09:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 09:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2015/02/11 18:15:38 | 000,347,200 | ---- | M] (WildTangent) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe -- (GamesAppIntegrationService)
SRV - [2015/02/11 18:15:38 | 000,265,808 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2015/01/23 22:33:44 | 000,834,752 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014/09/09 02:49:42 | 001,795,912 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014/09/06 02:51:27 | 000,411,976 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/08/29 13:48:28 | 000,345,912 | ---- | M] (ASUSTeK) [Auto | Running] -- C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe -- (AsusGameFirstService)
SRV - [2014/08/16 03:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/05/09 07:27:16 | 000,121,288 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe -- (iBtSiva)
SRV - [2014/03/26 14:24:44 | 000,115,512 | ---- | M] (ASUSTek Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2014/03/26 11:37:04 | 001,165,688 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2014/03/26 11:36:30 | 001,206,648 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2014/03/18 15:27:21 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/10/23 12:45:30 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/10/23 12:44:48 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/10/23 12:44:48 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe -- (Intel®
SRV - [2013/08/22 03:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 02:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2011/11/21 13:19:50 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2015/02/10 04:22:40 | 000,087,912 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswmonflt.sys -- (aswMonFlt)
DRV:64bit: - [2015/02/10 04:22:39 | 001,050,432 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:64bit: - [2015/02/10 04:22:19 | 000,436,624 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2015/02/10 04:22:19 | 000,267,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2015/02/10 04:22:19 | 000,116,728 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2015/02/10 04:22:19 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2015/02/10 04:22:19 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2015/02/10 04:22:19 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2015/02/10 04:22:09 | 000,271,752 | ---- | M] (Avast Software) [Kernel | Disabled | Unknown] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV:64bit: - [2015/01/27 00:23:46 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2014/12/12 00:51:20 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2014/10/13 02:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/10/13 02:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/10/13 02:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/10/10 01:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/09/22 03:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/09/22 03:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/09/22 02:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/09/09 02:49:36 | 000,019,272 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2014/09/06 06:42:30 | 000,040,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvadarm.sys -- (NVVADARM)
DRV:64bit: - [2014/09/04 19:14:38 | 000,038,048 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2014/08/04 02:45:06 | 000,077,992 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\IntelPcc.sys -- (IntelHSWPcc)
DRV:64bit: - [2014/07/24 15:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/07/21 14:18:02 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2014/07/09 17:10:10 | 000,017,152 | ---- | M] (ASUSTek Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AiCharger.sys -- (AiCharger)
DRV:64bit: - [2014/06/18 10:30:32 | 003,446,240 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwbw02.sys -- (NETwNb64)
DRV:64bit: - [2014/06/17 12:14:10 | 000,873,688 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2014/05/29 03:25:30 | 000,672,104 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2014/05/16 00:43:01 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/05/09 09:47:16 | 000,404,744 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2014/05/09 07:27:38 | 000,192,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibtusb.sys -- (ibtusb)
DRV:64bit: - [2014/05/01 13:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/04/22 10:47:46 | 001,424,184 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2014/03/27 13:40:36 | 000,048,336 | ---- | M] (Titan ARC Corp.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NFC_Driver.sys -- (NFC_Driver)
DRV:64bit: - [2014/03/26 11:37:38 | 000,140,600 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2014/03/20 03:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/03/18 15:27:34 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/03/18 15:27:30 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/03/18 15:27:30 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/03/18 15:27:20 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/03/18 15:27:19 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2014/03/18 15:27:19 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/03/18 15:27:18 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/03/18 15:27:18 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/03/18 15:27:18 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/03/18 15:27:18 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/03/18 15:27:18 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/03/18 15:10:07 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2014/03/08 20:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/10/23 12:44:48 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/10/08 01:47:18 | 000,020,280 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AsHIDSwitch64.sys -- (HIDSwitch)
DRV:64bit: - [2013/08/22 13:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 13:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 12:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 12:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 12:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 12:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 12:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 12:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 12:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 12:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 12:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 12:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 12:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 12:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 12:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 12:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 12:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 12:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 12:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 12:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 12:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 12:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 12:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 12:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 12:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 12:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 12:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 12:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 12:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 11:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 11:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 11:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 11:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 11:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 11:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 11:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 11:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 11:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 11:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 11:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 11:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 11:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 11:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 11:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 11:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 11:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 11:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 11:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 11:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 11:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 08:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 23:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 00:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 18:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 19:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 15:05:45 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2013/06/18 14:45:58 | 011,518,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2013/06/18 14:45:43 | 004,649,440 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETwew02.sys -- (NETwNe64)
DRV:64bit: - [2013/06/18 14:45:26 | 000,460,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
DRV:64bit: - [2012/08/06 03:17:18 | 000,017,280 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2013/07/02 15:45:52 | 000,019,768 | ---- | M] (ASUSTek Computer Inc.) [Kernel | System | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
DRV - [2009/07/02 16:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...=IE10TR&pc=ASJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...=IE10TR&pc=ASJB
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.uk/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015/02/10 22:31:02 | 000,000,000 | ---D | M]
 
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.0.2502.149_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2502.149_1\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnkdbjbjpnpjeciipoaflmpcddinpjjp\0.9931_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\phldjclfomoapckofhlcpanpkjokglhh\1.1.1_0\
CHR - Extension: No name found = C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2013/08/22 13:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [ASUS ROG MacroKey] C:\Program Files (x86)\ASUS\ASUS ROG MacroKey\Hid.exe (ASUS)
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ROGNB] C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{558E94FD-ED56-4DDA-98C8-82F4C8AC5025}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9C421D9-6A5F-4E5E-BD04-F21339236455}: DhcpNameServer = 192.12.128.24
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2015/02/22 20:37:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2015/02/22 20:35:43 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
[2015/02/22 20:05:20 | 000,000,000 | -HSD | C] -- C:\Users\Dobby D\AppData\Local\EmieBrowserModeList
[2015/02/22 14:38:09 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Dropbox
[2015/02/14 12:55:05 | 000,714,720 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015/02/14 12:55:05 | 000,106,976 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/02/13 19:42:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2015/02/13 19:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2015/02/13 19:40:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/02/13 19:40:26 | 000,111,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2015/02/13 19:40:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2015/02/13 19:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2015/02/13 19:39:46 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2015/02/13 18:41:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\StarCraft II
[2015/02/13 18:41:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
[2015/02/13 18:41:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2015/02/13 18:36:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Blizzard Entertainment
[2015/02/13 18:36:26 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Battle.net
[2015/02/13 18:36:26 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Battle.net
[2015/02/13 18:36:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2015/02/13 18:36:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2015/02/13 18:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Back to the Future - The Game [GOG.com]
[2015/02/13 18:32:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2015/02/13 17:43:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTL - Advanced Edition [GOG.com]
[2015/02/12 23:57:53 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\GOG
[2015/02/12 23:57:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper 2 [GOG.com]
[2015/02/12 23:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex GOTY [GOG.com]
[2015/02/12 23:10:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simon the Sorcerer [GOG.com]
[2015/02/12 23:09:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight of the Amazon Queen [GOG.com]
[2015/02/12 23:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Keeper Gold [GOG.com]
[2015/02/12 23:05:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beneath a Steel Sky [GOG.com]
[2015/02/12 23:04:28 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Programs
[2015/02/12 09:37:36 | 002,865,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2015/02/12 09:37:36 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015/02/12 09:37:35 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2015/02/12 09:37:35 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2015/02/12 09:37:35 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2015/02/12 09:37:33 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015/02/12 09:37:33 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2015/02/12 09:37:32 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015/02/12 09:37:32 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2015/02/12 09:37:32 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015/02/12 09:37:30 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015/02/12 09:37:29 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2015/02/12 09:37:28 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2015/02/12 09:37:26 | 006,041,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015/02/12 09:37:26 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2015/02/12 09:37:26 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015/02/12 09:37:25 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2015/02/12 09:37:21 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2015/02/12 09:37:20 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015/02/12 09:37:20 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2015/02/12 09:37:19 | 000,816,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015/02/12 09:37:19 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015/02/12 09:37:19 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2015/02/12 09:37:18 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2015/02/12 09:37:18 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015/02/12 09:37:18 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2015/02/12 09:37:18 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2015/02/12 09:37:18 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2015/02/12 09:37:18 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hlink.dll
[2015/02/12 09:37:17 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015/02/12 09:37:17 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2015/02/12 09:37:17 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2015/02/12 09:37:17 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2015/02/12 09:37:17 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2015/02/12 09:37:17 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2015/02/12 09:37:17 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2015/02/12 09:37:17 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2015/02/12 09:37:17 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2015/02/12 09:37:17 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2015/02/12 09:37:17 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2015/02/12 09:37:17 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2015/02/12 09:37:17 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2015/02/12 09:37:17 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2015/02/12 09:37:17 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2015/02/12 09:37:17 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2015/02/12 09:37:17 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2015/02/12 09:37:17 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2015/02/12 09:37:17 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2015/02/12 09:37:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2015/02/12 09:37:17 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2015/02/12 09:37:17 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2015/02/12 09:37:17 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2015/02/12 09:37:17 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2015/02/12 09:37:17 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2015/02/12 09:37:17 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2015/02/12 09:37:17 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2015/02/12 09:37:17 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2015/02/12 09:37:17 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2015/02/12 09:37:17 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2015/02/12 09:37:17 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2015/02/12 09:37:17 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2015/02/12 09:37:17 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2015/02/12 09:37:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2015/02/12 09:37:16 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2015/02/12 09:37:11 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll
[2015/02/12 09:37:11 | 000,756,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll
[2015/02/12 09:37:11 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2015/02/12 09:37:10 | 005,777,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2015/02/12 09:37:10 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2015/02/12 09:37:10 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2015/02/12 09:37:09 | 005,902,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Search.dll
[2015/02/12 09:37:07 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SkyDriveShell.dll
[2015/02/12 09:37:06 | 006,649,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2015/02/12 09:37:05 | 008,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Search.dll
[2015/02/12 09:37:03 | 001,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2015/02/12 09:37:03 | 001,106,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2015/02/12 09:37:03 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDriveShell.dll
[2015/02/12 09:37:02 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2015/02/12 09:37:01 | 000,468,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2015/02/12 09:36:57 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdvidcrl.dll
[2015/02/12 09:36:57 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdvidcrl.dll
[2015/02/12 09:36:56 | 004,758,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncEngine.dll
[2015/02/12 09:36:56 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDrive.exe
[2015/02/12 09:36:56 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDriveTelemetry.dll
[2015/02/12 09:36:55 | 001,112,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2015/02/12 09:36:53 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2015/02/12 09:36:53 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll
[2015/02/12 09:36:53 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcsvDevice.dll
[2015/02/12 09:36:53 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2015/02/12 09:36:52 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProximityService.dll
[2015/02/12 09:36:52 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll
[2015/02/12 09:36:52 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll
[2015/02/12 09:36:41 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2015/02/12 09:36:41 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2015/02/12 09:36:37 | 000,796,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2015/02/12 09:36:36 | 002,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2015/02/12 09:36:36 | 002,084,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2015/02/12 09:36:35 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2015/02/12 09:36:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2015/02/12 06:14:58 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\daedalic entertainment
[2015/02/12 04:52:52 | 001,762,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2015/02/12 04:52:51 | 001,441,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015/02/12 04:52:50 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015/02/12 04:52:50 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015/02/12 04:52:50 | 000,445,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2015/02/12 04:52:50 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2015/02/12 04:52:50 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015/02/12 04:52:50 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015/02/12 04:52:46 | 007,472,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015/02/12 04:52:45 | 001,733,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2015/02/12 04:52:45 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2015/02/12 04:52:45 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2015/02/12 04:52:45 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2015/02/12 04:52:45 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2015/02/12 04:52:45 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2015/02/12 04:52:45 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2015/02/12 04:52:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2015/02/12 04:52:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2015/02/12 01:59:45 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2015/02/12 01:59:45 | 000,393,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2015/02/12 00:32:43 | 002,270,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2015/02/12 00:32:42 | 000,443,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll
[2015/02/12 00:32:42 | 000,388,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2015/02/12 00:32:42 | 000,355,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2015/02/12 00:32:42 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReInfo.dll
[2015/02/12 00:32:42 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxAllUserStore.dll
[2015/02/12 00:32:40 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2015/02/12 00:32:40 | 000,492,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2015/02/12 00:32:40 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2015/02/12 00:32:40 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll
[2015/02/12 00:32:40 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReInfo.dll
[2015/02/12 00:32:40 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWfdProvider.dll
[2015/02/12 00:32:39 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Shell.Search.UriHandler.dll
[2015/02/12 00:32:38 | 000,924,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll
[2015/02/12 00:32:38 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2015/02/12 00:32:38 | 000,360,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2015/02/12 00:32:38 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2015/02/12 00:32:38 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxAllUserStore.dll
[2015/02/12 00:32:37 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dcomp.dll
[2015/02/12 00:32:34 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2015/02/12 00:32:34 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2015/02/12 00:32:32 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Shell.Search.UriHandler.dll
[2015/02/12 00:32:30 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2015/02/12 00:32:30 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2015/02/12 00:32:29 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aclui.dll
[2015/02/12 00:32:27 | 001,291,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2015/02/12 00:32:26 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2015/02/12 00:32:25 | 000,356,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dcomp.dll
[2015/02/12 00:32:24 | 002,900,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2015/02/12 00:32:19 | 001,015,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aclui.dll
[2015/02/12 00:32:17 | 001,542,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2015/02/12 00:32:10 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidprov.dll
[2015/02/12 00:32:09 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidprov.dll
[2015/02/12 00:32:08 | 000,488,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2015/02/12 00:32:08 | 000,390,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2015/02/12 00:32:03 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2015/02/12 00:32:03 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2015/02/12 00:32:03 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll
[2015/02/12 00:32:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll
[2015/02/12 00:32:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll
[2015/02/12 00:32:02 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2015/02/12 00:32:02 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2015/02/12 00:32:02 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2015/02/12 00:32:02 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Sensors.dll
[2015/02/12 00:32:02 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Sensors.dll
[2015/02/12 00:32:01 | 001,351,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2015/02/12 00:32:01 | 000,376,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys
[2015/02/12 00:32:00 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2015/02/12 00:32:00 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsApi.dll
[2015/02/12 00:32:00 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsApi.dll
[2015/02/12 00:31:59 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Graphics.Printing.dll
[2015/02/12 00:31:59 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2015/02/12 00:31:59 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2015/02/12 00:31:59 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDEServer.exe
[2015/02/12 00:31:59 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2015/02/12 00:31:59 | 000,113,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2015/02/12 00:31:59 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2015/02/12 00:31:59 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxproxy.dll
[2015/02/12 00:31:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sxproxy.dll
[2015/02/12 00:31:58 | 000,425,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2015/02/12 00:31:58 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2015/02/12 00:31:58 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll
[2015/02/12 00:31:58 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2015/02/12 00:31:58 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2015/02/12 00:31:58 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Scanners.dll
[2015/02/12 00:31:58 | 000,136,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wfplwfs.sys
[2015/02/12 00:31:58 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2015/02/12 00:31:58 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMapi.dll
[2015/02/12 00:31:58 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\w32tm.exe
[2015/02/12 00:31:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2015/02/12 00:31:58 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CredentialMigrationHandler.dll
[2015/02/12 00:31:58 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CredentialMigrationHandler.dll
[2015/02/12 00:31:57 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2015/02/12 00:31:57 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2015/02/12 00:31:57 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Graphics.Printing.dll
[2015/02/12 00:31:57 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LocationApi.dll
[2015/02/12 00:31:57 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2015/02/12 00:31:57 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LocationApi.dll
[2015/02/12 00:31:57 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Scanners.dll
[2015/02/12 00:31:57 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevPropMgr.dll
[2015/02/12 00:31:57 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetNetworkLocation.dll
[2015/02/12 00:31:56 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\l2gpstore.dll
[2015/02/12 00:31:56 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\l2gpstore.dll
[2015/02/12 00:31:32 | 002,125,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2015/02/12 00:31:30 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2015/02/12 00:31:29 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2015/02/12 00:31:28 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2015/02/12 00:31:28 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2015/02/12 00:31:27 | 000,301,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2015/02/12 00:31:26 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2015/02/12 00:31:26 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2015/02/12 00:31:25 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2015/02/12 00:31:25 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncobjapi.dll
[2015/02/12 00:31:24 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2015/02/12 00:31:24 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Robocopy.exe
[2015/02/12 00:31:24 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncobjapi.dll
[2015/02/12 00:31:23 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2015/02/12 00:31:23 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Robocopy.exe
[2015/02/12 00:31:23 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2015/02/12 00:31:22 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reseteng.dll
[2015/02/12 00:31:06 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpapisrv.dll
[2015/02/12 00:31:06 | 000,104,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptsslp.dll
[2015/02/12 00:31:06 | 000,088,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptsslp.dll
[2015/02/12 00:27:59 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\osk.exe
[2015/02/12 00:27:59 | 000,779,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\osk.exe
[2015/02/12 00:27:52 | 012,711,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2015/02/12 00:27:50 | 016,871,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2015/02/12 00:27:47 | 000,440,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2015/02/12 00:27:46 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DaOtpCredentialProvider.dll
[2015/02/12 00:27:46 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2015/02/12 00:27:46 | 000,216,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll
[2015/02/12 00:27:46 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2015/02/12 00:27:45 | 000,423,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2015/02/12 00:27:45 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DaOtpCredentialProvider.dll
[2015/02/12 00:27:45 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2015/02/12 00:27:27 | 000,114,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdNisDrv.sys
[2015/02/12 00:27:27 | 000,035,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdBoot.sys
[2015/02/12 00:27:26 | 000,258,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdFilter.sys
[2015/02/12 00:27:25 | 001,519,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2015/02/12 00:27:24 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winshfhc.dll
[2015/02/12 00:27:24 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winshfhc.dll
[2015/02/12 00:25:16 | 001,273,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2015/02/12 00:23:43 | 000,517,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2015/02/12 00:23:42 | 002,141,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2015/02/12 00:23:42 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2015/02/12 00:23:42 | 001,779,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2015/02/12 00:23:42 | 001,764,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2015/02/12 00:23:42 | 000,379,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2015/02/12 00:23:42 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2015/02/12 00:23:15 | 001,336,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2015/02/12 00:20:43 | 003,547,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2015/02/12 00:20:42 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2015/02/12 00:20:42 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rfxvmt.dll
[2015/02/12 00:20:42 | 000,027,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2015/02/12 00:20:34 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2015/02/12 00:20:33 | 001,705,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2015/02/12 00:20:33 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2015/02/12 00:20:33 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2015/02/12 00:20:33 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2015/02/12 00:20:33 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2015/02/12 00:20:33 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2015/02/12 00:20:33 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2015/02/12 00:20:23 | 003,118,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2015/02/12 00:20:23 | 003,048,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcMon.exe
[2015/02/12 00:20:22 | 002,861,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebSync.dll
[2015/02/12 00:20:22 | 002,344,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2015/02/12 00:20:22 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2015/02/12 00:20:12 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ahcache.sys
[2015/02/12 00:20:03 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2015/02/12 00:20:03 | 000,514,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2015/02/12 00:20:02 | 000,789,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2015/02/12 00:02:55 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2015/02/12 00:02:55 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2015/02/12 00:01:44 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2015/02/12 00:01:44 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2015/02/12 00:01:43 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2015/02/12 00:01:43 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvinst.exe
[2015/02/12 00:01:43 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2015/02/12 00:01:43 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvcfg.exe
[2015/02/12 00:01:14 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\my games
[2015/02/11 23:44:25 | 002,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2015/02/11 23:44:25 | 002,646,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2015/02/11 23:44:25 | 002,321,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2015/02/11 19:12:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
[2015/02/11 19:05:47 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\zelda
[2015/02/11 18:16:04 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacks
[2015/02/10 22:04:48 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\vbox
[2015/02/10 22:04:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\vbox
[2015/02/10 04:28:52 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Dropbox
[2015/02/10 04:24:21 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\AVAST Software
[2015/02/10 04:22:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2015/02/10 04:22:27 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2015/02/10 04:22:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2015/02/10 04:22:23 | 001,050,432 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsnx.sys
[2015/02/10 04:22:23 | 000,436,624 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015/02/10 04:22:23 | 000,116,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015/02/10 04:22:23 | 000,093,568 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015/02/10 04:22:23 | 000,087,912 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswmonflt.sys
[2015/02/10 04:22:21 | 000,364,512 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2015/02/10 04:22:18 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2015/02/10 04:20:23 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2015/02/10 04:17:45 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2015/02/10 03:33:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/02/10 03:32:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2015/02/10 03:32:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Google
[2015/02/10 03:31:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Deployment
[2015/02/10 03:31:33 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Apps
[2015/02/10 02:29:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2015/02/10 02:18:48 | 011,820,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2015/02/10 02:18:48 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2015/02/10 02:18:47 | 000,941,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2015/02/10 02:18:47 | 000,626,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MrmCoreR.dll
[2015/02/10 02:18:45 | 013,424,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2015/02/10 02:18:44 | 002,714,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers.dll
[2015/02/10 02:18:43 | 001,053,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2015/02/10 02:18:43 | 000,921,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MrmCoreR.dll
[2015/02/10 02:18:35 | 000,836,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2015/02/10 02:18:34 | 000,670,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2015/02/10 02:18:34 | 000,474,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2015/02/10 02:18:33 | 000,822,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2015/02/10 02:18:33 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2015/02/10 02:18:33 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2015/02/10 02:18:33 | 000,263,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DafPrintProvider.dll
[2015/02/10 02:18:33 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DafPrintProvider.dll
[2015/02/10 02:18:32 | 000,428,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2015/02/10 02:18:32 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnntfy.dll
[2015/02/10 02:18:32 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnntfy.dll
[2015/02/10 02:18:32 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiapi.dll
[2015/02/10 02:18:32 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiapi.dll
[2015/02/10 02:18:32 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winbici.dll
[2015/02/10 02:18:32 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BulkOperationHost.exe
[2015/02/10 02:18:31 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOMEX.dll
[2015/02/10 02:18:31 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2015/02/10 02:18:31 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2015/02/10 02:18:31 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\compstui.dll
[2015/02/10 02:18:31 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2015/02/10 02:18:31 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmWmiPl.dll
[2015/02/10 02:18:31 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FXSAPI.dll
[2015/02/10 02:18:20 | 000,875,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr120_clr0400.dll
[2015/02/10 02:18:20 | 000,869,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr120_clr0400.dll
[2015/02/10 02:18:06 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msihnd.dll
[2015/02/10 02:18:06 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2015/02/10 02:18:06 | 000,114,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2015/02/10 02:18:05 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2015/02/10 02:18:02 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2015/02/10 02:18:02 | 000,535,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2015/02/10 02:18:02 | 000,500,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2015/02/10 02:18:02 | 000,488,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2015/02/10 02:18:02 | 000,482,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2015/02/10 02:18:02 | 000,448,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2015/02/10 02:18:02 | 000,394,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2015/02/10 02:18:02 | 000,344,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2015/02/10 02:18:02 | 000,272,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2015/02/10 02:18:02 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2015/02/10 02:18:01 | 000,531,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2015/02/10 02:18:01 | 000,465,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFault.exe
[2015/02/10 02:18:01 | 000,413,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2015/02/10 02:18:01 | 000,413,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFault.exe
[2015/02/10 02:18:01 | 000,372,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2015/02/10 02:18:01 | 000,139,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wermgr.exe
[2015/02/10 02:18:01 | 000,136,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wermgr.exe
[2015/02/10 02:18:01 | 000,108,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2015/02/10 02:18:01 | 000,038,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2015/02/10 02:18:01 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werdiagcontroller.dll
[2015/02/10 02:18:01 | 000,033,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2015/02/10 02:18:01 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\werdiagcontroller.dll
[2015/02/10 02:18:00 | 000,238,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2015/02/10 02:18:00 | 000,153,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2015/02/10 02:18:00 | 000,086,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2015/02/10 02:18:00 | 000,039,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\intelpep.sys
[2015/02/10 02:17:59 | 002,834,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2015/02/10 02:17:58 | 000,055,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wpcfltr.sys
[2015/02/10 02:17:57 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDMAgent.exe
[2015/02/10 02:17:57 | 000,054,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2015/02/10 02:03:26 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.appcore.dll
[2015/02/10 02:03:23 | 001,054,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.appcore.dll
[2015/02/10 02:03:23 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2015/02/10 02:03:23 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2015/02/10 02:03:23 | 000,555,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.appcore.dll
[2015/02/10 02:03:23 | 000,419,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.appcore.dll
[2015/02/10 02:03:23 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2015/02/10 02:03:23 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2015/02/10 02:03:23 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSReset.exe
[2015/02/10 02:03:23 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2015/02/10 02:03:23 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2015/02/10 02:03:23 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2015/02/10 01:49:54 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Macromedia
[2015/02/10 01:41:07 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Diagnostics
[2015/02/09 21:48:22 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\games
[2015/02/09 21:30:08 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\LimeWire
[2015/02/08 08:12:31 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\WildTangent
[2015/02/08 08:10:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Plug-In Settings
[2015/02/08 08:10:54 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\NVIDIA
[2015/02/08 08:09:42 | 000,000,000 | -HSD | C] -- C:\Users\Dobby D\AppData\Local\EmieUserList
[2015/02/08 08:09:42 | 000,000,000 | -HSD | C] -- C:\Users\Dobby D\AppData\Local\EmieSiteList
[2015/02/08 07:57:27 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\WebStorage
[2015/02/08 07:52:26 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\ASUS
[2015/02/08 07:52:25 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Documents\My Received Files
[2015/02/08 07:52:17 | 000,000,000 | ---D | C] -- C:\ProgramData\USBChargerPlus
[2015/02/08 07:52:09 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2015/02/08 07:52:09 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Searches
[2015/02/08 07:52:09 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Contacts
[2015/02/08 07:52:09 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2015/02/08 07:52:08 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\VirtualStore
[2015/02/08 07:52:08 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Adobe
[2015/02/08 07:52:03 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Packages
[2015/02/08 07:52:03 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\NVIDIA Corporation
[2015/02/08 07:52:03 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\NVIDIA
[2015/02/08 07:52:03 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Intel
[2015/02/08 07:52:02 | 000,000,000 | --SD | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Videos
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Saved Games
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Pictures
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Music
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Links
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Favorites
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Downloads
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Documents
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\Desktop
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2015/02/08 07:52:02 | 000,000,000 | R--D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2015/02/08 07:52:02 | 000,000,000 | -H-D | C] -- C:\Users\Dobby D\AppData
[2015/02/08 07:52:02 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Temp
[2015/02/08 07:52:02 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\Roaming
[2015/02/08 07:52:02 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Local\Microsoft
[2015/02/08 07:52:02 | 000,000,000 | ---D | C] -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2015/01/27 00:23:46 | 000,014,464 | ---- | C] (Western Digital Technologies) -- C:\Windows\SysNative\drivers\wdcsam64.sys
 
