Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-02-2013 01 Ran by SYSTEM at 19-02-2013 22:58:03 Running from D:\ Windows 7 Ultimate (X86) OS Language: The current controlset is ControlSet001 ==================== Registry (Whitelisted) =================== HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" [887976 2011-07-30] (Ask) HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-28] (Apple Inc.) HKLM\...\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN [1150976 2009-01-19] (Brother Industries, Ltd.) HKLM\...\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun [114688 2009-01-09] (Brother Industries, Ltd.) HKLM\...\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [152544 2012-12-12] (Apple Inc.) HKLM\...\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe" [119152 2010-05-20] (Microsoft Corporation) HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [947176 2012-09-12] (Microsoft Corporation) HKLM\...\Run: [VX3000] C:\Windows\vVX3000.exe [762736 2010-05-20] (Microsoft Corporation) HKU\John Daniel\...\Run: [AROReminder] C:\Program Files\ARO 2011\ARO.exe -rem [2312048 2011-01-25] (Support.com) HKU\John Daniel\...\Run: [BIBLauncher] C:\Program Files\Business-in-a-Box\BIBLauncher.exe [913888 2012-02-06] () HKU\John Daniel\...\Run: [cdloader] "C:\Users\John Daniel\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK [50592 2012-02-01] (magicJack L.P.) HKU\John Daniel\...\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun [17888944 2012-11-09] (Skype Technologies S.A.) HKU\John Daniel\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-09-21] (Google Inc.) Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 ==================== Services (Whitelisted) =================== 2 Skype C2C Service; "C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [3289208 2013-01-31] (Skype Technologies S.A.) 2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x] 3 NisSrv; "c:\Program Files\Microsoft Security Client\NisSrv.exe" [x] 3 WPFFontCache_v0400; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [x] ==================== Drivers (Whitelisted) ==================== 0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [193552 2012-08-31] (Microsoft Corporation) 3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [x] 3 Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [x] 3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [x] 3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [x] 3 VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-02-19 22:58 - 2013-02-19 22:58 - 00000000 ____D C:\FRST 2013-02-19 21:36 - 2013-02-19 21:37 - 00000000 ____D C:\Windows\System32\config\mybackup 2013-02-15 01:32 - 2013-02-19 03:41 - 00000000 ____D C:\Windows\System32\SPReview 2013-02-15 01:30 - 2013-02-19 21:01 - 00000000 ____D C:\8dae3720cf455c11d3837d49a69d 2013-02-14 01:53 - 2013-02-14 23:56 - 00005571 ____A C:\Windows\setupact.log 2013-02-14 01:53 - 2013-02-14 01:53 - 00000000 ____A C:\Windows\setuperr.log 2013-02-11 01:57 - 2012-12-16 21:03 - 65273848 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-02-09 20:33 - 2012-12-16 14:25 - 00295424 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll 2013-02-09 20:33 - 2012-12-16 14:25 - 00034304 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll 2013-02-09 20:30 - 2009-09-10 05:52 - 00257024 ____A (Microsoft Corporation) C:\Windows\System32\msv1_0.dll 2013-02-09 20:20 - 2013-02-09 20:20 - 00000000 ____D C:\Windows\System32\x64 2013-02-09 20:20 - 2009-09-23 23:30 - 01002008 ____A (Intel Corporation) C:\Windows\System32\igxpun.exe 2013-02-09 19:59 - 2012-07-26 03:39 - 00526952 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys 2013-02-09 19:59 - 2012-07-26 03:39 - 00047720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys 2013-02-09 19:59 - 2012-07-26 02:46 - 00009728 ____A (Microsoft Corporation) C:\Windows\System32\Wdfres.dll 2013-02-09 19:59 - 2012-06-02 14:34 - 00000003 ____A C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2013-02-09 19:58 - 2012-07-26 03:21 - 00196608 ____A (Microsoft Corporation) C:\Windows\System32\WUDFHost.exe 2013-02-09 19:58 - 2012-07-26 03:20 - 00613888 ____A (Microsoft Corporation) C:\Windows\System32\WUDFx.dll 2013-02-09 19:58 - 2012-07-26 03:20 - 00172032 ____A (Microsoft Corporation) C:\Windows\System32\WUDFPlatform.dll 2013-02-09 19:58 - 2012-07-26 03:20 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\WUDFSvc.dll 2013-02-09 19:58 - 2012-07-26 03:20 - 00038912 ____A (Microsoft Corporation) C:\Windows\System32\WUDFCoinstaller.dll 2013-02-09 19:58 - 2012-07-26 02:33 - 00066560 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys 2013-02-09 19:58 - 2012-07-26 02:32 - 00155136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys 2013-02-09 19:58 - 2012-06-02 14:57 - 00000003 ____A C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2013-02-09 19:57 - 2012-03-01 05:53 - 00019312 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys 2013-02-09 19:57 - 2012-03-01 05:49 - 00172544 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll 2013-02-09 19:57 - 2012-03-01 05:45 - 00158720 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll 2013-02-09 19:57 - 2012-03-01 05:40 - 00005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll 2013-02-09 19:50 - 2010-03-04 03:57 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys 2013-02-09 19:49 - 2010-09-14 06:07 - 00276992 ____A (Microsoft Corporation) C:\Windows\System32\wcncsvc.dll 2013-02-09 19:47 - 2012-11-30 05:06 - 00169984 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll 2013-02-09 19:47 - 2012-11-30 05:00 - 00868352 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll 2013-02-09 19:47 - 2012-11-30 05:00 - 00293376 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 04:56 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 03:07 - 00271360 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe 2013-02-09 19:47 - 2012-11-30 02:51 - 00006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 02:51 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 02:51 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll 2013-02-09 19:47 - 2012-11-30 02:51 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll 2013-02-09 19:47 - 2012-11-29 23:21 - 00420032 ____A C:\Windows\System32\locale.nls 2013-02-09 19:45 - 2012-06-02 04:45 - 01157632 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-02-09 19:45 - 2012-06-02 04:45 - 00139264 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-02-09 19:45 - 2012-06-02 04:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-02-09 19:44 - 2012-11-20 05:10 - 00219136 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll 2013-02-09 19:44 - 2012-11-09 04:49 - 00492032 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-02-09 19:44 - 2011-11-17 05:39 - 00314368 ____A (Microsoft Corporation) C:\Windows\System32\webio.dll 2013-02-09 19:44 - 2011-11-17 05:39 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\sspicli.dll 2013-02-09 19:44 - 2011-11-17 05:39 - 00022016 ____A (Microsoft Corporation) C:\Windows\System32\secur32.dll 2013-02-09 19:44 - 2011-11-17 05:39 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\sspisrv.dll 2013-02-09 19:44 - 2011-11-17 05:38 - 01037312 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll 2013-02-09 19:44 - 2011-11-17 05:36 - 00022528 ____A (Microsoft Corporation) C:\Windows\System32\lsass.exe 2013-02-09 19:44 - 2011-04-27 02:33 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys 2013-02-09 19:44 - 2010-08-21 05:36 - 00738816 ____A (Microsoft Corporation) C:\Windows\System32\wmpmde.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00091648 ____A (Microsoft Corporation) C:\Windows\System32\avifil32.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00084480 ____A (Microsoft Corporation) C:\Windows\System32\mciavi32.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00050176 ____A (Microsoft Corporation) C:\Windows\System32\iyuv_32.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00031744 ____A (Microsoft Corporation) C:\Windows\System32\msvidc32.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00022016 ____A (Microsoft Corporation) C:\Windows\System32\msyuv.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\msrle32.dll 2013-02-09 19:44 - 2009-12-19 09:02 - 00012288 ____A (Microsoft Corporation) C:\Windows\System32\tsbyuv.dll 2013-02-09 19:44 - 2009-12-08 11:32 - 00292864 ____A (Microsoft Corporation) C:\Windows\System32\apphelp.dll 2013-02-09 19:44 - 2009-08-29 06:57 - 00034816 ____A (Microsoft Corporation) C:\Windows\System32\msasn1.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 01230848 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00981504 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00627200 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00606208 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00132096 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00067584 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-02-09 19:43 - 2012-10-27 05:00 - 00064512 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 11019776 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 02072576 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 00381440 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 00185856 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 00048128 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-02-09 19:43 - 2012-10-27 04:59 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-02-09 19:43 - 2012-10-27 04:57 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-02-09 19:43 - 2012-10-27 03:52 - 00386048 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-02-09 19:43 - 2012-05-05 07:44 - 00400896 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll 2013-02-09 19:43 - 2012-03-30 10:29 - 01287024 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-02-09 19:43 - 2012-03-03 05:40 - 01170944 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll 2013-02-09 19:43 - 2012-03-03 05:40 - 01074176 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll 2013-02-09 19:43 - 2012-03-03 05:40 - 00739840 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll 2013-02-09 19:43 - 2012-03-03 05:40 - 00218624 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll 2013-02-09 19:43 - 2012-03-03 05:40 - 00161792 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll 2013-02-09 19:43 - 2012-01-04 09:03 - 12868096 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll 2013-02-09 19:43 - 2012-01-04 09:03 - 00442880 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll 2013-02-09 19:43 - 2011-03-12 11:31 - 00442880 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00350720 ____A (Microsoft Corporation) C:\Windows\System32\winhttp.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00204800 ____A (Microsoft Corporation) C:\Windows\System32\WebClnt.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00204288 ____A (Microsoft Corporation) C:\Windows\System32\upnp.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00073728 ____A (Microsoft Corporation) C:\Windows\System32\wscsvc.