========== Files - Modified Within 30 Days ==========
 
[2015/02/22 21:37:00 | 000,000,926 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d044e237f158c7.job
[2015/02/22 20:36:19 | 000,863,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/02/22 20:36:19 | 000,735,932 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/02/22 20:36:19 | 000,139,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/02/22 20:32:43 | 000,000,036 | ---- | M] () -- C:\Users\Dobby D\AppData\Local\housecall.guid.cache
[2015/02/22 19:47:17 | 000,000,093 | ---- | M] () -- C:\Users\Dobby D\AppData\Roaming\sp_data.sys
[2015/02/22 19:47:15 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/02/22 19:09:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/02/22 19:07:56 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2015/02/22 18:44:20 | 816,300,029 | -HS- | M] () -- C:\hiberfil.sys
[2015/02/14 12:54:34 | 000,337,808 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/02/13 19:40:01 | 000,111,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2015/02/11 18:00:40 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/02/10 04:22:40 | 000,087,912 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswmonflt.sys
[2015/02/10 04:22:39 | 001,050,432 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsnx.sys
[2015/02/10 04:22:19 | 000,436,624 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015/02/10 04:22:19 | 000,364,512 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2015/02/10 04:22:19 | 000,267,632 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015/02/10 04:22:19 | 000,116,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015/02/10 04:22:19 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015/02/10 04:22:19 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015/02/10 04:22:19 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015/02/10 04:22:18 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2015/02/10 03:32:38 | 000,000,926 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/08 08:08:09 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/02/03 19:31:19 | 000,714,720 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015/02/03 19:31:19 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/01/27 00:23:46 | 000,014,464 | ---- | M] (Western Digital Technologies) -- C:\Windows\SysNative\drivers\wdcsam64.sys
 
========== Files Created - No Company Name ==========
 
[2015/02/22 20:32:43 | 000,000,036 | ---- | C] () -- C:\Users\Dobby D\AppData\Local\housecall.guid.cache
[2015/02/12 00:31:22 | 000,050,745 | ---- | C] () -- C:\Windows\SysNative\srms.dat
[2015/02/11 18:00:40 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2015/02/10 04:22:23 | 000,267,632 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015/02/10 04:22:23 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015/02/10 04:22:23 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015/02/10 03:32:38 | 000,000,926 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d044e237f158c7.job
[2015/02/10 03:32:38 | 000,000,926 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/10 03:32:38 | 000,000,922 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/02/10 02:18:43 | 000,389,176 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/02/09 21:47:42 | 002,508,772 | ---- | C] () -- C:\Users\Dobby D\Documents\fate of atlantis novel.pdf
[2015/02/09 21:47:42 | 000,017,871 | ---- | C] () -- C:\Users\Dobby D\Documents\best man speach.odt
[2015/02/09 21:47:42 | 000,015,013 | ---- | C] () -- C:\Users\Dobby D\Documents\enders game books.ods
[2015/02/09 21:30:07 | 015,803,425 | ---- | C] () -- C:\Users\Dobby D\Documents\Monkey Island book.zip
[2015/02/09 21:30:07 | 000,021,814 | ---- | C] () -- C:\Users\Dobby D\Documents\Mike Dobinson CV.odt
[2015/02/08 08:08:09 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2015/02/08 07:52:24 | 000,000,093 | ---- | C] () -- C:\Users\Dobby D\AppData\Roaming\sp_data.sys
[2015/02/08 07:52:08 | 000,001,440 | ---- | C] () -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2015/02/08 07:52:02 | 000,000,369 | ---- | C] () -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
[2015/02/08 07:52:02 | 000,000,369 | ---- | C] () -- C:\Users\Dobby D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
[2015/02/08 07:42:20 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys
[2015/02/08 07:42:18 | 816,300,029 | -HS- | C] () -- C:\hiberfil.sys
[2014/10/15 10:40:04 | 001,368,791 | ---- | C] () -- C:\Windows\unins000.exe
[2014/10/15 10:40:04 | 000,024,292 | ---- | C] () -- C:\Windows\unins000.dat
[2014/10/15 10:33:57 | 000,172,097 | ---- | C] () -- C:\Windows\SysWow64\NoMSGuninstall.exe
[2014/10/15 10:33:57 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\UMonit64.exe
[2014/10/15 10:33:57 | 000,000,973 | ---- | C] () -- C:\Windows\SysWow64\ProductName.ini
[2014/10/15 10:33:56 | 000,001,519 | ---- | C] () -- C:\Windows\SysWow64\_IconCfg0.ini
[2014/10/15 10:33:56 | 000,000,233 | ---- | C] () -- C:\Windows\SysWow64\IconCfg0.ini
[2014/10/15 10:30:43 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014/05/15 15:58:15 | 000,024,576 | ---- | C] () -- C:\ProgramData\SetStretch.exe
[2014/05/15 15:58:15 | 000,000,256 | ---- | C] () -- C:\ProgramData\SetStretch.cmd
[2014/05/15 15:58:15 | 000,000,103 | ---- | C] () -- C:\ProgramData\SetStretch.VBS
[2014/03/18 15:27:42 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/03/18 15:27:21 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/09/02 12:03:40 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2013/08/22 15:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013/08/22 15:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013/08/22 14:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013/08/22 07:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013/08/22 03:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013/08/21 23:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013/08/21 23:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
========== ZeroAccess Check ==========
 