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\wscapi.dll 2013-02-09 19:43 - 2010-12-21 05:38 - 00014336 ____A (Microsoft Corporation) C:\Windows\System32\slwga.dll 2013-02-09 19:43 - 2010-12-21 05:34 - 00080384 ____A (Microsoft Corporation) C:\Windows\System32\davclnt.dll 2013-02-09 19:42 - 2012-08-10 23:54 - 00541184 ____A (Microsoft Corporation) C:\Windows\System32\kerberos.dll 2013-02-09 19:42 - 2011-07-09 02:26 - 00222720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys 2013-02-09 19:42 - 2011-06-16 04:35 - 00180224 ____A (Microsoft Corporation) C:\Windows\System32\xmllite.dll 2013-02-09 19:42 - 2011-05-04 04:53 - 01553920 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll 2013-02-09 19:42 - 2011-05-04 04:52 - 01401856 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll 2013-02-09 19:42 - 2011-05-04 04:52 - 00666624 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll 2013-02-09 19:42 - 2011-05-04 04:52 - 00428032 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe 2013-02-09 19:42 - 2011-05-04 04:52 - 00337408 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll 2013-02-09 19:42 - 2011-05-04 04:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll 2013-02-09 19:42 - 2011-05-04 04:52 - 00164352 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe 2013-02-09 19:42 - 2011-05-04 04:52 - 00086528 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe 2013-02-09 19:42 - 2011-05-04 04:52 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll 2013-02-09 19:42 - 2011-05-04 02:43 - 00123392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys 2013-02-09 19:42 - 2011-05-04 02:43 - 00096256 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys 2013-02-09 19:42 - 2011-02-24 05:32 - 00288256 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll 2013-02-09 19:42 - 2010-08-04 06:17 - 00417792 ____A (Microsoft Corporation) C:\Windows\System32\msdri.dll 2013-02-09 19:42 - 2009-09-03 07:04 - 01320960 ____A (Microsoft Corporation) C:\Windows\System32\CertEnroll.dll 2013-02-09 19:42 - 2009-08-19 07:20 - 00507568 ____A (Microsoft Corporation) C:\Windows\System32\winload.exe 2013-02-09 19:42 - 2009-08-19 07:20 - 00442920 ____A (Microsoft Corporation) C:\Windows\System32\winresume.exe 2013-02-09 19:41 - 2013-01-04 18:11 - 06029824 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-02-09 19:41 - 2012-11-23 03:06 - 02344960 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2013-02-09 19:41 - 2012-08-30 17:18 - 03958128 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe 2013-02-09 19:41 - 2012-08-30 17:18 - 03902832 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe 2013-02-09 19:41 - 2012-06-06 05:09 - 01236992 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll 2013-02-09 19:41 - 2012-06-02 04:51 - 00134000 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys 2013-02-09 19:41 - 2012-06-02 04:51 - 00067440 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys 2013-02-09 19:41 - 2012-06-02 04:50 - 00369336 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys 2013-02-09 19:41 - 2012-06-02 04:48 - 00225280 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll 2013-02-09 19:41 - 2012-04-28 03:19 - 00177152 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys 2013-02-09 19:41 - 2012-02-15 05:44 - 00826368 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll 2013-02-09 19:41 - 2012-02-15 04:22 - 00024064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys 2013-02-09 19:41 - 2011-10-26 04:28 - 01328640 ____A (Microsoft Corporation) C:\Windows\System32\quartz.dll 2013-02-09 19:41 - 2011-10-26 04:28 - 00514560 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll 2013-02-09 19:41 - 2011-04-29 02:57 - 00311296 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys 2013-02-09 19:41 - 2011-04-29 02:57 - 00309760 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys 2013-02-09 19:41 - 2011-04-29 02:57 - 00114176 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys 2013-02-09 19:41 - 2011-03-11 05:40 - 01164288 ____A (Microsoft Corporation) C:\Windows\System32\mfc42u.dll 2013-02-09 19:41 - 2011-03-11 05:40 - 01137664 ____A (Microsoft Corporation) C:\Windows\System32\mfc42.dll 2013-02-09 19:41 - 2010-12-23 05:28 - 00850432 ____A (Microsoft Corporation) C:\Windows\System32\sbe.dll 2013-02-09 19:41 - 2010-12-23 05:28 - 00642048 ____A (Microsoft Corporation) C:\Windows\System32\CPFilters.dll 2013-02-09 19:41 - 2010-12-23 05:24 - 00199680 ____A (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax 2013-02-09 19:41 - 2010-11-04 04:08 - 01638912 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-02-09 19:41 - 2010-11-02 04:41 - 00351232 ____A (Microsoft Corporation) C:\Windows\System32\wmicmiplugin.dll 2013-02-09 19:41 - 2010-11-02 04:40 - 00496128 ____A (Microsoft Corporation) C:\Windows\System32\taskschd.dll 2013-02-09 19:41 - 2010-11-02 04:40 - 00305152 ____A (Microsoft Corporation) C:\Windows\System32\taskcomp.dll 2013-02-09 19:41 - 2010-11-02 04:39 - 00749056 ____A (Microsoft Corporation) C:\Windows\System32\schedsvc.dll 2013-02-09 19:41 - 2010-11-02 04:34 - 00192000 ____A (Microsoft Corporation) C:\Windows\System32\taskeng.exe 2013-02-09 19:41 - 2010-11-02 04:34 - 00179712 ____A (Microsoft Corporation) C:\Windows\System32\schtasks.exe 2013-02-09 19:41 - 2010-08-31 04:32 - 00954752 ____A (Microsoft Corporation) C:\Windows\System32\mfc40.dll 2013-02-09 19:41 - 2010-08-31 04:32 - 00954288 ____A (Microsoft Corporation) C:\Windows\System32\mfc40u.dll 2013-02-09 19:40 - 2012-08-31 17:21 - 01210736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys 2013-02-09 19:40 - 2012-05-02 04:52 - 00163328 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll 2013-02-09 19:40 - 2012-02-11 05:41 - 00316928 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe 2013-02-09 19:40 - 2011-08-27 04:43 - 00571904 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll 2013-02-09 19:40 - 2011-08-27 04:43 - 00233472 ____A (Microsoft Corporation) C:\Windows\System32\oleacc.dll 2013-02-09 19:40 - 2011-06-15 09:04 - 00319488 ____A (Microsoft Corporation) C:\Windows\System32\odbcjt32.dll 2013-02-09 19:40 - 2011-06-15 09:04 - 00163840 ____A (Microsoft Corporation) C:\Windows\System32\odbctrac.dll 2013-02-09 19:40 - 2011-06-15 09:04 - 00122880 ____A (Microsoft Corporation) C:\Windows\System32\odbccp32.dll 2013-02-09 19:40 - 2011-06-15 09:04 - 00086016 ____A (Microsoft Corporation) C:\Windows\System32\odbccu32.dll 2013-02-09 19:40 - 2011-06-15 09:04 - 00081920 ____A (Microsoft Corporation) C:\Windows\System32\odbccr32.dll 2013-02-09 19:40 - 2011-04-25 02:35 - 00338944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys 2013-02-09 19:40 - 2011-02-26 05:33 - 02614784 ____A (Microsoft Corporation) C:\Windows\explorer.exe 2013-02-09 19:40 - 2010-12-18 05:30 - 02690560 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll 2013-02-09 19:40 - 2010-12-18 05:26 - 01034240 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe 2013-02-09 19:40 - 2010-09-01 04:29 - 11406848 ____A (Microsoft Corporation) C:\Windows\System32\wmp.dll 2013-02-09 19:40 - 2010-09-01 04:23 - 12625408 ____A (Microsoft Corporation) C:\Windows\System32\wmploc.DLL 2013-02-09 19:40 - 2010-08-27 05:46 - 00168448 ____A (Microsoft Corporation) C:\Windows\System32\srvsvc.dll 2013-02-09 19:40 - 2010-01-18 23:29 - 00369152 ____A (Microsoft Corporation) C:\Windows\System32\secproc.dll 2013-02-09 19:40 - 2010-01-18 23:29 - 00365568 ____A (Microsoft Corporation) C:\Windows\System32\secproc_isv.dll 2013-02-09 19:40 - 2010-01-18 23:29 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\secproc_ssp_isv.dll 2013-02-09 19:40 - 2010-01-18 23:29 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\secproc_ssp.dll 2013-02-09 19:40 - 2010-01-18 23:28 - 00324608 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_isv.exe 2013-02-09 19:40 - 2010-01-18 23:28 - 00320512 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate.exe 2013-02-09 19:40 - 2010-01-18 23:28 - 00280064 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp.exe 2013-02-09 19:40 - 2010-01-18 23:28 - 00277504 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp_isv.exe 2013-02-09 19:40 - 2009-10-28 06:17 - 00285696 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe 2013-02-09 19:39 - 2012-11-02 04:50 - 01388544 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll 2013-02-09 19:39 - 2012-04-17 04:45 - 00716800 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-02-09 19:39 - 2011-11-17 05:41 - 01288984 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll 2013-02-09 19:39 - 2011-10-15 05:48 - 00534528 ____A (Microsoft Corporation) C:\Windows\System32\EncDec.dll 2013-02-09 19:39 - 2011-04-09 05:56 - 00123904 ____A (Microsoft Corporation) C:\Windows\System32\poqexec.exe 2013-02-09 19:39 - 2011-03-03 05:29 - 00269824 ____A (Microsoft Corporation) C:\Windows\System32\dnsapi.dll 2013-02-09 19:39 - 2011-03-03 05:29 - 00132608 ____A (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll 2013-02-09 19:39 - 2011-03-03 05:27 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe 2013-02-09 19:39 - 2011-02-23 05:05 - 00069632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys 2013-02-09 19:39 - 2010-06-29 05:02 - 01413632 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll 2013-02-09 19:38 - 2012-05-14 04:37 - 00768512 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll 2013-02-09 19:38 - 2012-04-26 04:43 - 00008192 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe 2013-02-09 19:38 - 2011-12-16 07:59 - 00690688 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll 2013-02-09 19:38 - 2011-08-17 04:26 - 00465408 ____A (Microsoft Corporation) C:\Windows\System32\psisdecd.dll 2013-02-09 19:38 - 2011-08-17 04:22 - 00204288 ____A (Microsoft Corporation) C:\Windows\System32\MSNP.ax 2013-02-09 19:38 - 2011-08-17 04:22 - 00075776 ____A (Microsoft Corporation) C:\Windows\System32\psisrndr.ax 2013-02-09 19:38 - 2011-08-17 04:22 - 00072704 ____A (Microsoft Corporation) C:\Windows\System32\Mpeg2Data.ax 2013-02-09 19:38 - 2011-08-17 04:22 - 00059904 ____A (Microsoft Corporation) C:\Windows\System32\MSDvbNP.ax 2013-02-09 19:38 - 2011-04-22 19:36 - 00026496 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys 2013-02-09 19:38 - 2011-02-18 05:33 - 00031232 ____A (Microsoft Corporation) C:\Windows\System32\prevhost.exe 2013-02-09 19:38 - 2011-02-12 05:30 - 00191488 ____A (Microsoft Corporation) C:\Windows\System32\FXSCOVER.exe 2013-02-09 19:38 - 2010-01-09 06:52 - 00132608 ____A (Microsoft Corporation) C:\Windows\System32\cabview.dll 2013-02-09 19:37 - 2012-11-22 09:33 - 00627712 ____A (Microsoft Corporation) C:\Windows\System32\usp10.dll 2013-02-09 19:37 - 2012-09-06 16:48 - 00245616 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys 2013-02-09 19:37 - 2012-04-26 04:48 - 00129536 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll 2013-02-09 19:37 - 2012-04-26 04:48 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll 2013-02-09 19:37 - 2012-01-03 05:44 - 00478208 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl 2013-02-09 19:37 - 2011-11-19 14:06 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\packager.dll 2013-02-09 19:37 - 2011-10-26 04:25 - 00038912 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll 2013-02-09 19:37 - 2011-05-24 10:35 - 00294912 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll 2013-02-09 19:37 - 2011-05-03 04:50 - 00740864 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll 2013-02-09 19:37 - 2010-09-14 06:02 - 00740352 ____A (Microsoft