[2015/02/12 03:11:42 | 000,050,517 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Core.u
[2015/02/12 03:11:42 | 000,063,342 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Editor.u
[2015/02/12 03:14:36 | 001,662,824 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Engine.u
[2015/02/12 03:11:07 | 000,001,153 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Fp.u
[2015/02/12 03:16:55 | 000,011,921 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\GameFramework.u
[2015/02/12 03:17:48 | 000,008,576 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\IpDrv.u
[2015/02/12 03:48:36 | 000,002,754 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdEditor.u
[2015/02/12 03:52:12 | 029,281,987 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdGame.u
[2015/02/12 03:50:23 | 000,005,139 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdMenuContent.u
[2015/02/12 03:36:42 | 000,071,316 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdMpContent.u
[2015/02/12 03:50:05 | 000,088,387 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdSharedContent.u
[2015/02/12 03:50:05 | 000,015,134 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdSpBossContent.u
[2015/02/12 03:33:41 | 000,142,878 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdSpContent.u
[2015/02/12 03:36:42 | 000,026,063 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdTTContent.u
[2015/02/12 03:39:41 | 000,011,340 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\TdTuContent.u
[2015/02/12 03:39:44 | 000,102,882 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Tp.u
[2015/02/12 03:33:41 | 000,009,199 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\Ts.u
[2015/02/12 03:37:15 | 000,085,937 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-755688246-219275176-976515087-1001\$RGZSD7E\TdGame\CookedPC\UnrealEd.u
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/31 00:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 22:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 09:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 02:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 09:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

OTL Extras logfile created on: 22/02/2015 21:54:32 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = G:\
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17631)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
15.95 Gb Total Physical Memory | 13.42 Gb Available Physical Memory | 84.11% Memory free
18.33 Gb Paging File | 15.58 Gb Available in Paging File | 85.03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 107.02 Gb Total Space | 35.48 Gb Free Space | 33.16% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 347.13 Gb Free Space | 74.53% Space Free | Partition Type: NTFS
Drive E: | 465.76 Gb Total Space | 387.21 Gb Free Space | 83.14% Space Free | Partition Type: NTFS
Drive G: | 3.98 Gb Total Space | 2.60 Gb Free Space | 65.23% Space Free | Partition Type: FAT32
 
Computer Name: DOBBY-LAPTOP | User Name: Dobby D | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" =  [binary data]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CDE347E-B181-45B3-B5AC-B99F9A770750}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{0D3BA53C-36CE-4B00-B83D-08FCB882C98F}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{20C33B10-5B5C-40E9-9900-92575649CDDD}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{30659755-CDFC-4081-9A05-9039A2D85D5C}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{534CF0C1-465C-4D66-9396-25DA882DB18D}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{D16BDB68-4156-4BD5-B1D8-0F8B3B77E586}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{DB9104F9-1730-45C6-A8B4-91D253CBD5E1}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0102D16B-3D24-4C15-AA9A-F03F58743513}" = dir=out | name=twitter |
"{0107632F-D95E-4A96-8758-5B578AE0F55F}" = protocol=6 | dir=in | app=d:\battle.net\battle.net.exe |
"{036C4FE2-98DE-4724-B0A6-7F30A5FB629A}" = dir=out | [email protected]{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{071BD2D4-9DAB-46A4-A0F4-E7B971A37F26}" = dir=in | name=skype |
"{07AD1EA4-DA20-4B07-8C2D-5EB819BC5791}" = dir=out | [email protected]{microsoft.bingfoodanddrink_3.0.2.236_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{07DEAB0D-3A86-46D6-84C8-3B4413DF9342}" = dir=in | [email protected]{magix.musicmakerjam_2.1.1034.3_x64__a2t3txkz9j1jw?ms-resource://magix.musicmakerjam/resources/app_name} |
"{0D65081C-F5B6-4C7F-9DA4-6EF083345892}" = dir=in | name=zinio |
"{0DF324AF-AD62-45B6-8E67-EAD98A620414}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the whispered world special edition\twwse.exe |
"{0E37B2C8-A491-4BAA-AD02-B174CEFFF863}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\lego harry potter\legoharrypotter.exe |
"{0E510762-2CEF-4941-AF71-8F152B3B0950}" = dir=out | [email protected]{microsoft.bingweather_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{0F260B10-1BF7-46CB-9F0E-48B822822EC4}" = dir=out | [email protected]{microsoft.bingsports_3.0.2.233_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{10ACDD30-BA9F-474E-81F1-0A9C3F0CDEBB}" = dir=out | name=skype |
"{12459FC3-7106-4E0F-96A5-3C3528016243}" = dir=out | name=line |
"{149F3A9B-ADB2-4CDA-82CF-712F638E5CFE}" = dir=out | [email protected]{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{14CDD064-DBE6-4811-A07D-AC453FBC9012}" = protocol=17 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{177C957B-D76C-467D-9575-752B2243419B}" = dir=out | [email protected]{magix.musicmakerjam_2.1.1034.3_x64__a2t3txkz9j1jw?ms-resource://magix.musicmakerjam/resources/app_name} |
"{1B69FC73-95A2-4038-97B0-4066D3D5B74D}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\portal 2\portal2.exe |
"{1BE0CAF7-F528-44DF-A87F-2E11B5F8DED4}" = dir=out | [email protected]{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{1C37E4BD-2E7C-4611-AAF2-FF26FF0EC374}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\half-life 2\hl2.exe |
"{1E5688D7-BC9B-4AEA-AAC5-BCE4D49C87EB}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\lego harry potter\legoharrypotter.exe |
"{1E8997C4-19BE-4E6E-8B23-D317A7B44294}" = dir=out | name=windows_ie_ac_001 |
"{1FCD5A1A-B6AE-4764-8ACD-92AFA39E4B0A}" = protocol=17 | dir=in | app=d:\starcraft ii\starcraft ii.exe |
"{1FECEC40-8441-4C78-99DB-5310AFDFA104}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\antichamber\binaries\win32\udk.exe |
"{227A17DD-C11C-40FA-A4DD-DC377579CA65}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\thomaswasalone\thomaswasalone.exe |
"{2355E96D-27D7-4D12-B7CD-7C0D1C97238B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lego lord of the rings\legolotr.exe |
"{24202314-0842-4371-98EC-4314F05A1624}" = dir=out | [email protected]{microsoft.bingsports_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{2743043C-0132-4A16-B8CB-4EB6DD117EB0}" = dir=in | name=flipboard |
"{296DA977-D2CD-430C-A408-319D59EBEEC2}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\half-life 2\hl2.exe |
"{2B284772-BCFE-4DD6-9E0F-2B61B36F19A4}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\dead space\dead space.exe |
"{2CA952F8-DE97-4D21-BE72-262ED809774F}" = dir=in | [email protected]{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{2E9AF3E0-82CA-42FE-806C-574AD191120F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lego lord of the rings\legolotr.exe |
"{2F463E5D-C284-4C23-A56B-78917CAF63D9}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{30FD07D9-CD1B-452E-BF47-748EA837E0D3}" = dir=out | [email protected]{microsoft.bingtravel_3.0.2.233_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{34704A71-70BD-46B3-915C-7CEAF8883127}" = dir=out | name=netflix |
"{350483ED-83D9-4C6A-A0C8-B302D7143CA3}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\ss2\shock2.exe |
"{3642A12C-C241-4BB6-B004-4755110FD016}" = dir=out | name=flipboard |
"{369C3301-92E6-4C7B-90F3-BBFEFA3F96CE}" = dir=out | [email protected]{microsoft.binghealthandfitness_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{36B199BE-7345-4ED4-A8FC-4EED7ED022DC}" = dir=in | name=onenote |
"{375DB8D5-A4B5-433B-AEB8-DBAE73ACDE21}" = protocol=6 | dir=in | app=c:\windows\syswow64\ftp.exe |
"{3AF2C360-708B-412A-8B47-ADE69FEF5A91}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\deponia\deponia.exe |
"{3F3752F2-165B-4C51-9B72-E6032B6C3006}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\hydrophobia\hydropc.exe |
"{3F45598A-3474-4CAE-8AE4-66A9F902E14E}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\a new beginning\anb.exe |
"{3FD05B77-3BF5-459B-AAFA-8B3DD8DF1013}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\indiana jones and the last crusade\indiana jones and the last crusade.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4533D210-B189-4337-8243-D6D54FF68EA9}" = dir=out | [email protected]{microsoft.bingweather_3.0.2.233_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{453CF13A-9B96-462D-90F5-C26854220089}" = dir=out | name=fresh paint |
"{487938E2-9E97-4176-9C40-95EB6012173A}" = dir=out | name=zinio |
"{48EEB8E6-5412-48FF-B124-2881381A1440}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\a new beginning\visionaireconfigurationtool.exe |
"{491213CB-4361-4FD6-973B-98B0655C3C73}" = protocol=17 | dir=in | app=c:\users\dobby d\appdata\roaming\dropbox\bin\dropbox.exe |
"{497A0640-4857-4030-B154-F58BAEFEEB79}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\dawn of war gold\w40k.exe |
"{49CD3214-7402-4FFF-99D9-6288A3FFAA93}" = protocol=6 | dir=in | app=c:\users\dobby d\appdata\roaming\dropbox\bin\dropbox.exe |
"{4A4CE5F8-D70A-4400-AA5C-D526FAD44882}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\spore\sporebin\sporeapp.exe |
"{4A5CBBD9-B921-48DB-A54F-AC0CC5968908}" = dir=out | [email protected]{microsoft.zunevideo_2.2.705.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{4A63A377-83F5-446B-BA35-EFCF9261074F}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\monkey2\monkey2.exe |
"{4AFE015E-1FF9-4843-82A5-04E4B18751AB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{4CD7D798-2712-489B-B322-66ED6B026AA0}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\syberia\game.exe |
"{4F41E16D-C07C-4EC3-94EC-643D6A9C5C70}" = dir=out | name=- games app - |
"{51441E7C-32CB-4612-BFF7-5711D4B3642F}" = dir=out | [email protected]{microsoft.bingnews_3.0.4.268_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{51E996CD-AD40-4CDE-9D2A-0D5D402A8613}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\limbo\limbo.exe |
"{534EFAEA-865D-4EA9-9BAE-A5DEFC7F5293}" = dir=out | [email protected]{microsoft.bingfoodanddrink_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | [email protected]{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{560F29F4-C019-4C02-B375-B8B7F14877B1}" = dir=out | name=line |
"{5627B2CC-343C-4EAC-B82E-26A9CFB3801E}" = dir=out | [email protected]{microsoft.bingmaps_2.0.2530.2317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{5662315F-E9CD-4222-A2FE-D06996644C3A}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\bastion\bastion.exe |
"{577FBF88-3A24-4504-BEE2-BCC3E1C7D4B9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{58C5751C-6ECF-4C53-8604-9699F5813235}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\syberia 2\game.exe |
"{5C6D4AA8-04ED-4492-ACD9-959F0DA47E28}" = dir=out | name=asus webstorage |
"{5CA376E3-42DB-4712-B74C-0C0F0F103CEB}" = protocol=17 | dir=in | app=c:\windows\syswow64\ftp.exe |
"{5CBEF16C-513F-403C-834B-666F8B62CE4D}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\monkey2\monkey2.exe |
"{5D3F6F8A-63B9-4B1A-A716-B65DB70B7C5B}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\prince of persia the sands of time\princeofpersia.exe |
"{5D44426E-3E29-4299-B710-531E10963B23}" = dir=in | [email protected]{microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{5D61AE8D-6440-4DBD-9980-EBE5EE7D1F60}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\indiana jones and the fate of atlantis\indiana jones and the fate of atlantis.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{6255AA4B-6BB6-4C57-9BC5-0BC1D08E5EB5}" = dir=in | name=skype |
"{64A60BA1-4524-45E9-BD2F-F8C40468C764}" = dir=in | name=asus webstorage |
"{65F7CC31-571E-47FD-9C60-9E46F11FC165}" = dir=out | [email protected]{microsoft.zunemusic_2.6.653.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{6A5DAEAA-97D8-498E-BC93-ACC415AAB7F9}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the journey down\journeydown1.exe |
"{6AD92922-D99F-4E50-B4AA-B29780E5C25A}" = dir=out | name=zinio |
"{6BC86DE0-7512-4019-A39B-5A046BD588DD}" = dir=out | name=netflix |
"{6D0AF849-FBA9-4B9F-B90F-2E8C3F1A7EC9}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the whispered world special edition\visionaireconfigurationtool.exe |
"{6D91D82F-241E-4C04-B070-30C023BF8187}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\deponia\visionaireconfigurationtool.exe |
"{6F99DE37-E897-44E3-B1D5-461D3FA0AAA3}" = dir=out | [email protected]{microsoft.bingnews_3.0.2.233_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{6FB0747D-4FEF-45AE-91E0-E7D20E0BEF48}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\hydrophobia\hydropc.exe |
"{6FEE5FA6-C423-45BC-84A8-12B1FD800581}" = dir=out | name=asus webstorage |
"{7288D310-8332-4AFF-BDCE-5DABBE614F19}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the whispered world special edition\visionaireconfigurationtool.exe |
"{732FCDEA-3D82-4D63-8EE7-37A02A892B55}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\ss2\shock2.exe |
"{740F9C65-5C9F-401B-B4C6-2AC2ECF053AA}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\dead space\dead space.exe |
"{75943768-4665-40DD-8390-9A1366CCDB0B}" = dir=out | [email protected]{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{7599D70E-1709-432E-B9A5-143C9C8C8B8C}" = dir=out | name=windows_ie_ac_001 |
"{75B26F58-D3E5-4A85-9DE6-6A85DF416A4D}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\syberia 2\game.exe |
"{7A76423C-89E2-4B46-8343-0F1431E1F53A}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\a new beginning\visionaireconfigurationtool.exe |
"{7ACE25AA-C738-40CD-9F00-3B52E78085DD}" = dir=out | name=fresh paint |
"{7AEF8496-A78A-4524-B43F-DB95909E51AF}" = dir=out | [email protected]{magix.musicmakerjam_2.0.1020.2_x64__a2t3txkz9j1jw?ms-resource://magix.musicmakerjam/resources/app_name} |
"{7BEC44F3-FEB1-4F7A-A4B3-7A3B9F66C331}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\portal\hl2.exe |
"{7EA9FA97-5450-4786-8001-207DF4D5F827}" = dir=in | [email protected]{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{804747CF-EAC4-4150-96D5-366CEB90C826}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the book of unwritten tales\bout.exe |
"{80BBB907-62BB-4F7E-9052-00620CB805E8}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\portal\hl2.exe |
"{8517D62F-CF01-4608-AF8B-90F88B50522F}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\uplink\uplink.exe |
"{85CF7786-9B8A-47C6-8D33-037788DF0679}" = dir=out | name=onenote |
"{87184699-3740-48A6-8362-6EB7F3C8093C}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the book of unwritten tales\bout.exe |
"{8A915ED0-D251-4352-9F2E-5235271AFD46}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\antichamber\binaries\win32\udk.exe |
"{8B0249CC-678B-49B1-89F5-B931F18F84EA}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\rog game first iii\gamefirst3.exe |
"{8B71AEA8-D45F-4E59-9BFA-E0E5AB6F4083}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\half-life\hl.exe |
"{8C8B0579-584B-4FA5-BACC-1ED6993877FF}" = dir=in | [email protected]{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{8CA62C16-2546-4D7C-B01A-17646F9D73B3}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\alan wake\alanwake.exe |
"{903FCB2C-59BF-4C47-A178-72553F5A7AC8}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\spore\sporebin\sporeapp.exe |
"{91FF2C15-1356-4BF3-BABA-66AA0A2B1CF2}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\limbo\limbo.exe |
"{950D2BEB-E9B8-4E1B-8F86-0B48A432FF9A}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\alan wake\alanwake.exe |
"{957869DF-2FED-4162-95D6-436DD7FD7921}" = dir=in | name=asus webstorage |
"{9642C8C4-C684-4B2A-943F-90197F804EBA}" = dir=out | [email protected]{microsoft.bingfinance_3.0.2.234_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{99278E83-E2F6-40F1-809F-A6C363D83A44}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{9B9C64A1-EE33-4496-B7E7-1A7A7BB069C2}" = protocol=6 | dir=in | app=d:\starcraft ii\starcraft ii.exe |
"{9E033665-E294-493C-BC95-F4CE45DAF562}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\half-life\hl.exe |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | [email protected]{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A0A89966-081C-43EA-B80E-DC6E2730E991}" = protocol=6 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{A1254A3B-FBD3-4874-9001-4E9C7867C5F8}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\dawn of war gold\w40k.exe |
"{A2A67F5D-DF2A-488B-BEA1-47968E693534}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the journey down\journeydown1.exe |
"{A3786E6C-F382-4F3E-83AD-F768D4B2F325}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\bastion\bastion.exe |
"{A5C0D259-6C8D-49A5-93EC-20A9A3037F20}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\morrowind\morrowind launcher.exe |
"{A85CB7CC-36D8-4818-A97E-13580303C460}" = dir=out | name=flipboard |
"{A9FEA7EB-FFD5-40F1-9A4C-445EFF34BB1C}" = dir=out | [email protected]{microsoft.bingtravel_3.0.4.303_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{ABD85931-0409-417E-B6B4-04F17517A0CA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock\builds\release\bioshock.exe |
"{AE841A7F-039E-4483-8C8D-7327579EBBA0}" = dir=out | name=twitter |
"{AE98468E-8BB3-4A0C-9209-156C26BC837E}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\morrowind\morrowind launcher.exe |
"{B687A6E6-3855-4FC0-A960-5424D2DA6848}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\dawn of war gold\w40kwa.exe |
"{B77DC04D-187F-4316-8AC2-FF9E1E213E90}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\lego marvel super heroes\legomarvel.exe |
"{B8183519-856E-415B-A592-42117ADFCE19}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\thomaswasalone\thomaswasalone.exe |
"{BAA72774-3800-4777-A570-5A30091CB180}" = dir=out | [email protected]{microsoft.zunevideo_2.6.434.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{BD056C15-7872-4461-B632-4A5A47F1EE5E}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\oblivion\oblivionlauncher.exe |
"{BD78D3D7-9531-4CAB-AFE1-B0DC2D42CA09}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\syberia\game.exe |
"{BE749764-EB13-484C-8E5E-18216E7901A3}" = dir=out | [email protected]{microsoft.binghealthandfitness_3.0.2.233_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{C71E57F7-F29F-4415-81E7-3F9E56A00597}" = dir=out | name=onenote |
"{C83E467A-A8C4-4E4B-ACAB-5FD2B22119D2}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\rog game first iii\gamefirst3.exe |
"{C88662F7-FFC0-415F-80E4-16ECF67ED542}" = dir=out | [email protected]{microsoft.zunemusic_2.2.705.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{CAADE0FF-CA27-43DE-B17A-C338C19C6DDF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{CBA1E7DC-1B48-4C91-984F-0E4B41322909}" = protocol=17 | dir=in | app=c:\windows\system32\ftp.exe |
"{CBE13DF9-1EBA-4886-AA72-89DFCC4C5588}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the secret of monkey island special edition\mise.exe |
"{CF3BD5BC-871B-4C55-BAE1-2FABFC06F06B}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the secret of monkey island special edition\mise.exe |
"{CF8B1286-07B8-4E91-88CD-C44C95B0A155}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\lego marvel super heroes\legomarvel.exe |
"{D0C62610-6A21-4AF8-B96F-68F265771061}" = dir=in | [email protected]{magix.musicmakerjam_2.0.1020.2_x64__a2t3txkz9j1jw?ms-resource://magix.musicmakerjam/resources/app_name} |
"{D1850E18-7A6F-4CC1-8322-A7F73262FDC1}" = dir=out | name=- games app - |
"{D42A6AFC-62F4-4945-A465-E10D59834D5B}" = protocol=6 | dir=in | app=c:\windows\system32\ftp.exe |
"{D4E94D42-6C18-440A-B479-74D0CFFA2185}" = dir=out | [email protected]{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D4ED6417-CFE3-4BE5-B09D-0A06C5FAFD2E}" = dir=out | [email protected]{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D900E271-2E6E-4FCD-AC5E-A6FCD8279BB6}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\dawn of war gold\w40kwa.exe |
"{D981146F-0C21-44CA-A583-20D948313242}" = dir=in | name=onenote |
"{D9F79FD7-708D-4268-883D-6142F114333E}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\a new beginning\anb.exe |
"{DAE8ECEA-D274-43E0-B6D3-C00E244B88D9}" = dir=out | [email protected]{microsoft.bingfinance_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{DB06398D-2B12-479C-BF8F-D34C8E6A349B}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\uplink\uplink.exe |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DE9E3F41-E28D-4E88-94A3-A0C953B75685}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\indiana jones and the fate of atlantis\indiana jones and the fate of atlantis.exe |
"{E12DE802-B684-4635-8EEE-FE6A98DFBE3E}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the whispered world special edition\twwse.exe |
"{E26312AE-F487-4C3F-91B8-79A1AC970B5D}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\the walking dead\walkingdead101.exe |
"{E4505AA0-EEF4-4856-A7D3-2CEC2E6D1EBA}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\indiana jones and the last crusade\indiana jones and the last crusade.exe |
"{E5EC6B6E-0EF4-441D-B793-6AB733D4325C}" = dir=out | name=skype |
"{E704637B-BB1C-4BA7-907A-56A7EEC4DAFA}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\portal 2\portal2.exe |
"{E88251AC-A6B2-49CE-A41F-7A25F8A51B14}" = dir=in | name=zinio |
"{EC52A042-911D-4CB8-8CDA-875225B51126}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock\builds\release\bioshock.exe |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EC92B0F6-97DE-4E00-A350-AAA59D3308C6}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\the walking dead\walkingdead101.exe |
"{EDDE35EB-5BF1-42A8-8361-202C9E39D2A5}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\oblivion\oblivionlauncher.exe |
"{EE4958B4-26A5-485D-BA6C-7ECE9D15684B}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\prince of persia the sands of time\princeofpersia.exe |
"{EF09C598-7C38-472F-B0E9-76A37C893540}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\deponia\visionaireconfigurationtool.exe |
"{F454573C-E482-4386-8AC6-48122DA86C1B}" = dir=out | [email protected]{microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F6A565A4-6655-47A1-8BBD-F118E324CAE9}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\deponia\deponia.exe |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F9648A59-39BD-41AE-8047-3D3B42091A57}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{F999BC88-A86C-49AE-B0F0-A7799B333595}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{F9C5286C-88E9-4A42-9F1C-FB7DBD95DB48}" = protocol=17 | dir=in | app=d:\battle.net\battle.net.exe |
"TCP Query User{A25F0125-16C6-4184-9314-F9EC9BDE962A}D:\starcraft ii\versions\base32283\sc2.exe" = protocol=6 | dir=in | app=d:\starcraft ii\versions\base32283\sc2.exe |
"UDP Query User{DDB7D257-F463-4401-A0B5-CCD64C4B7B79}D:\starcraft ii\versions\base32283\sc2.exe" = protocol=17 | dir=in | app=d:\starcraft ii\versions\base32283\sc2.exe |
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86418031F0}" = Java 8 Update 31 (64-bit)
"{302600C1-6BDF-4FD1-1405-148929CC1385}" = Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 17.0.1419.2)
"{457D6189-416A-44CD-A0A6-D6D75AD25CCF}" = Intel® Trusted Connect Service Client
"{A39CDDD2-3FB3-4C98-BDE9-E3032443417C}" = Intel® PROSet/Wireless WiFi Software
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 344.00
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 344.00
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 344.00
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.14.0702
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 16.13.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.32.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio" = NVIDIA Miracast Virtual Audio 344.00
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 16.13.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.25
"{b6462b67-caf5-4a74-99df-cc2811bd1957}.sdb" = GOG.com Dungeon Keeper 2
"{be2591c6-a0ef-4c8e-a6f0-e16997c8a8fc}" = Intel® PRO/Wireless Driver
"{BED2816F-D47A-41DA-AFCF-44E1B257C368}" = Thunderbolt™ Software
"Elantech" = ETDWare PS/2-X64 11.5.13.9_WHQL
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0C6E32E1-31D9-49F1-B67F-2941994002D5}" = ROG Game First III
"{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}" = ASUS Screen Saver
"{23C8A788-4790-4F3C-B103-0ACC7D9DC5BE}" = ASUS Gaming Center
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{348022C5-F497-4333-AFEE-208F22F169F2}_is1" = ASUS ROG MacroKey
"{3B9E171F-A955-4834-B877-447C0A437260}" = ASUS ROG Gaming Mouse
"{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}" = Google Earth Pro
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55762F9A-FCE3-45d5-817B-051218658423}" = CyberLink MediaStory
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus" = WildTangent Games App
"{85b9d34f-7397-4e39-8600-07942ef6ca04}" = Intel® PROSet/Wireless Software
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{959B7F35-2819-40C5-A0CD-3C53B5FCC935}" = Genesys USB Mass Storage Device
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}" = ASUS USB Charger Plus
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}" = ASUS Live Update
"0E7DAF70-FB54-4B91-B192-7E771C25AEEB" = Intel Collaborative Processor Performance Control
"1207659097_is1" = Back to the Future - The Game
"Avast" = Avast Free Antivirus
"Battle.net" = Battle.net
"GOGPACKBENEATH_is1" = Beneath a Steel Sky
"GOGPACKDEUSEX_is1" = Deus Ex GOTY
"GOGPACKDUNGEONKEEPER_is1" = Dungeon Keeper Gold
"GOGPACKDUNGEONKEEPER2_is1" = Dungeon Keeper 2
"GOGPACKFLIGHTOFTHEAMAZONQUEEN_is1" = Flight of the Amazon Queen
"GOGPACKFTL_is1" = FTL -  Advanced Edition
"GOGPACKSIMON1_is1" = Simon the Sorcerer
"Google Chrome" = Google Chrome
"InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}" = CyberLink MediaStory
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Revo Uninstaller" = Revo Uninstaller 1.95
"StarCraft II" = StarCraft II
"Steam" = Steam
"Steam App 105000" = A New Beginning - Final Cut
"Steam App 107100" = Bastion
"Steam App 108710" = Alan Wake
"Steam App 13600" = Prince of Persia: The Sands of Time
"Steam App 1510" = Uplink
"Steam App 17390" = Spore
"Steam App 17470" = Dead Space
"Steam App 207610" = The Walking Dead
"Steam App 21130" = Lego Harry Potter
"Steam App 214340" = Deponia
"Steam App 214510" = LEGO Lord of the Rings
"Steam App 215160" = The Book of Unwritten Tales
"Steam App 219890" = Antichamber
"Steam App 220" = Half-Life 2
"Steam App 220090" = The Journey Down: Chapter One
"Steam App 220780" = Thomas Was Alone
"Steam App 22320" = The Elder Scrolls III: Morrowind
"Steam App 22330" = The Elder Scrolls IV: Oblivion
"Steam App 238210" = System Shock 2
"Steam App 249130" = LEGO MARVEL Super Heroes
"Steam App 268540" = The Whispered World Special Edition
"Steam App 32310" = Indiana Jones and the Last Crusade
"Steam App 32360" = The Secret of Monkey Island: Special Edition
"Steam App 32460" = Monkey Island 2: Special Edition
"Steam App 400" = Portal
"Steam App 4570" = Warhammer 40,000: Dawn of War - Game of the Year Edition
"Steam App 46500" = Syberia
"Steam App 46510" = Syberia 2
"Steam App 48000" = LIMBO
"Steam App 6010" = Indiana Jones and the Fate of Atlantis
"Steam App 620" = Portal 2
"Steam App 70" = Half-Life
"Steam App 72850" = The Elder Scrolls V: Skyrim
"Steam App 7670" = BioShock
"Steam App 92000" = Hydrophobia: Prophecy
"Steam App 9310" = Warhammer 40,000: Dawn of War – Winter Assault
"WildTangentGameProvider-asus-casual" = Game Explorer Categories - casual
"WildTangentGameProvider-asus-enthusiast" = Game Explorer Categories - enthusiast
"WildTangentGameProvider-asus-family" = Game Explorer Categories - family
"WildTangentGameProvider-asus-kids" = Game Explorer Categories - kids
"WildTangentGameProvider-asus-touch" = Game Explorer Categories - touch
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 13/02/2015 15:52:42 | Computer Name = Dobby-Laptop | Source = Application Error | ID = 1000
Description = Faulting application name: IEXPLORE.EXE, version: 11.0.9600.17037,
 time stamp: 0x5312c30a  Faulting module name: unknown, version: 0.0.0.0, time stamp:
 0x00000000  Exception code: 0xc0000005  Fault offset: 0x77b31a91  Faulting process ID:
 0x4e84  Faulting application start time: 0x01d047c669bca623  Faulting application path:
 C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE  Faulting module path: unknown
Report
 ID: de77e678-b3b9-11e4-8260-28b2bd1020bf  Faulting package full name:   Faulting package-relative
 application ID:
 
Error - 22/02/2015 10:36:33 | Computer Name = Dobby-Laptop | Source = Application Error | ID = 1000
Description = Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time
 stamp: 0x5215f6c5  Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time
 stamp: 0x540a78b0  Exception code: 0xc0000005  Fault offset: 0x0000000000848e8a  Faulting
 process ID: 0x280  Faulting application start time: 0x01d0485562b0195c  Faulting application
 path: C:\Windows\system32\LogonUI.exe  Faulting module path: C:\Windows\system32\nvwgf2umx.dll
Report
 ID: 321bd768-baa0-11e4-8261-382c4aebc68b  Faulting package full name:   Faulting package-relative
 application ID:
 
Error - 22/02/2015 11:28:59 | Computer Name = Dobby-Laptop | Source = Application Error | ID = 1000
Description = Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time
 stamp: 0x5215f6c5  Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time
 stamp: 0x540a78b0  Exception code: 0xc0000005  Fault offset: 0x0000000000848e8a  Faulting
 process ID: 0x188  Faulting application start time: 0x01d04eb43dc05169  Faulting application
 path: C:\Windows\system32\LogonUI.exe  Faulting module path: C:\Windows\system32\nvwgf2umx.dll
Report
 ID: 854f9594-baa7-11e4-8262-382c4aebc68b  Faulting package full name:   Faulting package-relative
 application ID:
 
Error - 22/02/2015 13:56:30 | Computer Name = Dobby-Laptop | Source = Application Error | ID = 1000
Description = Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time
 stamp: 0x5215f6c5  Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time
 stamp: 0x540a78b0  Exception code: 0xc0000005  Fault offset: 0x0000000000848e8a  Faulting
 process ID: 0x11ac  Faulting application start time: 0x01d04ec8c1c14336  Faulting application
 path: C:\Windows\System32\LogonUI.exe  Faulting module path: C:\Windows\System32\nvwgf2umx.dll
Report
 ID: 20c26129-babc-11e4-8263-382c4aebc68b  Faulting package full name:   Faulting package-relative
 application ID:
 
Error - 22/02/2015 15:47:14 | Computer Name = Dobby-Laptop | Source = Application Error | ID = 1000
Description = Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time
 stamp: 0x5215f6c5  Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time
 stamp: 0x540a78b0  Exception code: 0xc0000005  Fault offset: 0x0000000000848e8a  Faulting
 process ID: 0x1b8  Faulting application start time: 0x01d04ed2df876acf  Faulting application
 path: C:\Windows\system32\LogonUI.exe  Faulting module path: C:\Windows\system32\nvwgf2umx.dll
Report
 ID: 993306c9-bacb-11e4-8266-382c4aebc68b  Faulting package full name:   Faulting package-relative
 application ID:
 
Error - 22/02/2015 16:32:34 | Computer Name = Dobby-Laptop | Source = SideBySide | ID = 16842830
Description = Activation context generation failed for "G:\esetsmartinstaller_enu.exe".Error
 in manifest or policy file "" on line .  A component version required by the application
 conflicts with another component version already active.  Conflicting components
are:.  Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error - 22/02/2015 16:36:55 | Computer Name = Dobby-Laptop | Source = SideBySide | ID = 16842830
Description = Activation context generation failed for "G:\esetsmartinstaller_enu.exe".Error
 in manifest or policy file "" on line .  A component version required by the application
 conflicts with another component version already active.  Conflicting components
are:.  Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error - 22/02/2015 16:36:55 | Computer Name = Dobby-Laptop | Source = SideBySide | ID = 16842830
Description = Activation context generation failed for "G:\esetsmartinstaller_enu.exe".Error
 in manifest or policy file "" on line .  A component version required by the application
 conflicts with another component version already active.  Conflicting components
are:.  Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error - 22/02/2015 16:37:42 | Computer Name = Dobby-Laptop | Source = SideBySide | ID = 16842830
Description = Activation context generation failed for "G:\esetsmartinstaller_enu.exe".Error
 in manifest or policy file "" on line .  A component version required by the application
 conflicts with another component version already active.  Conflicting components
are:.  Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error - 22/02/2015 16:37:45 | Computer Name = Dobby-Laptop | Source = SideBySide | ID = 16842830
Description = Activation context generation failed for "G:\esetsmartinstaller_enu.exe".Error
 in manifest or policy file "" on line .  A component version required by the application
 conflicts with another component version already active.  Conflicting components
are:.  Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
[ System Events ]
Error - 22/02/2015 14:02:30 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 10. The Windows SChannel error state is 10.
 