Corporation) C:\Windows\System32\batmeter.dll 2013-02-09 19:37 - 2010-08-26 04:39 - 00109056 ____A (Microsoft Corporation) C:\Windows\System32\t2embed.dll 2013-02-09 19:37 - 2010-03-05 07:42 - 00067584 ____A (Microsoft Corporation) C:\Windows\System32\asycfilt.dll 2013-02-09 19:37 - 2009-10-19 14:10 - 00070656 ____A (Microsoft Corporation) C:\Windows\System32\fontsub.dll 2013-02-09 19:37 - 2009-09-26 05:58 - 00194488 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys 2013-02-09 19:36 - 2012-11-02 04:48 - 00376832 ____A (Microsoft Corporation) C:\Windows\System32\dpnet.dll 2013-02-09 19:36 - 2012-09-25 21:55 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\synceng.dll 2013-02-09 19:36 - 2012-08-02 17:05 - 00490496 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll 2013-02-09 19:36 - 2012-07-04 21:26 - 00057344 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll 2013-02-09 19:36 - 2012-07-04 21:23 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll 2013-02-09 19:36 - 2012-07-04 21:23 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll 2013-02-09 19:36 - 2012-03-17 07:20 - 00056688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys 2013-02-09 19:36 - 2011-02-18 05:36 - 00428032 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-02-09 19:36 - 2010-10-16 04:41 - 00101760 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe 2013-02-09 19:36 - 2010-07-29 06:30 - 00197632 ____A C:\Windows\System32\ir32_32.dll 2013-02-09 19:36 - 2010-07-29 06:30 - 00082944 ____A (Radius Inc.) C:\Windows\System32\iccvid.dll 2013-02-09 19:36 - 2010-06-19 06:23 - 00037376 ____A (Microsoft Corporation) C:\Windows\System32\rtutils.dll 2013-02-09 19:29 - 2010-05-05 06:46 - 00363520 ____A (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll 2013-02-09 19:23 - 2012-11-09 04:49 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll 2013-02-09 19:07 - 2011-02-03 05:45 - 00219008 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys 2013-02-09 19:07 - 2010-11-02 04:46 - 00728448 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys 2013-02-09 19:07 - 2010-11-02 04:23 - 00107520 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll 2013-02-03 23:04 - 2013-02-03 23:04 - 00012677 ____A C:\Users\John Daniel\Documents\Floissac r0dney bay.xlsx 2013-02-03 20:16 - 2013-02-03 20:22 - 00000000 ____D C:\Users\John Daniel\Downloads\Sing Out My Soul 2013-01-27 21:39 - 2013-01-27 21:41 - 07153282 ____A C:\Users\John Daniel\Downloads\WLan_Broadcom_3.100.46.0_XPx86.zip 2013-01-27 21:26 - 2013-01-27 21:31 - 12826919 ____A C:\Users\John Daniel\Downloads\VGA_SIS_6.14.10.3654_XPx86.zip 2013-01-27 21:10 - 2013-01-27 21:11 - 06123478 ____A C:\Users\John Daniel\Downloads\WLAN_Athroas_4.0.0.14001_XPx86.zip 2013-01-27 21:09 - 2013-02-03 20:12 - 07662565 ____A C:\Users\John Daniel\Downloads\LAN_SIS_2.0.1039.1180_XPx86.zip 2013-01-27 21:09 - 2013-01-27 21:16 - 25386280 ____A C:\Users\John Daniel\Downloads\Audio_Realtek_5.10.00.5790_XPx86.zip 2013-01-27 21:09 - 2013-01-27 21:10 - 04387435 ____A C:\Users\John Daniel\Downloads\BIOS_3A32.zip 2013-01-27 21:09 - 2013-01-27 21:10 - 00710477 ____A C:\Users\John Daniel\Downloads\Modem_Agere_2.1.47_XPx86.zip 2013-01-24 02:48 - 2013-01-23 23:31 - 00000000 ____D C:\Windows\Panther 2013-01-24 02:47 - 2013-01-24 02:47 - 00262144 ____A C:\Windows\System32\config\userdiff 2013-01-24 02:37 - 2013-01-23 23:18 - 00000000 ___HD C:\$WINDOWS.~Q 2013-01-24 02:34 - 2013-01-24 02:36 - 00000000 ___HD C:\$INPLACE.~TR 2013-01-23 23:49 - 2013-01-23 23:49 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-01-23 23:48 - 2013-01-27 00:03 - 00002201 ____A C:\Users\John Daniel\Desktop\Google Chrome.lnk 2013-01-23 23:41 - 2013-02-15 01:21 - 00732070 ____A C:\Windows\System32\PerfStringBackup.INI 2013-01-23 23:40 - 2012-06-02 22:19 - 01933848 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll 2013-01-23 23:40 - 2012-06-02 22:19 - 00053784 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe 2013-01-23 23:40 - 2012-06-02 22:19 - 00045080 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll 2013-01-23 23:40 - 2012-06-02 22:12 - 02422272 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll 2013-01-23 23:39 - 2012-06-02 22:19 - 00577048 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll 2013-01-23 23:39 - 2012-06-02 22:19 - 00035864 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll 2013-01-23 23:39 - 2012-06-02 22:12 - 00088576 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll 2013-01-23 23:39 - 2012-06-02 19:19 - 00171904 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll 2013-01-23 23:39 - 2012-06-02 19:12 - 00033792 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe 2013-01-23 23:37 - 2009-11-25 16:47 - 01130824 ____A (Microsoft Corporation) C:\Windows\System32\dfshim.dll 2013-01-23 23:37 - 2009-11-25 16:47 - 00297808 ____A (Microsoft Corporation) C:\Windows\System32\mscoree.dll 2013-01-23 23:37 - 2009-11-25 16:47 - 00295264 ____A (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe 2013-01-23 23:37 - 2009-11-25 16:47 - 00099176 ____A (Microsoft Corporation) C:\Windows\System32\PresentationHostProxy.dll 2013-01-23 23:37 - 2009-11-25 16:47 - 00049472 ____A (Microsoft Corporation) C:\Windows\System32\netfxperf.dll 2013-01-23 23:35 - 2013-02-10 23:37 - 00109280 ____A C:\Users\John Daniel\AppData\Local\GDIPFONTCACHEV1.DAT 2013-01-23 23:31 - 2013-01-23 23:31 - 00000020 __ASH C:\Users\John Daniel\ntuser.ini 2013-01-23 23:31 - 2013-01-23 23:31 - 00000000 __SHD C:\Recovery 2013-01-23 23:31 - 2010-01-26 01:07 - 00000048 _RASH C:\wedaolu 2013-01-23 23:31 - 2010-01-09 10:17 - 00206312 _RASH C:\grldr 2013-01-23 23:26 - 2013-02-15 01:30 - 01944785 ____A