Error - 22/02/2015 14:43:36 | Computer Name = Dobby-Laptop | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!
 
Error - 22/02/2015 14:43:53 | Computer Name = Dobby-Laptop | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Type with the following error:
   %%5
 
Error - 22/02/2015 15:08:09 | Computer Name = Dobby-Laptop | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Type with the following error:
   %%5
 
Error - 22/02/2015 16:36:49 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 40. The Windows SChannel error state is 252.
 
Error - 22/02/2015 16:36:59 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 40. The Windows SChannel error state is 252.
 
Error - 22/02/2015 16:37:00 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 40. The Windows SChannel error state is 252.
 
Error - 22/02/2015 16:38:30 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 10. The Windows SChannel error state is 10.
 
Error - 22/02/2015 16:38:30 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 10. The Windows SChannel error state is 10.
 
Error - 22/02/2015 16:42:18 | Computer Name = Dobby-Laptop | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
 code is 10. The Windows SChannel error state is 10.
 
 
< End of report >

 


  • 0

Advertisements


#2
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Greetings dobby200 and :welcome:

My nickname is Ruggie and I will be assisting you in cleaning your computer.

  • Malware removal can be a long process and will at times get complicated with multiple steps to perform to ensure that your system is no longer infected.
  • When we start the process, the list of instructions must be followed closely, it may seem difficult at times but it is important that you stay with me until your computer is declared clean.
  • If you are receiving help elsewhere, please let me know so we can close this thread and help someone else.

stop32.png Before going any further, I recommend that you print out (or save to a file) these guidelines and also the instructions when I post them, as part of the repair process may involve going into safe mode and therefore you will not have internet access.

The following guidelines are important but the ones highlighted in RED are of the highest importance and must not be skipped.

right-grn.pngPlease save all tools to the desktop,. Our tools are updated very regularly, sometimes several times per day so always download the latest version from the links I provide.

right-grn.pngPlease be aware, the fixes we perform are specific to this machine, at this moment in time. They must not be used on another computer or unsupervised at another time. This can render your computer unbootable.

right-grn.pngIf at all possible, Make backups of all your important files, whilst we will do our best to ensure that no files are lost or damaged, sometimes things can go wrong.

right-grn.png I will do everything in my power to ensure that this clean is successful, but occasionally failure hits us all. In this event, please have your original installation disks to hand and be prepared to have to format and reinstall your computer.

right-grn.png Refrain from using any tool that hasn't been instructed as it could alter the process that we are working through and cause further problems. Also only use the tools I instruct in the manner provided as they are very powerful and if not used properly can cause even more problems. It is best if you can avoid using the computer at all, apart from to perform the cleaning steps to ensure that any infections aren't spread.

right-grn.pngPlease stick with me until the end. malware removal is difficult and time consuming. We have to analyse hundreds of lines in log files. This takes time which we give freely so I ask that you do us the courtesy of seeing it through.

right-grn.png Only paste the contents of log files into your reply, DO NOT attach any log files unless requested to do so.

right-grn.png If you have any questions or get stuck, stop and ask....I am here to help you make this go as smoothly as possible.

right-grn.png If you do not reply within 3 days, your topic will be closed. It can be reopened if you ask. But if you plan on being gone for a longer period, just let me know and I will hold it open for you.

Ready? Now lets get to work

 

Hi, the addition.txt is missing but the main file is pasted twice.

 

Could you post the addition please.


  • 1

#3
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Hi Ruggie, thanks for taking your time to help me.

 

The addition.txt is here

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-02-2015

Ran by Dobby D at 2015-02-22 22:16:33
Running from G:\
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
A New Beginning - Final Cut (HKLM-x32\...\Steam App 105000) (Version:  - Daedalic Entertainment)
Alan Wake (HKLM-x32\...\Steam App 108710) (Version:  - Remedy Entertainment)
Antichamber (HKLM-x32\...\Steam App 219890) (Version:  - Alexander Bruce)
ASUS Gaming Center (HKLM-x32\...\{23C8A788-4790-4F3C-B103-0ACC7D9DC5BE}) (Version: 1.0.2 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.9 - ASUS)
ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
ASUS ROG MacroKey (HKLM-x32\...\{348022C5-F497-4333-AFEE-208F22F169F2}_is1) (Version: 1.0.0.28 - G-spy Co., Ltd)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.0.1 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Back to the Future - The Game (HKLM-x32\...\1207659097_is1) (Version: 2.1.0.5 - GOG.com)
Bastion (HKLM-x32\...\Steam App 107100) (Version:  - Supergiant Games)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Beneath a Steel Sky (HKLM-x32\...\GOGPACKBENEATH_is1) (Version: 2.0.0.9 - GOG.com)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Deponia (HKLM-x32\...\Steam App 214340) (Version:  - Daedalic Entertainment)
Deus Ex GOTY (HKLM-x32\...\GOGPACKDEUSEX_is1) (Version: 2.0.0.11 - GOG.com)
Dropbox (HKU\S-1-5-21-755688246-219275176-976515087-1001\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
Dungeon Keeper 2 (HKLM-x32\...\GOGPACKDUNGEONKEEPER2_is1) (Version: 2.0.0.32 - GOG.com)
Dungeon Keeper Gold (HKLM-x32\...\GOGPACKDUNGEONKEEPER_is1) (Version: 2.0.0.4 - GOG.com)
ETDWare PS/2-X64 11.5.13.9_WHQL (HKLM\...\Elantech) (Version: 11.5.13.9 - ELAN Microelectronic Corp.)
Flight of the Amazon Queen (HKLM-x32\...\GOGPACKFLIGHTOFTHEAMAZONQUEEN_is1) (Version: 2.0.0.4 - GOG.com)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
Game Explorer Categories - casual (HKLM-x32\...\WildTangentGameProvider-asus-casual) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - enthusiast (HKLM-x32\...\WildTangentGameProvider-asus-enthusiast) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - family (HKLM-x32\...\WildTangentGameProvider-asus-family) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - kids (HKLM-x32\...\WildTangentGameProvider-asus-kids) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - touch (HKLM-x32\...\WildTangentGameProvider-asus-touch) (Version: 3.2.0.6 - WildTangent, Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.1.1 - Genesys Logic)
GOG.com Dungeon Keeper 2 (HKLM\...\{b6462b67-caf5-4a74-99df-cc2811bd1957}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Half-Life (HKLM-x32\...\Steam App 70) (Version:  - Valve)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Hydrophobia: Prophecy (HKLM-x32\...\Steam App 92000) (Version:  - Dark Energy Digital Ltd.)
Indiana Jones and the Fate of Atlantis (HKLM-x32\...\Steam App 6010) (Version:  - LucasArts)
Indiana Jones and the Last Crusade (HKLM-x32\...\Steam App 32310) (Version:  - LucasArts)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1016 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.6.0.1038 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Lego Harry Potter (HKLM-x32\...\Steam App 21130) (Version:  - TT Games)
LEGO Lord of the Rings (HKLM-x32\...\Steam App 214510) (Version:  - Traveller's Tales)
LEGO MARVEL Super Heroes (HKLM-x32\...\Steam App 249130) (Version:  - Traveller's Tales)
LIMBO (HKLM-x32\...\Steam App 48000) (Version:  - Playdead)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Monkey Island 2: Special Edition (HKLM-x32\...\Steam App 32460) (Version:  - LucasArts)
NVIDIA 3D Vision Driver 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.00 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Graphics Driver 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.00 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.00 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Prince of Persia: The Sands of Time (HKLM-x32\...\Steam App 13600) (Version:  - Kudosoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
ROG Game First III (HKLM-x32\...\{0C6E32E1-31D9-49F1-B67F-2941994002D5}) (Version: 1.00.16 - ASUSTeK Computer Inc.)
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.21 - NVIDIA Corporation) Hidden
Simon the Sorcerer (HKLM-x32\...\GOGPACKSIMON1_is1) (Version: 2.0.0.18 - GOG.com)
Spore (HKLM-x32\...\Steam App 17390) (Version:  - Maxis™)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Syberia (HKLM-x32\...\Steam App 46500) (Version:  - Anuman)
Syberia 2 (HKLM-x32\...\Steam App 46510) (Version:  - Anuman / Microids)
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
The Book of Unwritten Tales (HKLM-x32\...\Steam App 215160) (Version:  - KING Art)
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM-x32\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Journey Down: Chapter One (HKLM-x32\...\Steam App 220090) (Version:  - SkyGoblin)
The Secret of Monkey Island: Special Edition (HKLM-x32\...\Steam App 32360) (Version:  - LucasArts)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Whispered World Special Edition (HKLM-x32\...\Steam App 268540) (Version:  - Daedalic Entertainment)
Thomas Was Alone (HKLM-x32\...\Steam App 220780) (Version:  - Mike Bithell)
Thunderbolt™ Software (HKLM\...\{BED2816F-D47A-41DA-AFCF-44E1B257C368}) (Version: 2.0.4.250 - Intel® Corporation)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Uplink (HKLM-x32\...\Steam App 1510) (Version:  - Introversion Software)
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
Warhammer 40,000: Dawn of War – Winter Assault (HKLM-x32\...\Steam App 9310) (Version:  - Relic Entertainment)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.2 - WildTangent)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-755688246-219275176-976515087-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dobby D\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
10-02-2015 02:17:38 Removed Microsoft Office
13-02-2015 20:38:04 Windows Update
22-02-2015 19:18:38 Scheduled Checkpoint
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 13:25 - 2013-08-22 13:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {00A8110B-1262-4024-AC9B-92CB66DE04E6} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.)
Task: {088C07CF-860F-4DED-982A-BC39B02198E3} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [2014-02-26] ()
Task: {24E18892-78F9-481C-BB3C-01A2F9E5A65D} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-09-02] (Realtek Semiconductor)
Task: {3CD7038C-3509-4E1C-A2DA-D83956413A98} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-09-01] (Realtek Semiconductor)
Task: {3E2AC626-1D5B-4ABB-9317-C905669DDE9C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2015-02-22] ()
Task: {4F41F428-E72E-4CA0-8DA7-3ADEF38BF6EE} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe
Task: {55236FC9-3DB9-4E81-B67D-062A38723D45} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {556574AB-7DE2-4910-A76A-B057230E6655} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-10] (Google Inc.)
Task: {628FAB1B-F421-4188-B484-4B849ACEE83C} - System32\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-10] (Google Inc.)
Task: {84BBDA21-25D9-4DF2-BD40-4EBAB1F70AE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-10] (Google Inc.)
Task: {8C87F868-897D-4767-9EF7-0F3B9B7AA89B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-07-09] (ASUSTek Computer Inc.)
Task: {AF1E85B8-14A5-4394-924F-C37E32DA2BA6} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2014-04-11] ()
Task: {B47C6A92-57A8-4931-B5A0-3E3BE4FD371A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-02-10] (AVAST Software)
Task: {C33A1BB7-7343-4C28-A79E-E04785D77705} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2015-02-22] ()
Task: {D43C716C-927E-4014-A8C4-A340AACDE8EA} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => start ThunderboltService
Task: {D6B6DA2C-C848-4F21-A505-D61FC43698BC} - System32\Tasks\Gaming Center => C:\Program Files (x86)\ASUS\ASUS Gaming Center\vivokey.exe [2014-04-30] (ASUSTek Computer Inc.)
Task: {D6CFDA2B-F9EE-41E3-BCFC-673C3FA6B6A0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-12] (Microsoft Corporation)
Task: {EF573B2D-BD2A-4C9D-8726-E80388D952BD} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe
Task: {F7BD2C4F-A637-43C5-B9A1-143FB78EE880} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d044e237f158c7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2014-10-15 10:26 - 2014-09-06 04:51 - 00116896 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-10 04:22 - 2015-02-10 04:22 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2015-02-10 04:22 - 2015-02-10 04:22 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2014-10-15 10:33 - 2014-02-26 03:13 - 00053248 _____ () C:\Windows\SysWOW64\UMonit64.exe
2014-10-15 10:36 - 2013-05-15 13:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
2015-02-14 12:55 - 2015-02-14 12:55 - 02912256 _____ () C:\Program Files\AVAST Software\Avast\defs\15021300\algo.dll
2015-02-10 04:22 - 2015-02-10 04:22 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2015-02-22 19:09 - 2015-02-22 19:09 - 02911744 _____ () C:\Program Files\AVAST Software\Avast\defs\15022100\algo.dll
2014-10-15 10:30 - 2013-10-23 12:44 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-06-03 19:01 - 2014-06-03 19:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2014-06-03 19:01 - 2014-06-03 19:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-06-03 19:01 - 2014-06-03 19:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
2014-06-03 19:01 - 2014-06-03 19:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
2015-02-10 04:22 - 2015-02-10 04:22 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-755688246-219275176-976515087-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.1.254
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-755688246-219275176-976515087-500 - Administrator - Disabled)
Dobby D (S-1-5-21-755688246-219275176-976515087-1001 - Administrator - Enabled) => C:\Users\Dobby D
Guest (S-1-5-21-755688246-219275176-976515087-501 - Limited - Disabled)
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/22/2015 08:37:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (02/22/2015 08:37:42 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (02/22/2015 08:36:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (02/22/2015 08:36:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (02/22/2015 08:32:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (02/22/2015 07:47:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time stamp: 0x5215f6c5
Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time stamp: 0x540a78b0
Exception code: 0xc0000005
Fault offset: 0x0000000000848e8a
Faulting process ID: 0x1b8
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report ID: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5
 
Error: (02/22/2015 05:56:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time stamp: 0x5215f6c5
Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time stamp: 0x540a78b0
Exception code: 0xc0000005
Fault offset: 0x0000000000848e8a
Faulting process ID: 0x11ac
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report ID: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5
 
Error: (02/22/2015 03:28:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time stamp: 0x5215f6c5
Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time stamp: 0x540a78b0
Exception code: 0xc0000005
Fault offset: 0x0000000000848e8a
Faulting process ID: 0x188
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report ID: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5
 
Error: (02/22/2015 02:36:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time stamp: 0x5215f6c5
Faulting module name: nvwgf2umx.dll, version: 9.18.13.4400, time stamp: 0x540a78b0
Exception code: 0xc0000005
Fault offset: 0x0000000000848e8a
Faulting process ID: 0x280
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report ID: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5
 
Error: (02/13/2015 07:52:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.17037, time stamp: 0x5312c30a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x77b31a91
Faulting process ID: 0x4e84
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report ID: IEXPLORE.EXE3
Faulting package full name: IEXPLORE.EXE4
Faulting package-relative application ID: IEXPLORE.EXE5
 
 
System errors:
=============
Error: (02/22/2015 08:42:18 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
 
Error: (02/22/2015 08:38:30 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
 
Error: (02/22/2015 08:38:30 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
 
Error: (02/22/2015 08:37:00 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 252.
 
Error: (02/22/2015 08:36:59 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 252.
 
Error: (02/22/2015 08:36:49 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 252.
 
Error: (02/22/2015 07:08:09 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Type with the following error: 
%%5
 
Error: (02/22/2015 06:43:53 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Type with the following error: 
%%5
 
Error: (02/22/2015 06:43:36 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!
 
Error: (02/22/2015 06:02:30 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
 
 
Microsoft Office Sessions:
=========================
Error: (02/22/2015 08:37:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestG:\esetsmartinstaller_enu.exe
 
Error: (02/22/2015 08:37:42 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestG:\esetsmartinstaller_enu.exe
 
Error: (02/22/2015 08:36:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestG:\esetsmartinstaller_enu.exe
 
Error: (02/22/2015 08:36:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestG:\esetsmartinstaller_enu.exe
 
Error: (02/22/2015 08:32:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestG:\esetsmartinstaller_enu.exe
 
Error: (02/22/2015 07:47:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.4400540a78b0c00000050000000000848e8a1b801d04ed2df876acfC:\Windows\system32\LogonUI.exeC:\Windows\system32\nvwgf2umx.dll993306c9-bacb-11e4-8266-382c4aebc68b
 
Error: (02/22/2015 05:56:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.4400540a78b0c00000050000000000848e8a11ac01d04ec8c1c14336C:\Windows\System32\LogonUI.exeC:\Windows\System32\nvwgf2umx.dll20c26129-babc-11e4-8263-382c4aebc68b
 
Error: (02/22/2015 03:28:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.4400540a78b0c00000050000000000848e8a18801d04eb43dc05169C:\Windows\system32\LogonUI.exeC:\Windows\system32\nvwgf2umx.dll854f9594-baa7-11e4-8262-382c4aebc68b
 
Error: (02/22/2015 02:36:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.4400540a78b0c00000050000000000848e8a28001d0485562b0195cC:\Windows\system32\LogonUI.exeC:\Windows\system32\nvwgf2umx.dll321bd768-baa0-11e4-8261-382c4aebc68b
 
Error: (02/13/2015 07:52:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.170375312c30aunknown0.0.0.000000000c000000577b31a914e8401d047c669bca623C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknownde77e678-b3b9-11e4-8260-28b2bd1020bf
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-4710HQ CPU @ 2.50GHz
Percentage of memory in use: 16%
Total physical RAM: 16333.11 MB
Available physical RAM: 13653.65 MB
Total Pagefile: 18765.11 MB
Available Pagefile: 15983.91 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:107.02 GB) (Free:34.83 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Games) (Fixed) (Total:465.75 GB) (Free:347.13 GB) NTFS
Drive e: (media) (Fixed) (Total:465.76 GB) (Free:387.21 GB) NTFS
Drive g: () (Removable) (Total:3.98 GB) (Free:2.6 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: DE4D4C57)
 
Partition: GPT Partition Type.
 
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 4431E630)
 
Partition: GPT Partition Type.
 
========================================================
Disk: 2 (Size: 4 GB) (Disk ID: 9BB14743)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)
 
==================== End Of Log ============================

  • 0

#4
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Hello again :)

 

There doesn't appear to be much wrong showing in your logs but we will do a clean and see where we are at. Also in another stage we should take a look at your avast log to see what has happened previously.

 

But for now:

 

Step 1

 

FRST Fix

If FRST.exe/FRST64.exe is not on your desktop, please download Farbar Recovery Scan Tool and save it to your desktop.
 

  • Download the attached Attached File  fixlist.txt   385bytes   79 downloads and save it to your desktop <<< very important - it must be in the same location as FRST.exe/FRST64.exe
  • Right click frst.png and run as administrator. When the tool opens click Yes to the disclaimer.
  • Press the Fix button.
  • It will produce a log called fixlog.txt on your Desktop.
  • Please copy and paste the contents of that log back here.

    NOTICE: This script was written specifically for this user, for use on that particular machine, at this point in time. Running this on another machine may cause damage to your operating system.

 

 

Step 2

 

 jrt.pngJunkware Removal Tool
Please download Junkware Removal Tool to your desktop. << Important
Ensure that any security software is temporarily disabled for the duration of the scan. Don't forget to re-enable it afterwards.
 

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by right-clicking jrt.png and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

 

Step 3

 

adwcleaner.pngAdwCleaner by Xplode

Download AdwCleaner from here or from here. Save the file to the desktop.


NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.

Close all open windows and browsers.

  • Vista/7/8 users: Right click the adwcleaner.pngAdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
    You will see the following console:

    AdwScan.jpg?
  • Click the Scan button and wait for the scan to finish.
  • After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: Pending. Please uncheck elements you don't want to remove. Please Do Not delete anything at this time.
  • Click the Report button to get the log.
  • Copy and Paste it into your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[R0].txt.
  • Click the X in the upper right corner of the program or click the File menu and click Exit to close the program.

Optional:

NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.

 

 

Items I need to see in your next post:
 

  • FRST Fixlog
  • JRT Log
  • ADWCleaner Scan

 

 

 


  • 1

#5
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Initially when I downloaded programs onto the infected laptop, they all downloaded successfully. But when trying to run any of them I had a popup saying this program isn't compatible with your version of windows, this happened with the 32 and 64 bit versions of FRST.

 

After downloading all the programs onto another laptop and transferring with a USB stick they all worked.

 

 

 

 

Here is the FRST Fixlog:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-02-2015 01
Ran by Dobby D at 2015-03-01 11:04:13 Run:1
Running from C:\Users\Dobby D\Desktop
Loaded Profiles: Dobby D (Available profiles: Dobby D)
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
createrestorepoint:
2014-10-15 10:30 - 2014-10-15 10:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-15 15:58 - 2012-09-07 11:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-05-15 15:58 - 2009-07-22 10:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-05-15 15:58 - 2012-09-07 11:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
emptytemp:
end
*****************
 
Restore point was successfully created.
C:\ProgramData\DP45977C.lfl => Moved successfully.
C:\ProgramData\SetStretch.cmd => Moved successfully.
C:\ProgramData\SetStretch.exe => Moved successfully.
C:\ProgramData\SetStretch.VBS => Moved successfully.
EmptyTemp: => Removed 1.1 GB temporary data.
 
 
The system needed a reboot. 
 
==== End of Fixlog 11:05:26 ====
 
 
 
 
Here is the JRT log:
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 8.1 x64
Ran by Dobby D on 01/03/2015 at 11:07:55.99
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/03/2015 at 11:13:30.94
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
 
Here is the AdwCleaner log:
 
 
# AdwCleaner v4.111 - Logfile created 01/03/2015 at 11:15:32
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Local]
# Operating system : Windows 8.1  (x64)
# Username : Dobby D - DOBBY-LAPTOP
# Running from : C:\Users\Dobby D\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Found : C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17416
 
 
-\\ Google Chrome v40.0.2214.115
 
[C:\Users\Dobby D\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
*************************
 
AdwCleaner[R0].txt - [939 bytes] - [01/03/2015 11:15:32]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [997 bytes] ##########
 

  • 0

#6
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Hi, as expected, not a lot found so far.

 

Open Avast, Click Scan and Click Scan History(at the bottom), then paste the previous log please. Let's see what it found. Also perform the following.

 

First...

 

adwcleaner.pngRe-run AdwCleaner

Close all open windows and browsers.

  • Right click the adwcleaner.pngAdwCleaner icon, click Run as administrator and accept the UAC prompt to run AdwCleaner.
  • Click the Scan button and wait for the scan to complete.
  • When the Scan has finished the Scan button will be grayed out and the Clean button will be activated.
  • Click the Clean button.
  • Everything checked will be deleted.
  • When the program has finished cleaning a report appears.
  • Once done it will ask to reboot, allow this

    adwcleaner_delete_restart.jpg
  • On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[S0].txt

 

 

Next...

 

Malwarebytes' Anti-Malware

Please download Malwarebytes' Anti-Malware from Here or Here (or re-run it if you already have it installed)

  • Double Click the downloaded mbam-setup-x.x.x.xxxx.exe to install the application. (x.x.x.xxxx represents the current version number).
  • During installation, make sure uncheck Enable free trial of Malwarebytes Anti-Malware Premium, then click Finish. You can always upgrade later ;) :
    MBAM1_zps65d773c0.png
  • If an update is found, it will download and install the latest updates automatically:
  • Now select the Settings tab, and check the box next to Scan for rootkits and ensure the PUP and PUM options are selected to treat as malware:
    mbam-select.png
  • Go back to the Dashboard tab, and click the Scan Now button:
    mbam-scan.png
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, it will show you the results. (This one is clean):
    MBAM65_zpsb0aa143c.png
  • Make sure that everything is checked, and click Quarantine All (or similar).
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note below) If the log doesn't open, select View detailed log in the Scan tab:
    MBAM7_zps782405f0.png
  • The log is automatically saved by MBAM and can be viewed by going to the History tab and clicking on Application Logs:
    MBAM9_zps1f87702b.png
  • Choose the latest Scan Log, and click on the View button:
    MBAM10_zps5a48f689.png
  • In the bottom of the Scanning History Log window that opens, you can click on Export > Save to Text file (*.txt). Save the report to your Desktop.
    MBAM8_zpsad402941.png
  • Copy & Paste the entire contents of the report log in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

*** In your next reply, I need you to Copy&Paste the contents of the MBAM log file.


Then...

Please run a free online scan with the ESET Online Scanner

<< Please disable any existing anti virus product before performing the following. >>



  • Click Run Eset Online Scanner

Runscan.png


Note: You will need to use Internet Explorer or Firefox (You will be prompted to install a helper program if you use firefox)for this scan.
Important: Please disable your existing AV software for the duration of the scan



  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the option Enable detection of potentially unwanted applications is checked
  • Next click on Advanced Settings and select:

eset-selections.png



  • Make sure that the option Remove found threats is NOT checked
  • Scan archives
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology

eset-selections.png



  • Click Start, the virus database will update, this may take a while depending on your internet connection.
  • Once updated, the online scan will begin. (This scan can take several hours, so please be patient)
  • Once the scan is completed, click Finish
  • Use Notepad to open the logfile located at C:\Program Files (x86)\ESET\Eset Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic

Items I need to see in your next post:

  • AVAST log
  • ADWCleaner Log
  • MBAm Log
  • ESET log

 


  • 1

#7
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts
I found the Avast scan history link, but it wouldn't give me an export option.
 
Here is the event log text file from my avast program files folder:
 
 
10/02/2015 04:23:03 Maj 6 Min 2 GetVersionEx 6.2 Stored 5.0
10/02/2015 04:23:03 [00002060] RegisterAVASFirewall preVista 0 pszProductName avast! Antivirus pszProductExe C:\Program Files\AVAST 
 
Software\Avast\VisthAux.exe firewall 0
10/02/2015 04:23:03 [00002060] WaitForWscService( 600 ) -> true, SCM OK wsc OK err 0
10/02/2015 04:23:04 [00002060] Register AV OK
10/02/2015 04:23:04 [00002060] WaitForWscService( 600 ) -> true, SCM OK wsc OK err 0
10/02/2015 04:23:05 [00002060] Register AS OK
10/02/2015 04:23:05 [00002060] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
10/02/2015 04:23:05 [00002060] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
10/02/2015 04:23:05 [00002060] UpdateStatus AV OK status 0 sign 1
10/02/2015 04:23:05 [00002060] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
10/02/2015 04:23:05 [00002060] UpdateStatus AS OK status 0 sign 1
10/02/2015 22:31:24 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
10/02/2015 22:31:24 [00000810] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
10/02/2015 22:31:27 [00000810] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
10/02/2015 22:31:27 [00000810] UpdateStatus AV OK status 0 sign 1
10/02/2015 22:31:27 [00000810] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
10/02/2015 22:31:27 [00000810] UpdateStatus AS OK status 0 sign 1
11/02/2015 17:56:29 The virus definitions have been automatically updated to version 150210-1.
11/02/2015 17:56:32 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
11/02/2015 17:56:32 [000014DC] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
11/02/2015 17:56:32 [000014DC] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
11/02/2015 17:56:32 [000014DC] UpdateStatus AV OK status 0 sign 1
11/02/2015 17:56:32 [000014DC] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
11/02/2015 17:56:32 [000014DC] UpdateStatus AS OK status 0 sign 1
12/02/2015 22:30:21 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
12/02/2015 22:30:21 [00005574] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
12/02/2015 22:30:21 [00005574] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
12/02/2015 22:30:21 [00005574] UpdateStatus AV OK status 0 sign 1
12/02/2015 22:30:21 [00005574] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
12/02/2015 22:30:21 [00005574] UpdateStatus AS OK status 0 sign 1
12/02/2015 22:30:25 The virus definitions have been automatically updated to version 150211-1.
13/02/2015 20:27:17 The virus definitions have been automatically updated to version 150212-1.
13/02/2015 20:27:24 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
13/02/2015 20:27:24 [00007344] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
13/02/2015 20:27:24 [00007344] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
13/02/2015 20:27:24 [00007344] UpdateStatus AV OK status 0 sign 1
13/02/2015 20:27:24 [00007344] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
13/02/2015 20:27:24 [00007344] UpdateStatus AS OK status 0 sign 1
14/02/2015 12:54:38 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
14/02/2015 12:54:38 [000006DC] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
14/02/2015 12:54:41 [000006DC] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
14/02/2015 12:54:41 [000006DC] UpdateStatus AV OK status 0 sign 1
14/02/2015 12:54:41 [000006DC] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
14/02/2015 12:54:41 [000006DC] UpdateStatus AS OK status 0 sign 1
14/02/2015 12:55:26 The virus definitions have been automatically updated to version 150213-0.
14/02/2015 12:55:30 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
14/02/2015 12:55:30 [000011E4] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
14/02/2015 12:55:30 [000011E4] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
14/02/2015 12:55:30 [000011E4] UpdateStatus AV OK status 0 sign 1
14/02/2015 12:55:30 [000011E4] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
14/02/2015 12:55:30 [000011E4] UpdateStatus AS OK status 0 sign 1
22/02/2015 14:55:30 AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Windows\Microsoft.NET\Framework
 
\v4.0.30319\mscorsvw.exe failed, 00000005.
22/02/2015 14:55:30 AAVM - scanning warning: x_AavmCheckFileDirectEx: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 
 