C:\Windows\WindowsUpdate.log 2013-01-23 23:16 - 2013-01-23 23:16 - 00021316 ____A C:\Windows\System32\emptyregdb.dat 2013-01-23 23:11 - 2013-01-23 23:11 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2013-01-23 23:11 - 2013-01-23 23:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2013-01-23 22:53 - 2013-02-19 21:02 - 00000000 ____D C:\users\John Daniel 2013-01-23 22:52 - 2013-02-15 00:05 - 00013232 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-01-23 22:52 - 2013-02-15 00:05 - 00013232 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-01-23 21:45 - 2013-01-23 21:45 - 00001890 ____A C:\Windows\diagwrn.xml 2013-01-23 21:45 - 2013-01-23 21:45 - 00001890 ____A C:\Windows\diagerr.xml 2013-01-23 11:05 - 2013-01-23 11:08 - 00014628 ____A C:\Users\John Daniel\Documents\Floissac rambally back ground check.xlsx 2013-01-20 22:18 - 2013-01-23 23:09 - 00000000 ____D C:\Users\John Daniel\Desktop\New Folder (2) ==================== One Month Modified Files and Folders ======== 2013-02-19 22:58 - 2013-02-19 22:58 - 00000000 ____D C:\FRST 2013-02-19 21:37 - 2013-02-19 21:36 - 00000000 ____D C:\Windows\System32\config\mybackup 2013-02-19 21:02 - 2013-01-23 22:53 - 00000000 ____D C:\users\John Daniel 2013-02-19 21:02 - 2009-07-14 07:50 - 00000000 ____D C:\Program Files\Windows Journal 2013-02-19 21:02 - 2009-07-14 07:49 - 00000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2013-02-19 21:02 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-02-19 21:02 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-02-19 21:02 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\Windows Defender 2013-02-19 21:02 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\DVD Maker 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\TAPI 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\wfp 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\DriverStore 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\AdvancedInstallers 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\rescache 2013-02-19 21:02 - 2009-07-14 02:37 - 00000000 ____D C:\Program Files\Common Files\System 2013-02-19 21:01 - 2013-02-15 01:30 - 00000000 ____D C:\8dae3720cf455c11d3837d49a69d 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\spp 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\Speech 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\MUI 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\security 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\Microsoft.NET 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\AppCompat 2013-02-19 21:01 - 2009-07-14 02:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2013-02-19 21:00 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\registration 2013-02-19 20:52 - 2012-12-26 00:52 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Skype 2013-02-19 03:42 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\Windows Portable Devices 2013-02-19 03:41 - 2013-02-15 01:32 - 00000000 ____D C:\Windows\System32\SPReview 2013-02-19 03:27 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\LogFiles 2013-02-15 01:32 - 2011-09-21 20:54 - 00000896 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-02-15 01:31 - 2011-09-11 20:57 - 00000000 ____D C:\Windows\System32\EventProviders 2013-02-15 01:30 - 2013-01-23 23:26 - 01944785 ____A C:\Windows\WindowsUpdate.log 2013-02-15 01:21 - 2013-01-23 23:41 - 00732070 ____A C:\Windows\System32\PerfStringBackup.INI 2013-02-15 00:41 - 2012-10-23 01:56 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-02-15 00:05 - 2013-01-23 22:52 - 00013232 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-02-15 00:05 - 2013-01-23 22:52 - 00013232 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-02-14 23:56 - 2013-02-14 01:53 - 00005571 ____A C:\Windows\setupact.log 2013-02-14 23:56 - 2011-09-21 20:54 - 00000892 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-02-14 23:56 - 2009-07-14 04:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-02-14 01:53 - 2013-02-14 01:53 - 00000000 ____A C:\Windows\setuperr.log 2013-02-11 00:42 - 2012-10-23 01:56 - 00697712 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe 2013-02-11 00:42 - 2011-08-16 00:03 - 00074096 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl 2013-02-11 00:25 - 2012-02-15 23:58 - 00230424 ____A C:\img2-001.raw 2013-02-10 23:37 - 2013-01-23 23:35 - 00109280 ____A C:\Users\John Daniel\AppData\Local\GDIPFONTCACHEV1.DAT 2013-02-10 23:35 - 2009-07-14 04:33 - 00409952 ____A C:\Windows\System32\FNTCACHE.DAT 2013-02-09 20:20 - 2013-02-09 20:20 - 00000000 ____D C:\Windows\System32\x64 2013-02-03 23:04 - 2013-02-03 23:04 - 00012677 ____A C:\Users\John Daniel\Documents\Floissac r0dney bay.xlsx 2013-02-03 22:21 - 2011-09-20 01:35 - 00000971 ____A C:\Users\John Daniel\Desktop\magicJack.lnk 2013-02-03 22:21 - 2011-09-20 01:32 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\mjusbsp 2013-02-03 20:22 - 2013-02-03 20:16 - 00000000 ____D C:\Users\John Daniel\Downloads\Sing Out My Soul 2013-02-03 20:12 - 2013-01-27 21:09 - 07662565 ____A C:\Users\John Daniel\Downloads\LAN_SIS_2.0.1039.1180_XPx86.zip 2013-01-30 11:38 - 2012-06-28 10:52 - 00014956 ____A C:\Users\John Daniel\Documents\first bank invoiceTRUCK.xlsx 2013-01-30 10:53 - 2011-08-08 16:09 - 00232336 ____A (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe 2013-01-27 21:41 - 2013-01-27 21:39 - 07153282 ____A C:\Users\John Daniel\Downloads\WLan_Broadcom_3.100.46.0_XPx86.zip 2013-01-27 21:31 - 2013-01-27 21:26 - 12826919 ____A C:\Users\John Daniel\Downloads\VGA_SIS_6.14.10.3654_XPx86.zip 2013-01-27 21:16 - 2013-01-27 21:09 - 25386280 ____A C:\Users\John Daniel\Downloads\Audio_Realtek_5.10.00.5790_XPx86.zip 2013-01-27 21:11 - 2013-01-27 21:10 - 06123478 ____A C:\Users\John Daniel\Downloads\WLAN_Athroas_4.0.0.14001_XPx86.zip 2013-01-27 21:10 - 2013-01-27 21:09 - 04387435 ____A C:\Users\John Daniel\Downloads\BIOS_3A32.zip 2013-01-27 21:10 - 2013-01-27 21:09 - 00710477 ____A C:\Users\John Daniel\Downloads\Modem_Agere_2.1.47_XPx86.zip 2013-01-27 20:23 - 2012-09-16 19:51 - 00000000 ____D C:\Users\John Daniel\Desktop\good old days 2013-01-27 19:31 - 2012-09-16 19:47 - 00000839 ____A C:\Windows\BRWMARK.INI 2013-01-27 00:03 - 2013-01-23 23:48 - 00002201 ____A C:\Users\John Daniel\Desktop\Google Chrome.lnk 2013-01-24 02:48 - 2011-08-08 15:18 - 00008192 _RASH C:\BOOTSECT.BAK 2013-01-24 02:48 - 2009-07-14 04:57 - 00025600 __ASH C:\Windows\System32\config\BCD-Template.LOG 2013-01-24 02:48 - 2009-07-14 04:52 - 00028672 ____A C:\Windows\System32\config\BCD-Template 2013-01-24 02:47 - 2013-01-24 02:47 - 00262144 ____A C:\Windows\System32\config\userdiff 2013-01-24 02:36 - 2013-01-24 02:34 - 00000000 ___HD C:\$INPLACE.~TR 2013-01-23 23:49 - 2013-01-23 23:49 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-01-23 23:40 - 2011-08-08 15:46 - 00000000 ____D C:\Program Files\Microsoft.NET 2013-01-23 23:37 - 2009-07-14 04:52 - 00000000 ____D C:\Windows\System32\restore 2013-01-23 23:31 - 2013-01-24 02:48 - 00000000 ____D C:\Windows\Panther 2013-01-23 23:31 - 2013-01-23 23:31 - 00000020 __ASH C:\Users\John Daniel\ntuser.ini 2013-01-23 23:31 - 2013-01-23 23:31 - 00000000 __SHD C:\Recovery 2013-01-23 23:31 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\Recovery 2013-01-23 23:18 - 2013-01-24 02:37 - 00000000 ___HD C:\$WINDOWS.~Q 2013-01-23 23:16 - 2013-01-23 23:16 - 00021316 ____A C:\Windows\System32\emptyregdb.dat 2013-01-23 23:15 - 2009-07-14 02:37 - 00000000 __RSD C:\Windows\Media 2013-01-23 23:11 - 2013-01-23 23:11 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2013-01-23 23:11 - 2013-01-23 23:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2013-01-23 23:09 - 2013-01-20 22:18 - 00000000 ____D C:\Users\John Daniel\Desktop\New Folder (2) 2013-01-23 23:09 - 2013-01-01 06:58 - 00000000 ____D C:\Users\John Daniel\Desktop\New Folder 2013-01-23 23:09 - 2012-12-25 04:21 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Apple Computer 2013-01-23 23:09 - 2012-12-25 03:02 - 00000000 ____D C:\Users\John Daniel\Desktop\photos 2013-01-23 23:09 - 2012-09-16 19:59 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\InstallShield 2013-01-23 23:09 - 2012-09-16 19:51 - 00000000 ___RD C:\Users\John Daniel\AppData\Roaming\Brother 2013-01-23 23:09 - 2012-09-16 19:43 - 00000000 ____D C:\Users\John Daniel\Desktop\mflpro 2013-01-23 23:09 - 2012-04-14 02:40 - 00000000 ____D C:\Users\John Daniel\Documents\Fax 2013-01-23 23:09 - 2011-11-02 13:03 - 00000000 ____D C:\Users\John Daniel\Documents\Business-in-a-Box Files 2013-01-23 23:09 - 2011-10-09 13:43 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Sammsoft 2013-01-23 23:09 - 2011-09-21 22:17 - 00000000 ____D C:\Users\John Daniel\FrostWire 2013-01-23 23:09 - 2011-09-21 20:56 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Google 2013-01-23 23:09 - 2011-08-16 00:03 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Macromedia 2013-01-23 23:09 - 2011-08-16 00:03 - 00000000 ____D C:\Users\John Daniel\AppData\Roaming\Adobe 2013-01-23 23:08 - 2012-12-25 04:21 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Apple Computer 2013-01-23 23:08 - 2012-12-25 04:19 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Apple 2013-01-23 23:08 - 2012-09-04 19:12 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Apps\2.0 2013-01-23 23:08 - 2012-04-14 02:23 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Adobe 2013-01-23 23:08 - 2012-02-15 22:58 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Windows Live 2013-01-23 23:08 - 2011-09-25 20:03 - 00000000 ____D C:\Users\John Daniel\.frostwire5 2013-01-23 23:08 - 2011-09-21 20:53 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Google 2013-01-23 23:08 - 2011-09-20 10:38 - 00000000 ____D C:\Users\John Daniel\AppData\Local\tjnet 2013-01-23 23:08 - 2011-09-20 01:35 - 00000000 ____D C:\Users\John Daniel\AppData\Local\magicJack 2013-01-23 23:08 - 2011-08-08 15:40 - 00000000 ____D C:\Users\John Daniel\AppData\Local\Microsoft Help 2013-01-23 23:08 - 2011-08-08 15:32 - 00000000 ____D C:\Users\John Daniel\AppData\Local\VirtualStore 2013-01-23 22:59 - 2012-07-04 00:31 - 00000000 ____D C:\Windows\System32\appmgmt 2013-01-23 22:59 - 2011-08-16 00:03 - 00000000 ____D C:\Windows\System32\Macromed 2013-01-23 22:59 - 2009-07-14 07:49 - 00000000 ____D C:\Windows\ShellNew 2013-01-23 22:59 - 2009-07-14 04:52 - 00000000 ____D C:\Windows\twain_32 2013-01-23 22:59 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\sr-Latn-CS 2013-01-23 22:59 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\System32\NDF 2013-01-23 22:59 - 2009-07-14 02:37 - 00000000 ____D C:\Windows\Help 2013-01-23 22:59 - 2006-11-02 12:42 - 00000000 ____D C:\Windows\WindowsMobile 2013-01-23 22:59 - 2006-11-02 12:42 - 00000000 ____D C:\Windows\System32\Branding 2013-01-23 22:59 - 2006-11-02 12:37 - 00000000 ____D C:\Windows\System32\XPSViewer 2013-01-23 22:59 - 2006-11-02 11:18 - 00000000 ____D C:\Windows\System32\RemInst 2013-01-23 22:59 - 2006-11-02 11:18 - 00000000 ____D C:\Windows\nap 2013-01-23 22:58 - 2013-01-01 07:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-01-23 22:58 - 2012-12-26 00:52 - 00000000 ___RD C:\Program Files\Skype 2013-01-23 22:58 - 2012-10-09 02:19 - 00000000 ____D C:\Program Files\VideoDownloadConverter_4zEI 2013-01-23 22:58 - 2012-02-04 21:00 - 00000000 ____D C:\Program Files\TelevisionFanaticEI 2013-01-23 22:58 - 2011-09-21 22:09 - 00000000 ____D C:\Program Files\SweetIM 2013-01-23 22:58 - 2011-08-08 16:01 - 00000000 ____D C:\Program Files\Microsoft Security Client 2013-01-23 22:58 - 2011-08-08 15:47 - 00000000 ____D C:\Program Files\Microsoft Works 2013-01-23 22:58 - 2011-08-08 15:46 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 2013-01-23 22:58 - 2011-08-08 15:42 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8 2013-01-23 22:58 - 2011-08-08 15:40 - 00000000 ____D C:\Program Files\Microsoft Office 2013-01-23 22:58 - 2009-07-14 04:52 - 00000000 ____D C:\Program Files\MSBuild 2013-01-23 22:58 - 2006-11-02 12:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery 2013-01-23 22:58 - 2006-11-02 12:37 - 00000000 ____D C:\Program Files\Windows Collaboration 2013-01-23 22:58 - 2006-11-02 12:37 - 00000000 ____D C:\Program Files\Windows Calendar 2013-01-23 22:57 - 2012-12-26 00:52 - 00000000 ____D C:\Program Files\Common Files\Skype 2013-01-23 22:57 - 2012-12-25 04:20 - 00000000 ____D C:\Program Files\iTunes 2013-01-23 22:57 - 2012-12-25 04:20 - 00000000 ____D C:\Program Files\iPod 2013-01-23 22:57 - 2012-09-16 20:01 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-01-23 22:57 - 2012-02-15 22:58 - 00000000 ____D C:\Program Files\Common Files\Windows Live 2013-01-23 22:57 - 2012-02-15 22:30 - 00000000 ____D C:\Program Files\Microsoft LifeCam 2013-01-23 22:57 - 2011-09-21 22:15 - 00000000 ____D C:\Program Files\Java 2013-01-23 22:57 - 2011-09-21 20:53 - 00000000 ____D C:\Program Files\Google 2013-01-23 22:57 - 2011-09-21 17:09 - 00000000 ____D C:\Program Files\HP 2013-01-23 22:56 - 2012-12-25 04:19 - 00000000 ____D C:\Program Files\Apple Software Update 2013-01-23 22:56 - 2012-12-25 04:17 - 00000000 ____D C:\Program Files\Bonjour 2013-01-23 22:56 - 2012-12-25 04:16 - 00000000 ____D C:\Program Files\Common Files\Apple 2013-01-23 22:56 - 2012-09-16 19:44 - 00000000 ____D C:\Program Files\Brother 2013-01-23 22:56 - 2012-04-14 02:21 - 00000000 ____D C:\Program Files\Common Files\Adobe 2013-01-23 22:56 - 2012-04-14 02:21 - 00000000 ____D C:\Program Files\Adobe 2013-01-23 22:56 - 2012-04-06 14:33 - 00000000 ____D C:\Program Files\Business-in-a-Box 2013-01-23 22:56 - 2011-10-24 19:36 - 00000000 ____D C:\Program Files\Common Files\Java 2013-01-23 22:56 - 2011-10-09 13:43 - 00000000 ____D C:\Program Files\ARO 2011 2013-01-23 22:56 - 2011-09-21 22:13 - 00000000 ____D C:\Program Files\Ask.com 2013-01-23 22:56 - 2011-09-21 20:54 - 00000000 ____D C:\Program Files\CCleaner 2013-01-23 22:56 - 2011-09-21 17:12 - 00000000 ____D C:\Program Files\Common Files\HP 2013-01-23 22:56 - 2011-09-21 17:12 - 00000000 ____D C:\Program Files\Common Files\Hewlett-Packard 2013-01-23 22:56 - 2011-08-08 15:46 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-01-23 22:50 - 2009-07-14 07:49 - 00000000 ____D C:\Windows\CSC 2013-01-23 22:30 - 2006-11-02 12:47 - 00004880 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-01-23 22:30 - 2006-11-02 12:47 - 00004880 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-01-23 21:45 - 2013-01-23 21:45 - 00001890 ____A C:\Windows\diagwrn.xml 2013-01-23 21:45 - 2013-01-23 21:45 - 00001890 ____A C:\Windows\diagerr.xml 2013-01-23 11:08 - 2013-01-23 11:05 - 00014628 ____A C:\Users\John Daniel\Documents\Floissac rambally back ground check.xlsx 2013-01-23 10:41 - 2012-05-20 19:17 - 00012722 ____A C:\Users\John Daniel\Documents\Floissac Marigot bay.xlsx ==================== Known DLLs (Whitelisted) ================= ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2013-02-09 19:40] - [2011-02-26 05:33] - 2614784 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe [2013-02-09 19:40] - [2009-10-28 06:17] - 0285696 ____A (Microsoft Corporation) C:\Windows\System32\wininit.exe [2009-07-13 23:36] - [2009-07-14 01:14] - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\svchost.exe [2009-07-13 23:19] - [2009-07-14 01:14] - 0020992 ____A (Microsoft Corporation) C:\Windows\System32\services.exe [2009-07-13 23:11] - [2009-07-14 01:14] - 0259072 ____A (Microsoft Corporation) C:\Windows\System32\User32.dll [2009-07-13 23:24] - [2009-07-14 01:16] - 0811520 ____A (Microsoft Corporation) C:\Windows\System32\userinit.exe [2009-07-13 23:34] - [2009-07-14 01:14] - 0026112 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys [2013-02-09 19:37] - [2012-09-06 16:48] - 0245616 ____A (Microsoft Corporation) ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points (XP) ===================== ==================== Memory info =========================== Percentage of memory in use: 19% Total physical RAM: 2038.05 MB Available physical RAM: 1648.48 MB Total Pagefile: 1763.84 MB Available Pagefile: 883.95 MB Total Virtual: 2047.88 MB Available Virtual: 2004.76 MB ==================== Partitions ============================= 1 Drive b: (RamDrive) (Fixed) (Total:0.82 GB) (Free:0.81 GB) NTFS 2 Drive c: () (Fixed) (Total:149.04 GB) (Free:123.01 GB) NTFS 3 Drive d: () (Removable) (Total:14.94 GB) (Free:14.83 GB) NTFS 4 Drive e: (Hiren'sBootCD9.8) (CDROM) (Total:0.15 GB) (Free:0 GB) CDFS 5 Drive x: (MiniXP) (Fixed) (Total:0.11 GB) (Free:0.02 GB) NTFS Disk ### Status Size Free Dyn Gpt -------- ---------- ------- ------- --- --- Disk 0 Online 149 GB 0 B Partitions of Disk 0: =============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 149 GB 32 KB ========================================================= Disk: 0 Partition 1 Type : 07 Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 1 C NTFS Partition 149 GB Healthy ========================================================= Last Boot: 2013-02-15 03:13 ==================== End Of Log ============================