(\\.\aswMonFltProxy\FFFFE00051609070) returning error, 00000005.
22/02/2015 14:58:52 An error has occured while attempting to update. Please check the logs.
22/02/2015 14:58:52 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 14:58:52 [0000187C] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 14:58:52 [0000187C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 14:58:53 [0000187C] UpdateStatus AV OK status 0 sign 0
22/02/2015 14:58:53 [0000187C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 14:58:53 [0000187C] UpdateStatus AS OK status 0 sign 0
22/02/2015 14:59:37 VistaAux started /update /as
22/02/2015 14:59:37 VistaAux starting update
22/02/2015 14:59:37 VistaAux av update
22/02/2015 15:10:34 VistaAux started /update /av
22/02/2015 15:10:34 VistaAux starting update
22/02/2015 15:10:34 VistaAux av update
22/02/2015 15:11:17 VistaAux started /update /as
22/02/2015 15:11:17 VistaAux starting update
22/02/2015 15:11:18 VistaAux av update
22/02/2015 15:14:34 VistaAux started /update /as
22/02/2015 15:14:35 VistaAux starting update
22/02/2015 15:14:35 VistaAux av update
22/02/2015 15:28:48 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 15:28:48 [00000C48] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 15:28:48 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 15:28:48 [00000C6C] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 15:28:48 [00000C48] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 15:28:48 [00000C48] UpdateStatus AV OK status 0 sign 0
22/02/2015 15:28:48 [00000C48] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 15:28:48 [00000C48] UpdateStatus AS OK status 0 sign 0
22/02/2015 15:28:48 [00000C6C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 15:28:48 [00000C6C] UpdateStatus AV OK status 0 sign 0
22/02/2015 15:28:48 [00000C6C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 15:28:48 [00000C6C] UpdateStatus AS OK status 0 sign 0
22/02/2015 15:33:40 An error has occured while attempting to update. Please check the logs.
22/02/2015 15:41:54 VistaAux started /update /av
22/02/2015 15:41:55 VistaAux starting update
22/02/2015 15:41:55 VistaAux av update
22/02/2015 17:12:05 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 17:12:05 [00000758] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 17:12:05 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 17:12:05 [0000080C] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 17:12:07 [00000758] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 17:12:08 [00000758] UpdateStatus AV OK status 0 sign 0
22/02/2015 17:12:08 [00000758] WaitForWscService( 838 ) -> true, SCM OK wsc OK err 0
22/02/2015 17:12:08 [00000758] UpdateStatus AS OK status 0 sign 0
22/02/2015 17:12:08 [0000080C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 17:12:08 [0000080C] UpdateStatus AV OK status 0 sign 0
22/02/2015 17:12:08 [0000080C] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 17:12:08 [0000080C] UpdateStatus AS OK status 0 sign 0
22/02/2015 17:17:29 An error has occured while attempting to update. Please check the logs.
22/02/2015 18:43:51 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 18:43:51 [00000B9C] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 18:43:51 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 18:43:51 [00000BE8] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 18:43:53 [00000B9C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 18:43:54 [00000B9C] UpdateStatus AV OK status 0 sign 0
22/02/2015 18:43:54 [00000B9C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 18:43:54 [00000B9C] UpdateStatus AS OK status 0 sign 0
22/02/2015 18:43:54 [00000BE8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 18:43:54 [00000BE8] UpdateStatus AV OK status 0 sign 0
22/02/2015 18:43:54 [00000BE8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 18:43:54 [00000BE8] UpdateStatus AS OK status 0 sign 0
22/02/2015 19:08:05 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 19:08:05 [000004D0] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 19:08:05 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 19:08:05 [00000874] WriteAVASFirewallStat SignUpToDate 0 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 19:08:08 [000004D0] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:08:10 [000004D0] UpdateStatus AV OK status 0 sign 0
22/02/2015 19:08:10 [000004D0] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:08:10 [000004D0] UpdateStatus AS OK status 0 sign 0
22/02/2015 19:08:10 [00000874] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:08:10 [00000874] UpdateStatus AV OK status 0 sign 0
22/02/2015 19:08:10 [00000874] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:08:10 [00000874] UpdateStatus AS OK status 0 sign 0
22/02/2015 19:09:25 The virus definitions have been automatically updated to version 150221-0.
22/02/2015 19:09:30 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 19:09:30 [000010C8] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 19:09:30 [000010C8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:09:30 [000010C8] UpdateStatus AV OK status 0 sign 1
22/02/2015 19:09:30 [000010C8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:09:30 [000010C8] UpdateStatus AS OK status 0 sign 1
22/02/2015 19:19:31 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
22/02/2015 19:19:31 [000013B8] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
22/02/2015 19:19:31 [000013B8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:19:31 [000013B8] UpdateStatus AV OK status 0 sign 1
22/02/2015 19:19:31 [000013B8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
22/02/2015 19:19:31 [000013B8] UpdateStatus AS OK status 0 sign 1
23/02/2015 12:28:07 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
23/02/2015 12:28:07 [00000768] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
23/02/2015 12:28:10 [00000768] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
23/02/2015 12:28:10 [00000768] UpdateStatus AV OK status 0 sign 1
23/02/2015 12:28:10 [00000768] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
23/02/2015 12:28:10 [00000768] UpdateStatus AS OK status 0 sign 1
23/02/2015 12:28:56 The virus definitions have been automatically updated to version 150222-1.
23/02/2015 12:29:01 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
23/02/2015 12:29:01 [00001790] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
23/02/2015 12:29:01 [00001790] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
23/02/2015 12:29:01 [00001790] UpdateStatus AV OK status 0 sign 1
23/02/2015 12:29:01 [00001790] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
23/02/2015 12:29:01 [00001790] UpdateStatus AS OK status 0 sign 1
24/02/2015 00:42:39 The virus definitions have been automatically updated to version 150222-3.
24/02/2015 00:42:44 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
24/02/2015 00:42:44 [000018A8] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
24/02/2015 00:42:44 [000018A8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
24/02/2015 00:42:44 [000018A8] UpdateStatus AV OK status 0 sign 1
24/02/2015 00:42:44 [000018A8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
24/02/2015 00:42:44 [000018A8] UpdateStatus AS OK status 0 sign 1
24/02/2015 22:02:49 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
24/02/2015 22:02:49 [00000824] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
24/02/2015 22:02:51 [00000824] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
24/02/2015 22:02:51 [00000824] UpdateStatus AV OK status 0 sign 1
24/02/2015 22:02:51 [00000824] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
24/02/2015 22:02:51 [00000824] UpdateStatus AS OK status 0 sign 1
24/02/2015 22:03:41 The virus definitions have been automatically updated to version 150223-1.
24/02/2015 22:03:46 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
24/02/2015 22:03:46 [00001660] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
24/02/2015 22:03:46 [00001660] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
24/02/2015 22:03:46 [00001660] UpdateStatus AV OK status 0 sign 1
24/02/2015 22:03:46 [00001660] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
24/02/2015 22:03:46 [00001660] UpdateStatus AS OK status 0 sign 1
25/02/2015 23:05:39 The virus definitions have been automatically updated to version 150224-1.
25/02/2015 23:05:44 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
25/02/2015 23:05:44 [00001A84] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
25/02/2015 23:05:44 [00001A84] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
25/02/2015 23:05:45 [00001A84] UpdateStatus AV OK status 0 sign 1
25/02/2015 23:05:45 [00001A84] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
25/02/2015 23:05:45 [00001A84] UpdateStatus AS OK status 0 sign 1
27/02/2015 23:12:50 An error has occured while attempting to update. Please check the logs.
28/02/2015 17:03:39 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
28/02/2015 17:03:39 [00000C80] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
28/02/2015 17:03:40 [00000C80] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
28/02/2015 17:03:40 [00000C80] UpdateStatus AV OK status 0 sign 1
28/02/2015 17:03:40 [00000C80] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
28/02/2015 17:03:40 [00000C80] UpdateStatus AS OK status 0 sign 1
28/02/2015 17:04:31 The virus definitions have been automatically updated to version 150227-0.
28/02/2015 17:04:36 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
28/02/2015 17:04:36 [00001680] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
28/02/2015 17:04:36 [00001680] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
28/02/2015 17:04:36 [00001680] UpdateStatus AV OK status 0 sign 1
28/02/2015 17:04:36 [00001680] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
28/02/2015 17:04:36 [00001680] UpdateStatus AS OK status 0 sign 1
01/03/2015 11:05:58 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 11:05:58 [0000071C] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
01/03/2015 11:06:00 [0000071C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:06:00 [0000071C] UpdateStatus AV OK status 0 sign 1
01/03/2015 11:06:00 [0000071C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:06:00 [0000071C] UpdateStatus AS OK status 0 sign 1
01/03/2015 11:06:56 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 11:06:56 [000014DC] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 0
01/03/2015 11:06:56 [000014DC] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:06:56 [000014DC] UpdateStatus AV OK status 2 sign 1
01/03/2015 11:06:56 [000014DC] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:06:56 [000014DC] UpdateStatus AS OK status 2 sign 1
01/03/2015 11:08:15 The virus definitions have been automatically updated to version 150228-0.
01/03/2015 11:08:22 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 11:08:22 [000017B8] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 0
01/03/2015 11:08:22 [000017B8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:08:22 [000017B8] UpdateStatus AV OK status 2 sign 1
01/03/2015 11:08:22 [000017B8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:08:22 [000017B8] UpdateStatus AS OK status 2 sign 1
01/03/2015 11:14:23 VistaAux started /enable /av
01/03/2015 11:14:23 VistaAux Trying to start avast service
01/03/2015 11:14:23 VistaAux starting providers
01/03/2015 11:14:23 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 11:14:23 [00000AA8] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
01/03/2015 11:14:23 [00000AA8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:14:23 [00000AA8] UpdateStatus AV OK status 0 sign 1
01/03/2015 11:14:23 [00000AA8] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:14:23 [00000AA8] UpdateStatus AS OK status 0 sign 1
01/03/2015 11:26:35 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 11:26:35 [0000073C] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
01/03/2015 11:26:37 [0000073C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:26:37 [0000073C] UpdateStatus AV OK status 0 sign 1
01/03/2015 11:26:37 [0000073C] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 11:26:37 [0000073C] UpdateStatus AS OK status 0 sign 1
01/03/2015 20:56:34 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 20:56:34 [000007EC] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
01/03/2015 20:56:37 [000007EC] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 20:56:37 [000007EC] UpdateStatus AV OK status 0 sign 1
01/03/2015 20:56:37 [000007EC] WaitForWscService( 839 ) -> true, SCM OK wsc OK err 0
01/03/2015 20:56:37 [000007EC] UpdateStatus AS OK status 0 sign 1
01/03/2015 20:57:22 The virus definitions have been automatically updated to version 150228-1.
01/03/2015 20:57:27 Maj 6 Min 2 GetVersionEx 6.2 Stored 6.2
01/03/2015 20:57:27 [000015D4] WriteAVASFirewallStat SignUpToDate 1 preVis0 IsWin81 ExpPrg 0 Fw 0 Fs 1
01/03/2015 20:57:27 [000015D4] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 20:57:27 [000015D4] UpdateStatus AV OK status 0 sign 1
01/03/2015 20:57:27 [000015D4] WaitForWscService( 840 ) -> true, SCM OK wsc OK err 0
01/03/2015 20:57:27 [000015D4] UpdateStatus AS OK status 0 sign 1
01/03/2015 15:30:04 HttpDaemon conn closed
 
 
 
This is a picture of what i see when i click detailed report for the virus scan, on the infected file scan
 
This is a link to the detailed report for the some files could not be scanned one.
 
 
When I tried to run the original version of AdwCleaner it told me the database was corrupted. Even after redownloading it it keeps 
 
saying the same thing, and the same when tried to run it from the usb stick. Even after deleting the adwcleaner folder from C: I 
 
got the same popup.
 
 
Antimalware installed correctly, although it couldnt download any updates due to my internet access problems, i think it did update 
 
something when i tried to run the scan tho.
Here is the log:
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 04/03/2015
Scan Time: 23:24:37
Logfile: anti malware log.txt
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2014.11.20.06
Rootkit Database: v2015.02.25.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Dobby D
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 299538
Time Elapsed: 5 min, 36 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 1
Trojan.Agent, C:\Windows\Fonts\GlobalUserInterface.CompositeFont, Quarantined, [fdacc65c404a3bfb3efefa0b20e3817f], 
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
 
 
I let ESET online scanner run overnight. It detected 2 files.
Here is the log;
 
[email protected] as downloader log:
Can not extract cabC:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScanner.cabErr:The operation completed successfully.
[email protected] as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=06316b822a90e243b7536bdab2a5654a
# engine=22758
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-03-05 01:45:34
# local_time=2015-03-05 01:45:34 (+0000, GMT Standard Time)
# country="United Kingdom"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 71 90 1916072 10149145 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 888073 24483507 0 0
# scanned=213675
# found=2
# cleaned=0
# scan_time=7463
sh=812C8E84D0B76D7FCCF0A87EAD6B8EB44BC2C5D2 ft=1 fh=fa2f1d203bfb9aee vn="a variant of Win64/NetFilter.A potentially unsafe 
 
application" ac=I fn="C:\Program Files (x86)\ASUS\ROG Game First III\drivers\Driver\amd64\NFC_Driver.sys"
sh=B62FD5BC1AAFEE7128A30993F0396B578E3FEC18 ft=1 fh=2b65f41ee7ee5cf9 vn="a variant of Win32/NetFilter.A potentially unsafe 
 
application" ac=I fn="C:\Program Files (x86)\ASUS\ROG Game First III\drivers\Driver\i386\NFC_Driver.sys"

  • 0

#8
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Nothing of concern in the scans there.

Let's look at your settings.

 

51e15692b05a4-MiniToolbox.PNG Scan with MiniToolBox
 
Please download MiniToolBox by Farbar and save it to your desktop.

  • Right-click on 51e15692b05a4-MiniToolbox.PNG icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • In the main window please checkmark the following checkboxes:
    • Flush DNS;
    • Report IE Proxy Settings;
    • Reset IE Proxy Settings;
    • Report FF Proxy Settings;
    • Reset FF Proxy Settings;
    • List content of Hosts;
    • List IP configuration;
    • List Winsock Entries;
    • List last 10 Event Viewer log;
    • List Installed Programs;
    • List Devices (Only problems);
    • List Users, Partitions and Memory size;
    • List Minidump Files.
  • Click Go and wait patiently.
  • Upon completion (a reboot may be needed) a file called Result.txt will be saved on your desktop.

Please include the content of that file in your next reply.


  • 1

#9
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Sorry, double post


Edited by dobby200, 06 March 2015 - 01:20 PM.

  • 0

#10
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts
I notice the first few tick boxes were checking internet explorer and firefox settings. I am using Google chrome, i dont know if this program will pick up anything from that.
 
Here is the log:
 
 
MiniToolBox by Farbar  Version: 05-03-2015
Ran by Dobby D (administrator) on 06-03-2015 at 19:01:30
Running from "C:\Users\Dobby D\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Dual Band Wireless-AC 7260 = WiFi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Dobby-Laptop
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : lan
 
Wireless LAN adapter Local Area Connection* 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 28-B2-BD-10-20-BC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 38-2C-4A-EB-C6-8B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter WiFi:
 
   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Intel® Dual Band Wireless-AC 7260
   Physical Address. . . . . . . . . : 28-B2-BD-10-20-BB
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e039:8b60:71a:8248%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.94(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 06 March 2015 18:54:10
   Lease Expires . . . . . . . . . . : 07 March 2015 18:54:10
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 52998845
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-D0-02-B3-38-2C-4A-EB-C6-8B
   DNS Servers . . . . . . . . . . . : fe80::3291:8fff:fe2e:b572%3
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  dsldevice.lan
Address:  fe80::3291:8fff:fe2e:b572
 
Name:    google.com
Addresses:  2a00:1450:4009:800::200e
 212.56.71.39
 212.56.71.20
 212.56.71.55
 212.56.71.29
 212.56.71.45
 212.56.71.30
 212.56.71.24
 212.56.71.40
 212.56.71.35
 212.56.71.25
 212.56.71.49
 212.56.71.50
 212.56.71.44
 212.56.71.59
 212.56.71.54
 212.56.71.34
 
 
Pinging google.com [212.56.71.39] with 32 bytes of data:
Reply from 212.56.71.39: bytes=32 time=19ms TTL=59
Reply from 212.56.71.39: bytes=32 time=19ms TTL=59
 
Ping statistics for 212.56.71.39:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 19ms, Average = 19ms
Server:  dsldevice.lan
Address:  fe80::3291:8fff:fe2e:b572
 
Name:    yahoo.com
Addresses:  98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=136ms TTL=48
Reply from 98.138.253.109: bytes=32 time=135ms TTL=48
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 135ms, Maximum = 136ms, Average = 135ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...28 b2 bd 10 20 bc ......Microsoft Wi-Fi Direct Virtual Adapter
  4...38 2c 4a eb c6 8b ......Realtek PCIe GBE Family Controller
  3...28 b2 bd 10 20 bb ......Intel® Dual Band Wireless-AC 7260
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.94     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.94    281
     192.168.1.94  255.255.255.255         On-link      192.168.1.94    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.94    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.94    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.94    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  3    281 fe80::/64                On-link
  3    281 fe80::e039:8b60:71a:8248/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/05/2015 05:24:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/05/2015 05:24:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/05/2015 08:08:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/05/2015 01:49:04 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/05/2015 01:47:08 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/04/2015 11:36:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/04/2015 11:36:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/04/2015 11:36:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/04/2015 11:36:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
Error: (03/04/2015 11:02:52 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
 
 
System errors:
=============
Error: (03/06/2015 06:54:09 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Type with the following error: 
%%5
 
Error: (03/05/2015 01:46:57 AM) (Source: DCOM) (User: DOBBY-LAPTOP)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
 
Error: (03/05/2015 01:46:26 AM) (Source: DCOM) (User: DOBBY-LAPTOP)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
 
Error: (03/02/2015 04:32:42 AM) (Source: DCOM) (User: DOBBY-LAPTOP)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
 
Error: (03/02/2015 04:32:11 AM) (Source: DCOM) (User: DOBBY-LAPTOP)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
 
Error: (03/01/2015 08:56:37 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Type with the following error: 
%%5
 
Error: (03/01/2015 11:26:37 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Type with the following error: 
%%5
 
 
Microsoft Office Sessions:
=========================
Error: (03/05/2015 05:24:47 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/05/2015 05:24:43 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/05/2015 08:08:44 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
 
Error: (03/05/2015 01:49:04 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/05/2015 01:47:08 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
 
Error: (03/04/2015 11:36:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/04/2015 11:36:12 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/04/2015 11:36:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/04/2015 11:36:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/04/2015 11:02:52 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Dobby D\Desktop\esetsmartinstaller_enu.exe
 
 
 
=========================== Installed Programs ============================
A New Beginning - Final Cut (HKLM-x32\...\Steam App 105000) (Version:  - Daedalic Entertainment)
Alan Wake (HKLM-x32\...\Steam App 108710) (Version:  - Remedy Entertainment)
Antichamber (HKLM-x32\...\Steam App 219890) (Version:  - Alexander Bruce)
ASUS Gaming Center (HKLM-x32\...\{23C8A788-4790-4F3C-B103-0ACC7D9DC5BE}) (Version: 1.0.2 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.9 - ASUS)
ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
ASUS ROG MacroKey (HKLM-x32\...\{348022C5-F497-4333-AFEE-208F22F169F2}_is1) (Version: 1.0.0.28 - G-spy Co., Ltd)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.0.1 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Back to the Future - The Game (HKLM-x32\...\1207659097_is1) (Version: 2.1.0.5 - GOG.com)
Bastion (HKLM-x32\...\Steam App 107100) (Version:  - Supergiant Games)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Beneath a Steel Sky (HKLM-x32\...\GOGPACKBENEATH_is1) (Version: 2.0.0.9 - GOG.com)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink MediaStory (x32 Version: 1.0.1314 - CyberLink Corp.) Hidden
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Deponia (HKLM-x32\...\Steam App 214340) (Version:  - Daedalic Entertainment)
Deus Ex GOTY (HKLM-x32\...\GOGPACKDEUSEX_is1) (Version: 2.0.0.11 - GOG.com)
Dropbox (HKCU\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
Dungeon Keeper 2 (HKLM-x32\...\GOGPACKDUNGEONKEEPER2_is1) (Version: 2.0.0.32 - GOG.com)
Dungeon Keeper Gold (HKLM-x32\...\GOGPACKDUNGEONKEEPER_is1) (Version: 2.0.0.4 - GOG.com)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
ETDWare PS/2-X64 11.5.13.9_WHQL (HKLM\...\Elantech) (Version: 11.5.13.9 - ELAN Microelectronic Corp.)
Flight of the Amazon Queen (HKLM-x32\...\GOGPACKFLIGHTOFTHEAMAZONQUEEN_is1) (Version: 2.0.0.4 - GOG.com)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
Game Explorer Categories - casual (HKLM-x32\...\WildTangentGameProvider-asus-casual) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - enthusiast (HKLM-x32\...\WildTangentGameProvider-asus-enthusiast) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - family (HKLM-x32\...\WildTangentGameProvider-asus-family) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - kids (HKLM-x32\...\WildTangentGameProvider-asus-kids) (Version: 3.2.0.6 - WildTangent, Inc.)
Game Explorer Categories - touch (HKLM-x32\...\WildTangentGameProvider-asus-touch) (Version: 3.2.0.6 - WildTangent, Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.1.1 - Genesys Logic)
GOG.com Dungeon Keeper 2 (HKLM\...\{b6462b67-caf5-4a74-99df-cc2811bd1957}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Half-Life (HKLM-x32\...\Steam App 70) (Version:  - Valve)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Hydrophobia: Prophecy (HKLM-x32\...\Steam App 92000) (Version:  - Dark Energy Digital Ltd.)
Indiana Jones and the Fate of Atlantis (HKLM-x32\...\Steam App 6010) (Version:  - LucasArts)
Indiana Jones and the Last Crusade (HKLM-x32\...\Steam App 32310) (Version:  - LucasArts)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1016 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.6.0.1038 - Intel Corporation)
Intel® PRO/Wireless Driver (Version: 17.00.5000.1609 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 17.0.5.0389 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.169.1 - Intel Corporation) Hidden
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.31.13 - Oracle Corporation) Hidden
Lego Harry Potter (HKLM-x32\...\Steam App 21130) (Version:  - TT Games)
LEGO Lord of the Rings (HKLM-x32\...\Steam App 214510) (Version:  - Traveller's Tales)
LEGO MARVEL Super Heroes (HKLM-x32\...\Steam App 249130) (Version:  - Traveller's Tales)
LIMBO (HKLM-x32\...\Steam App 48000) (Version:  - Playdead)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Monkey Island 2: Special Edition (HKLM-x32\...\Steam App 32460) (Version:  - LucasArts)
NVIDIA 3D Vision Driver 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.00 - NVIDIA Corporation)
NVIDIA Control Panel 344.00 (Version: 344.00 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.21 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.00 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.162.1264 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Miracast Virtual Audio 344.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.00 - NVIDIA Corporation)
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.13.21 (Version: 16.13.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 16.13.21 (Version: 16.13.21 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.13.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.25 (Version: 1.2.25 - NVIDIA Corporation) Hidden
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Prince of Persia: The Sands of Time (HKLM-x32\...\Steam App 13600) (Version:  - Kudosoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
ROG Game First III (HKLM-x32\...\{0C6E32E1-31D9-49F1-B67F-2941994002D5}) (Version: 1.00.16 - ASUSTeK Computer Inc.)
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.21 - NVIDIA Corporation) Hidden
Simon the Sorcerer (HKLM-x32\...\GOGPACKSIMON1_is1) (Version: 2.0.0.18 - GOG.com)
Spore (HKLM-x32\...\Steam App 17390) (Version:  - Maxis™)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Syberia (HKLM-x32\...\Steam App 46500) (Version:  - Anuman)
Syberia 2 (HKLM-x32\...\Steam App 46510) (Version:  - Anuman / Microids)
System Requirements Lab Detection (HKLM-x32\...\{036D1036-3F8C-465A-82A6-300F307A04CC}) (Version: 6.1.1.0 - Husdawg, LLC)
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
The Book of Unwritten Tales (HKLM-x32\...\Steam App 215160) (Version:  - KING Art)
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM-x32\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Journey Down: Chapter One (HKLM-x32\...\Steam App 220090) (Version:  - SkyGoblin)
The Secret of Monkey Island: Special Edition (HKLM-x32\...\Steam App 32360) (Version:  - LucasArts)
The Simpsons Hit & Run™ (HKLM-x32\...\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}) (Version: 1.00.000 - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Whispered World Special Edition (HKLM-x32\...\Steam App 268540) (Version:  - Daedalic Entertainment)
Thomas Was Alone (HKLM-x32\...\Steam App 220780) (Version:  - Mike Bithell)
Thunderbolt™ Software (HKLM\...\{BED2816F-D47A-41DA-AFCF-44E1B257C368}) (Version: 2.0.4.250 - Intel® Corporation)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Uplink (HKLM-x32\...\Steam App 1510) (Version:  - Introversion Software)
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
Warhammer 40,000: Dawn of War – Winter Assault (HKLM-x32\...\Steam App 9310) (Version:  - Relic Entertainment)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.2 - WildTangent)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 9%
Total physical RAM: 16333.11 MB
Available physical RAM: 14806.43 MB
Total Pagefile: 18765.11 MB
Available Pagefile: 17213.38 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.11 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:107.02 GB) (Free:39.62 GB) NTFS
2 Drive d: (Games) (Fixed) (Total:465.75 GB) (Free:345.18 GB) NTFS
3 Drive e: (media) (Fixed) (Total:465.76 GB) (Free:387.21 GB) NTFS
4 Drive f: (Hit & Run 1) (CDROM) (Total:0.66 GB) (Free:0 GB) CDFS
5 Drive g: () (Removable) (Total:3.98 GB) (Free:2.6 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\DOBBY-LAPTOP
 
Administrator            Dobby D                  Guest                    
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****

  • 0

Advertisements


#11
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts
That's ok, chrome uses the same settings as IE so when the proxy server settings etc are reset, chrome uses them too.

Is there any change now? Also can you try downloading using IE to see if the problem shows there as well please.

If not we can reset Chrome seperately.
  • 0

#12
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Now when i use internet explorer i frequently get "This page cannot be displayed", or just a mass of code looking text.

Ocasionally i get through to a website, but any page i navigate to does one of those two options when trying to navigating through it.

 

In chrome some pages dont load, but some load so that i can see the page, but the navigation bar constantly says that it is still loading. Facebook which always seems to load new content sometimes doesnt show anything, sometimes only loads some content.

 

Downloads now work in firefox. I can download pictures in both brousers, downloads dont work in IE


  • 0

#13
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Hmm, this is an interesting one.

 

Let's run Windows repair to see if it picks up anything.

Windows Repair AIO
Please download Windows Repair All in One from here and save it to your flash drive.

The download will be in zip format so unzip the file by right clicking and selecting Extract all.

Click Next to go through the unzipping procedure and when finished it will ask if you want to show extracted files.

Click YES and it will show you a folder called Tweaking.com - Windows Repair.

Go into this folder and double click on aio.pngRepair_Windows.exe.

Click the tab named Repairs , then Open Repairs. A box will warn you that you haven't created a restore point or registry backup. Click Yes and let it go through the backup procedure. You may have to click Start again when finished.


Leave the default options, but ensure the following are ticked.

  •  

     

  • Repair Windows Firewall
  • Repair Internet Explorer
  • Register System Files
  • Repair Winsock and DNS Cache
  • Remove temp files
  • Repair Proxy Settings
  • Restart/Shutdown System When Finished (lower right) box.
  • Restart System (Immediately below Restart/Shutdown)

Next, Click the Start Repairs button to continue.

When the system has rebooted, See how it is behaving. and let me know please.
 

 


  • 1

#14
dobby200

dobby200

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

The first time i ran the tool I saw a few images loaded like this;

 

http://oi57.tinypic.com/11htl6r.jpg

Also You tube videos were regularly stopping because of errors.

 

 

I have now run the tool a second time (after completely draining the battery before) so far everything seems to be working normally now.


Edited by dobby200, 11 March 2015 - 09:34 AM.

  • 0

#15
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

Excellent. Let's clean up the tools.
Monitor it for 24 hours or so and feel free to come back if there are any problems.
 
Good news, it looks like your system is now clean. A good workman cleans up after himself so let's now attend to that :D

Tool Removal

We need to remove the tools we've used during cleaning your machine

  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Activate UAC
    • Create registry backup
    • Purge system restore
    • Reset System Settings
    delfix-select.png
  • Click Run
  • The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply

    We need to uninstall a program
    Open Programs and Features by clicking the Start button, clicking Control Panel, clicking Programs, and then clicking Programs and Features.
    Select the following programs from the list below, one at a time and click Uninstall.
    • ESET Online Scanner
    Delete the following Files and Folders (If Present):
    C:\Program Files (x86)\ESET
    Delete any other .bat, .log, .reg, .txt, and any other files created during this process, and left on the desktop and empty the Recycle Bin.



    Keep your machine updated

    Due to the ever-present tide of malware, it is important to ensure your computer is kept up-to-date to minimize the risk of future infection. An important step is to ensure that automatic updates are enabled.


    To enable automatic updates:

    Windows 8
    To turn on Automatic Updates yourself, follow these steps:
    • Open Windows Update by swiping in from the right edge of the screen (or, if you're using a mouse, pointing to the bottom-right corner of the screen and moving the mouse pointer up), tapping or clicking Settings, tapping or clicking Change PC settings, then tapping or clicking Update and recovery.
    • Tap or click Choose how updates are installed.
    • Select the option that you want.
    • Under Recommended updates, select the Give me recommended updates the same way I receive important updates or Include recommended updates when downloading, installing, or notifying me about updates check box, and then click OK.
    It is recommended to install an anti-malware to help prevent reinfection.
    Below are some free ones that can help keep you clean.

    Malwarebytes AntiMalware

    As you have installed Malwarebytes, I recommend that you keep this program and use it to help you stay clean.

    The free version will scan your computer and fix the problems it finds but will not provide real-time protection. You must scan regularly to find any threats.
    Consider purchasing the full version for active monitoring of threats.
    JAVA Advice
    WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
    See this article and this article.
    I would recommend that you completely uninstall Java unless you need it to run an important software or need it to play games on-line.
    In that instance I would recommend that you only use Firefox or Chrome to visit those sites and do the following:
    • For Firefox, install the NoScript add-on.
    • For Chrome, install the ScriptSafe add-on.
      -->IMPORTANT<--: After installing the add-ons you will need to tell them that the site you are visiting is allowed to run Javascript. If you don't, the sites won't work properly. Or not at all. You can go to the NoScript home page here to learn how to use the add-on.
    • Disable Java in your browsers until you need it for that software and then enable it. (See How to disable Java in your web browser or How to unplug Java from the browser)
    If you still want to update your Java, follow the instructions below:

    A.
    Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system. Please follow these steps to remove older versions of Java components and update:
    • Download the latest version of the Java Runtime Environment (JRE) Version from Here and save it to your desktop.
    • Look for "Java Platform, Standard Edition". You will see the current Java version and update number under listed under the heading. Example: The newest update is Java SE 8u25
    • Click the "Download button under "JRE".
    • On the Java SE Runtime Environment page, click the button to "Accept License Agreement".
    • Under the Java SE Runtime Environment 8u25 heading:
      To install the version for your system:
      • For Windows 64bit systems, look for Windows x64 - 88.37MB, click the jre-8u25-windows-64.exe file and save it to your desktop. Do Not run it from the Java site.
    • Close any programs you may have running - especially your web browser.
    B.
    Uninstall all versions of Java
    • Click Start > Control Panel > Add/Remove Programs. The list of installed programs will populate.
    • Click the Start Orb, then Control Panel. Under the Programs or Programs and Features section click Uninstall a program. The list of installed programs will populate.
    • Remove all older versions of Java. These may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE or J2SE
      The versions I see on the computer are:
      • Java 7 Update
      • Java 8 (64-bit)
      • Java SE Development Kit 8
    • Right click each program and click Uninstall and follow the on screen instructions for the Java uninstaller.
    • Repeat as many times as necessary to remove each Java version.
    • Reboot your computer once all Java components are removed.
    C.
    Install the latest JAVA

    Back on your desktop:
    • Right click the  jre-8u25-windows-x64.exe file, click Run as Administrator and OK the UAC prompt to install the newest version.
    • When the Java Setup - Welcome window opens, click the Install > button.
    • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
    [Note:] The Java Quick Starter (JQS.exe) adds a service to improve the initial start up time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > You will have to be in Classic View to see Java(It looks like a coffee cup). Double-click on Java click the Advanced Tab click Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.

    Update Adobe Flash Player

    NOTE: Depending on your settings, you may have to temporarily disable your antivirus software and firewall.
    • Please click here to go to the FlashPlayer Installation page.
    • In the first column, Adobe Flash Player, make sure the system version (64bit) and the browser are correct.
      • Note: If you use IE and other browsers you will need to install both Flash Player for IE and Flash Player for Other Browsers.
    • In the middle column, Optional offer:, UNCHECK the box next to Yes, install free McAfee Security Scan Plus
    • Click the Install now button. A download window for the install_flashplayer15x64_mssd_aaa_aih.exe file will open. Save it to the desktop.
    • Close the browser and all open windows.
    • Back on the desktop, right click the install_flashplayer15x64_mssd_aaa_aih.exe file and click Run as Administrator to install Flash Player.
    Cryptolocker Warning
    Go here for information about CryptoLocker Ransomeware.
    The main thing with this infection is ~ Backup.
    If you're using an external hard drive, keep it unplugged from the computer when you're not backing up files or using it. This will prevent the infection from getting to your backed up files if you ever do come across it.

    Recommended Programs
    Unchecky is a small service that runs in the background to help keep those "extra toolbars" and tag along search engines from automatically installing. By automatically directing you to a custom install with all the options unchecked, only what you manually choose and confirm gets installed.
    CryptoPrevent is a free program that prevents CryptoLocker / ransomware from infecting your PC by locking down the OS so the malware can not get a grip on your system.
    Web Of Trust is a browser add-on designed to alert the user before interacting with a potentially malicious website. It will highlight green if a site is known to be safe.

    Adblock is a firefox browser add-on that blocks annoying banners, pop-ups and video ads.

    General Advice
    • When browsing the internet, look closely at the links you click on. Some aren't always what they seem
    • Avoid Peer to Peer file sharing utilities, these are a minefield of malware infections.
    • Don't open email attachments unless you are expecting them. Even an email from your best friend can be infected, they might not have sent it.
    • Pay attention when installing a program to your computer, particularly to any check boxes that may appear during installation, it is common for unwanted software to be installed in this way.

  • 1






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP