WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93098 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Trovi search bar, causing failed internet! Logs are ready. [Solved

Started by jeff matthews , Jan 07 2015 04:54 PM

Viruses Maleware Infection CCcleaner Internet connection issue Rootkits trovi search bar

This topic is locked

100 replies to this topic

#76 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 01 February 2015 - 09:33 AM

Ive used Addblock and Wot before but that is bout it. So in regards to blocking certain apps from isntalling, either authorized or unauthorized, will these plugins help with that?

I remember along time ago when i was running an XP platform, certain things like this was alot easier, for example you can even limit what content is shown on the internet, anything with any sort of malicious code of any kind would be blocked from your IP. I remember i use to place locks on the web my self so people around my house couldn't view certain things. Web pages would be encrypted and you had to use a password to unlock them. That may be a bit extreme in this case, cause my sister uses the internet for browsing, mainly information articles and streaming sites, she doesn't want to be blocked from the net, but her inability to practice safe browsing is not that great and she repeatedly gets infected.

But yeah i'll install all of these addons and see how it works out. Now regarding driver updates, i can go ahead and do that i guess. I am still using updates that are rather old as they came bundled with the CD. So i am going to download the appropriate ones from the web sites for both my graphics and chipset drivers.

So those scans you told me to run? Is there any way we can set up a schedule for the scans to run on a day by day bases, maybe like early morning when know one is up. I think that will dramatically help the whole situation if i have constant scans running on this machine regularly.

I mean i can remember this sort of process some times but i get really busy with other things and fixing this machine and maintaining it 24/hrs is not really on my agenda. I have my own computers that i have to tend with as well. I will fix it when it has issues, but I would like to lesson this from happening if possible so creating auto updates and auto scans is benificial to maintaining a clean machine on a month by month bases.

Edited by jeff matthews, 01 February 2015 - 05:49 PM.

Advertisements

Register to Remove

#77 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 02 February 2015 - 01:52 PM

Hello,

Some more points to consider before we move on.
Let me know how the machine is after you've worked your way through the following.

Ive used Addblock and Wot before but that is bout it. So in regards to blocking certain apps from isntalling, either authorized or unauthorized, will these plugins help with that?

AdBlock will help reduce the likelihood of your sister clicking on ads that install unwanted or malicious software. WOT will help alert your sister before clicking on a link that leads to a potentially malicious website.

Please bear in mind that as with the nature of review websites and software such as WOT, ratings shouldn't be taken as gospel. Just because a website is rated as dangerous (red), does not automatically make it so. Likewise, just because a website is rated as safe (green), also does not automatically make it so. With WOT, it's perhaps best to take everything with a slight pinch of salt, and always exercise caution no matter what the site is rated as.

CryptoPrevent will block most types of malware should a dropper land on the computer.

for example you can even limit what content is shown on the internet

MBAM Premium and avast! will help protect against malicious websites. NoScript will help reduce the actions of malicious websites should your sister inadvertently visit one.

I suggest looking into the following: MVPS Hosts and xj1OLIec.png.pagespeed.ic.k6hhwopU0q.jpg SpywareBlaster.
MVPS Hosts places entries into the HOSTS file; translating known malicious or unwanted domains to the IP address 127.0.0.1 (your computer). This renders the domain harmless for you. SpywareBlaster inserts numerous killbits into the registry to block the actions of malicious websites, ads, tracking cookies, etc.

Now regarding driver updates, i can go ahead and do that i guess. I am still using updates that are rather old as they came bundled with the CD. So i am going to download the appropriate ones from the web sites for both my graphics and chipset drivers.

It's worth creating a system image before and after in case unforeseen issues arise.

So those scans you told me to run? Is there any way we can set up a schedule for the scans to run on a day by day bases, maybe like early morning when know one is up. I think that will dramatically help the whole situation if i have constant scans running on this machine regularly.

MBAM scans can be scheduled with the Premium version, but not with the Free version.
The same goes with the paid version of Emsisoft.
You can schedule an avast! Internet Security scan - have a look in the help files for more information.

-------------

Keeping on top of software updates is important as we've already discussed. I recommend you install DgW1XL2.png.pagespeed.ce.v1OlJl_ZAS.png Secunia PSI, which will scan your computer for outdated (& therefore vulnerable) software, automatically download and then install the latest update.

Regarding installed software - I recommend you stay clear of Java for the following reasons.

Using Java is an unnecessary security risk; especially using older versions which have vulnerabilities that malicious sites can use to exploit and infect your system.

Java is one of those technologies that you find installed on the majority of computer systems despite the fact that average users do not come across many Java-powered websites or desktop applications [...] According to W3Techs, only four percent of websites use Java on the server side [...] it is used by 0.2 percent of all websites on the client side. And two tenths of a percent includes sites that do not use it for their core functionality [...] there are sites and applications that require Java, and if you use any of them, you obviously need Java. But that makes you a minority. The majority of Internet users do not need Java. They do not need the Java plugin, nor do they need the Java Runtime Environment installed on their operating system.

An alternative to Adobe Reader I recommend you consider is Sumatra PDF, which has a smaller attack surface, and is therefore less vulnerable.

-------------

Exercising caution is something you need to impress on your sister. I recommend bookmarking some of the sites below - and explain to your sister that if she's ever in doubt regarding a file or website, she should visit one of the sites listed below and scan before clicking/opening.

-------------

Installing Unchecky will automatically remove checkmarks for additional software in installers - this will help reduce the likelihood of unwanted software being inadvertently installed. Please bear in mind this software is still in BETA, so you may wish to take precaution before installing (ie. creation of System Restore Point).

Would you like to help others with malware removal? Join our Classroom and learn how!

#78 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 02 February 2015 - 04:25 PM

Wow, these all sound very interesting. This sounds like a real full proof method for preventive measures. So i have to ask one more thing now, will all of these applications run simultaneously together? For example i have always heard running two firewalls together is not such a great idea. So lets say i have Avast running in the background, will running spyware blaster and MBAM cause any conflicts on the machine, well running avast. cause out of all the software you mentioned, those two seem like they have script blocking.

Also the machine has 8 Gb of ram with an I3 ivybridge though i might consider upgrading soon, because i built it to be a pretty hefty computer but i know running all of these applications at once and also playing games and things like, its going to use alot of CPU and memory load. I think the CPU is fine, but i may choose to upgrade the memory. I know alot of people mentioned that 8 gigs is plenty, but when doing lots of other tasks, playing games or FB games and things like that, it can run up pretty quick.

Incidentally i notice face book games, have been a huge vulnerability and security risk for certain spyware and pups on the machine. I don't use these my self, but my sister does alot. So by running this software, it will warn or prevent you if any of these web games have any sort of malicious code or anything right?

The unchecky, sounds extremely useful. I don't run into this issue my self cause i am pretty aware of what i install on the computer, but my sister is not so much. She don't pay attention enough and any of that stuff that you Check, you will most likely never use. Its just bloatware that you don't need so that software is going to prove very helpful in that regards.

Another thing we have a HUGE problem with, something i need to educate her as well is downloading appropriate software, how to differentiate between a third party fake software that is most likely a zipped archive or an exe program made to look legitimate but really is self installer that installs lots of programs into the computer. I am hoping that some of these software's that we are using will some how detect and know precisely if your installing a potentially unwanted applications that is malicious. I remember zone alarm was a really great firewall for this because it actually let you knew what apps where installing by color coding the danger level of each and every app you install. Now granted this software, if configured like that, kind of is not that very user friendly cause it literally takes control of every single operation you use on the machine. I didn't really care for it for to long cause its a CPU hog and literally bogs down the machine and also it conflicts with nearly everything so i eventually got rid of it.

If MBAM or EMisoft full version has this feature, then that might help. I will have to look into this. My sister does not like the whole idea bout prompting to allow every single app to install or make a change, cause it kind of gets tiring after a while trying to click on allow or diss alow for every single operation performed. But it definitely kept the stuff out.

Regarding Wot yes i do know this, but your % chance of clicking on link that is malicious is much lower.

So i will take all of this into consideration, i will create a few system restores well installing some of these applications, then after everything is said and done, maybe take another look at the machine to see if anything isn't conflicting with another, cause the last thing i want is BSOD crashes or the like. One of the things that we use is codec packs for certain video playability for all kinds of formats and some times these codec packs do have some issues with running other script running programs on the computer.

Edited by jeff matthews, 02 February 2015 - 04:28 PM.

#79 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 03 February 2015 - 02:30 PM

Hello,

So i have to ask one more thing now, will all of these applications run simultaneously together? For example i have always heard running two firewalls together is not such a great idea.

Firstly, none of the recommended programmes are Firewalls. You have two Firewalls on your machine - Windows 7 Firewall and avast! Internet Security Firewall. You must only have one enabled - which is why the first is disabled and the second enabled.

The main core of avast! Internet Security is an Anti-Virus. MBAM and Emsisoft are Anti-Malware. SpywareBlaster is a form of passive protection, as is CryptoPrevent.

Only one Anti-Virus and Firewall should be running in real time. This is what you currently have. MBAM Premium is designed to run alongside your Anti-Virus in real-time. Emsisoft Free does not run in real-time, and neither does SpywareBlaster and CryptoPrevent. So there are no issues having these programmes installed.

Incidentally i notice face book games, have been a huge vulnerability and security risk for certain spyware and pups on the machine. I don't use these my self, but my sister does alot. So by running this software, it will warn or prevent you if any of these web games have any sort of malicious code or anything right?

Social Networking sites can make a computer susceptible to malware. Plain and simple. Using social networking sites is a risk - it's whether or not the benefits are worth taking the risk.

Generally, clicking links from friends or innocuous-looking banner ads are the main infection vectors when it comes to social networking sites. Your sister should be OK if she sticks to games she knows to be OK, but there are no guarantees.

Another thing we have a HUGE problem with, something i need to educate her as well is downloading appropriate software

http://www.bleepingc...-2#entry3348159

Regardless of where you go to download software, you always have to be careful with deceptive download links. Clicking on the incorrect link may redirect to another download site which uses heavy and confusing advertising with more download links. On almost every site, including safe software download sites, you may encounter an obtrusive green Download Now" button as a type of advertisement. These buttons ads come from third party ad networks and work well because many users are capricious by nature. Clicking on one of these "Download Now buttons" (thinking its the one you want) often results in downloading a program the user did not intend to download.

Best practices:
1. Always try to download software directly from the vendor's official home site. Look for and read the End User's License Agreement (EULA) carefully as well as any other related documentation.

2. Sometimes looking at the name of the setup file before saving it to your hard drive, will give a clue to what you are actually downloading so you can cancel out of it. If the file name does not appear correctly, do not proceed. This is especially important when using third-party hosting sites which are known to use special installers which bundle other software. Some third-party hosting sites like CNET.com publish a Software bundling Policy which you should always read.

3. Take your time during installation of any program and read everything on the screen before clicking that "Install" or "Next" button. Even then, in some cases, this opting out does not always seem to work as intended.

4. As more and more legitimate vendors are bundling software to recoup business expenses, folks need to take some personal responsibility and educate themselves about this practice.

5. TIP: Open your browser, go to View > Toolbars and check the Status Bar box (Internet Explorer) or Add-on bar (Firefox). If you place your cursor over a link, the actual URL address will show up in the Status Bar or Add-on bar at the bottom of the browser window.

6. TIP: When searching for free software, visit the vendor's website and look for a "slim" or "zipped" version of the product as they generally are stand-alone applications that do not bundle or install anything else.

My sister does not like the whole idea bout prompting to allow every single app to install or make a change, cause it kind of gets tiring after a while trying to click on allow or diss alow for every single operation performed.

Disabling UAC (User Account Control) will increase the likelihood of malware executing. Your sister needs to decide what's more important - the security of the computer or reducing the number of clicks made.

Would you like to help others with malware removal? Join our Classroom and learn how!

#80 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 03 February 2015 - 11:27 PM

My goodness, this computer is lightening fast right now. I wish it can stay like this all the time.

Anyways, i have successfully installed most all of the applications and have done every step you have offered. But i do have a few questions on certain applications and software that we installed. I bought the premium edition of Malewarebytes, i figured how to schedule the scans. I set it up on a daily bases at around 6 AM in the morning and i also set the frequency to repeat once every (1)days. I will see how good it works. That schedule is quite frequent but hopefully that will be adequate enough and i try to pick certain times where no one would be on the machine like early morning. Also i did see an option under avast where schedules scans will detect if your computer is in hybrid mode and will automatically wake it up. But i did not see that in MBAM premium. Hopefully that is not a factor and will stop the scans from running.

Emsisoft Antimalware How ever was not able to install on my machine. The link you provided was a 32bit. I looked this up in the forum and people stated that it can run on both versions. But anyways that is my error, it can't run on this version of the OS. So i am not sure how to fix this. Just letting you know.

Noscript was also another addon that i was unable to install successfully. The installer downloaded and i clicked allow and right when it installed it said "The addon could not be downloaded cause of a connection failure at noscript.net" Incidentally it says the same thing for addblock. But thats not a factor because i already have it installed apparently. I must of installed it earlier after doing the reformat, but i don't remember. Same with Wot. I guess i installed both.

For CryptoPrevent. I used the default setting for protection. Do you think that will be sufficient enough. Maximum protection blocks legitimate software. I can see that being a hassle but i am not sure. I just used default, that should be fine.

For SpywareBlaster. i just basically ran the scans for Protection on all 3 browsers. Is there anything else i need to do with this software, can you give me a proper rundown on how to use this software. I notice when i go back to it, it says 5 unchecked. So does this mean i have to relaunch the app each and every time i need to check items. Or is there is a way to set it up automatically to scan.

I also changed the MPVSHOSTS files like it stated in the instructions. What does this prevent exactly? From other users being able to access your IP, either by intrusion into your computer or like remote connection? What if in the future i have to use remote desktop to have someone assist me. I don't use it much but some times i do. Or i use it my self to help some one else.

About disabling UAC, that isn't what i was referring to. I was actually taking bout certain strong firewall apps like comodo security where it has a user control system that blocks connections to your internet outgoing/ingoing ICP and TCP connections, software installing and everything else. I have had something set up like that before that was pretty bullet proof when it came to keeping maleware, hackers and intrusions out. But it was not very user friendly at all. You have to allow and disallow nearly every single solitary operation on the computer that involved any sort of "writing to the registry"/

Lastly here is a screen shot of my device manager. Unfortantly its again showing a problem with the USB. Although i do not see any evidence of any sort of issue on the computer. It runs fine and the USB is all working perfectly. No problems that i can see. I just noticed this just now though.

Well other then all that, thats pretty much what i have to say bout everything we have went over. The pc is much much faster now. One last thing i do want to do is run some scanners on my external drives, what do you recommend a full proof strategy for doing that? I have tried using a regular nortons or avast scanner but some times it doesn't detect everything.

Edited by jeff matthews, 04 February 2015 - 02:07 AM.

#81 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 04 February 2015 - 02:40 PM

Hello,

Emsisoft Antimalware How ever was not able to install on my machine. The link you provided was a 32bit. I looked this up in the forum and people stated that it can run on both versions. But anyways that is my error, it can't run on this version of the OS. So i am not sure how to fix this. Just letting you know.

Emsisoft can run on 64-bit versions of Windows. Have you tried installing the programme?
You can always try using the vendor's website:
http://www.emsisoft....are/antimalware

The installer downloaded and i clicked allow and right when it installed it said "The addon could not be downloaded cause of a connection failure at noscript.net"

Sounds like an issue with your Internet connection.
Try downloading again.

For CryptoPrevent. I used the default setting for protection. Do you think that will be sufficient enough. Maximum protection blocks legitimate software. I can see that being a hassle but i am not sure. I just used default, that should be fine.

Yes, default settings should be OK. I use default myself.

These are some of the restrictions the programme places:

Spoiler

For example, if an executable (.exe) file tries to run from %userprofile%\AppData\Local, the file will be blocked.

A common infection vector for malware (in particular, ransomware) is malicious .exe files masquerading as legitimate .docx, .pdf, etc files with the use of the double-extension trick. As file extensions are hidden by default, examplefile.pdf.exe (a malicious .exe file) will actually appear as examplefile.pdf, and may mistakenly be trusted.

However, due to the HKLM Group Policy restriction *.pdf*.exe, this file would be blocked from executing.

I suggest doing the following:

Press the Windows Key + r on your keyboard at the same time. Type Control Folders and click OK.
Click View. Under Hidden files and folders:
Remove the checkmark next to Hide extensions for known file types.
Click Apply followed by OK.

is there anything else i need to do with this software, can you give me a proper rundown on how to use this software.

Not exactly. Updates are relatively uncommon, so do this once every few weeks.

Open the programme and click Updates.
Click Check for Updates.
If updates are found, click Enable All Protection.

SpywareBlaster is more of an install and forget type programme and does not run in real-time.

I also changed the MPVSHOSTS files like it stated in the instructions. What does this prevent exactly? From other users being able to access your IP, either by intrusion into your computer or like remote connection? What if in the future i have to use remote desktop to have someone assist me. I don't use it much but some times i do. Or i use it my self to help some one else.

A website (eg. maliciousdomain.com, which I've made up) is called a domain name. Domain names are translated into IP addresses by a DNS (Domain Name System) server. The HOSTS file bypasses the DNS server. If 127.0.0.1 maliciousdomain.com is entered into your HOSTS file, when your browsers tries to connect to maliciousdomain.com, instead of your DNS server translating the domain name into the correct IP address, the domain name is translated into the IP address 127.0.0.1.

This is a special IP address. On most computers it is the localhost, which loops back to your computer. So when you visit malicousdomain.com, your computer thinks the location of the website is your computer. As it cannot find the website on your computer, no connection is established to the malicious domain.

where it has a user control system that blocks connections to your internet outgoing/ingoing ICP and TCP connections, software installing and everything else.

avast! Internet Security and MBAM Premium both monitor incoming and outgoing traffic, and will block any they deem malicious. You also significantly increase protection when you connect to the Internet behind a hardware firewall such as a router.

Lastly here is a screen shot of my device manager. Unfortantly its again showing a problem with the USB. Although i do not see any evidence of any sort of issue on the computer. It runs fine and the USB is all working perfectly. No problems that i can see. I just noticed this just now though.

Yes - from your FRST logs:

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

One last thing i do want to do is run some scanners on my external drives, what do you recommend a full proof strategy for doing that?

This is what I suggest you do -

STEP 1
Panda USB Vaccine

Please download Panda USB Vaccine and save the file to your Desktop.
Double-click USBVaccineSetup.exe to install the programme.
Read and accept the license agreement, then click Next.
Upon completion of the setup, ensure Launch Panda USB Vaccine is checked and click Finish.
Click the Vaccinate Computer button. It should now show a green checkmark and confirm Computer vaccinated.
Hold down the Shift key on your keyboard and insert your USB flash/external drive.
When the name of the drive appears in the Panda USB Vaccine dialog box, click the Vaccinate USB drive(s) button.
Exit the programme when done.

-- Computer Vaccination will prevent any AutoRun file from running, regardless of whether the removable device is infected or not. USB Vaccination disables the autorun file so it cannot be read, modified or replaced and creates an AUTORUN_.INF as protection against malicious code. The Panda Resarch Blog advises that once USB drives have been vaccinated, they cannot be reversed except with a format. If you do this, be sure to back up your data files first or they will be lost during the formatting process.

STEP 2
MCShield

Please download the MCShield setup file.
Double-click MCShield-Setup.exe and follow the prompts to install the programme.
Launch the programme and wait for updates to download.
Ensure your USB drive is inserted into your PC.
MCShield will scan your USB drive, and notify you if the drive is clean or not.
Click the Logs tab to view a report.
You can leave MCShield running in real-time to scan newly attached devices, however, avast! should also do this, so you may wish to disable MCShield from running.

STEP 3
Malwarebytes Anti-Malware (MBAM) Including External Drive

Open Malwarebytes Anti-Malware and click Update Now.
Attach any external drives you wish to scan.
Once updated, click the Settings tab, followed by Detection and Protection and tick Scan for rootkits.
Click the Scan tab, ensure Custom Scan is checked and click Scan Now.
Place a checkmark next to any additional drives you wish to scan.
Note: You may see the following message, "Could not load DDA driver". Click Yes, allow your PC to reboot and continue afterwards.
If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
Upon completion of the scan (or after the reboot), click the History tab.
Click Application Logs and double-click the Scan Log.
Click Copy to Clipboard and paste the log in your next reply.

STEP 4
ESET Online Scan Including External Drive
Note: This scan may take a long time to complete. Please do not browse the Internet whilst your Anti-Virus is disabled.

Please download ESET Online Scan and save the file to your Desktop.
Temporarily disable your anti-virus software. For instructions, please refer to the following link.
Double-click esetsmartinstaller_enu.exe to run the programme.
Agree to the EULA by placing a checkmark next to Yes, I accept the Terms of Use. Then click Start.
Agree to the Terms of Use once more and click Start. Allow components to download.
Place a checkmark next to Enable detection of potentially unwanted applications.
Click Advanced settings. Place a checkmark next to:
- Scan archives
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology
Ensure Remove found threats is unchecked.
Click Change... next to Current scan targets: Operating memory, Local drives
Place a checkmark next to any additional drives you wish to scan and click OK
Click Start.
Wait for the scan to finish. Please be patient as this can take some time.
Upon completion, click . If no threats were found, skip the next two bullet points.
Click and save the file to your Desktop, naming it something such as "MyEsetScan".
Push the Back button.
Place a checkmark next to and click .
Re-enable your anti-virus software.
Copy the contents of the log and paste in your next reply.

Would you like to help others with malware removal? Join our Classroom and learn how!

#82 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 05 February 2015 - 02:22 PM

The Panda Resarch Blog advises that once USB drives have been vaccinated, they cannot be reversed except with a format. If you do this, be sure to back up your data files first or they will be lost during the formatting process.

Ok wait a min. I am a bit confused Regarding the external hard drives. You want me to format them? USB vacination on the excternal drives causes them to not function correctly with windows? So in order to reverse the process, i have to reform the drive? I thought you told me that we are going to scan the drives for infections. These drives have loads of data on them, inlcuding 1-2 TB of data on certain drives. I can not back them up easily unless i transfer all of the files to another external well im vacinating the inflicted drive. What exactly is it you want me to do with this?

Edited by jeff matthews, 05 February 2015 - 02:25 PM.

#83 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 05 February 2015 - 02:25 PM

Vaccinating the drive using Panda will protect you against autorun worms. To reverse the vaccination process the only way is to format the drive.

As there is no reason for you to reverse the vaccination process, there will be no reason to format the drive.

Would you like to help others with malware removal? Join our Classroom and learn how!

#84 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 05 February 2015 - 02:59 PM

Ohhh i see. Well ill take care of that, heck i might as well vacinate all of my drives. Well i am doing this i wanted to bring something to your attention. I am trying to re-install all of my drivers. I went to this website to get them all. I used CPU-Z to find out what model my motherboard is which is a P8Z77-V LK. So i started downloading some of these packages from this site

http://support.asus....7-V LK&p=1&s=39

How ever i am not sure which ones are correct as there are quite alot of files there. so i downloaded the ones i thought were ok. Like the normal chipset, graphics, LAN, USB and audio drivers. Some of which had some problems installing correctly and i had to terminate. After installing all of them, my computer is a bit slower now. I ran a scan on PCpitstop and it says all the drivers are up to date.

http://pcpitstop.com...?conid=25751846

In any case, i created a system restore prior to installing all of these drivers.

In addition Mesoft detected a Pup from the official site for CPu-Z, but it did block it though so i think all is fine. Although i may run another Fubar scan after were all completly finished to see if the PC still remains clean.

When the name of the drive appears in the Panda USB Vaccine dialog box, click the Vaccinate USB drive(s) button.

There is an error that displays that says "NTFS support is disabled. Consult Help" in which case the "Vaccinate Button is greyed out and i am unable to vaccinate the drive.

Edited by jeff matthews, 05 February 2015 - 03:19 PM.

#85 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 05 February 2015 - 05:03 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Update, 2/5/2015 11:27:03 AM, SYSTEM, ASHLEY-PC, Scheduler, Malware Database, 2015.2.4.9, 2015.2.5.8,
Protection, 2/5/2015 11:27:03 AM, SYSTEM, ASHLEY-PC, Protection, Refresh, Starting,
Protection, 2/5/2015 11:27:03 AM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopping,
Protection, 2/5/2015 11:27:03 AM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopped,
Protection, 2/5/2015 11:27:07 AM, SYSTEM, ASHLEY-PC, Protection, Refresh, Success,
Protection, 2/5/2015 11:27:07 AM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Starting,
Protection, 2/5/2015 11:27:07 AM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Started,
Scan, 2/5/2015 11:27:27 AM, SYSTEM, ASHLEY-PC, Manual, Duration:0 min 27 sec, Threat Scan, Cancelled, 0 Malware Detections, 0 Non-Malware Detections,
Scan, 2/5/2015 11:27:27 AM, SYSTEM, ASHLEY-PC, Manual, Duration:0 min 27 sec, Threat Scan, Cancelled, 0 Malware Detections, 0 Non-Malware Detections,
Scan, 2/5/2015 11:27:27 AM, SYSTEM, ASHLEY-PC, Manual, Duration:0 min 27 sec, Threat Scan, Cancelled, 0 Malware Detections, 0 Non-Malware Detections,
Protection, 2/5/2015 1:14:38 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Starting,
Protection, 2/5/2015 1:14:38 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Started,
Protection, 2/5/2015 1:14:38 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Starting,
Protection, 2/5/2015 1:14:38 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Started,
Update, 2/5/2015 1:14:42 PM, SYSTEM, ASHLEY-PC, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1,
Update, 2/5/2015 1:14:43 PM, SYSTEM, ASHLEY-PC, Manual, Rootkit Database, 2014.11.18.1, 2015.2.3.1,
Update, 2/5/2015 1:14:55 PM, SYSTEM, ASHLEY-PC, Manual, Malware Database, 2014.11.20.6, 2015.2.5.9,
Protection, 2/5/2015 1:14:55 PM, SYSTEM, ASHLEY-PC, Protection, Refresh, Starting,
Protection, 2/5/2015 1:14:55 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopping,
Protection, 2/5/2015 1:14:55 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopped,
Protection, 2/5/2015 1:14:59 PM, SYSTEM, ASHLEY-PC, Protection, Refresh, Success,
Protection, 2/5/2015 1:14:59 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Starting,
Protection, 2/5/2015 1:14:59 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Started,
Scan, 2/5/2015 1:39:48 PM, SYSTEM, ASHLEY-PC, Manual, Start:2/5/2015 1:16:40 PM, Duration:21 min 54 sec, Custom Scan, Completed, 0 Malware Detections, 2 Non-Malware Detections,
Protection, 2/5/2015 1:50:51 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Starting,
Protection, 2/5/2015 1:50:51 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Started,
Protection, 2/5/2015 1:50:51 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Starting,
Protection, 2/5/2015 1:50:51 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Started,
Protection, 2/5/2015 1:54:06 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopping,
Protection, 2/5/2015 1:54:06 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Stopped,
Protection, 2/5/2015 1:54:06 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Stopping,
Protection, 2/5/2015 1:54:07 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Stopped,
Protection, 2/5/2015 2:27:18 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Starting,
Protection, 2/5/2015 2:27:18 PM, SYSTEM, ASHLEY-PC, Protection, Malware Protection, Started,
Protection, 2/5/2015 2:27:18 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Starting,
Protection, 2/5/2015 2:27:28 PM, SYSTEM, ASHLEY-PC, Protection, Malicious Website Protection, Started,

(end)

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2/5/2015
Scan Time: 1:16:40 PM
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.02.05.09
Rootkit Database: v2015.02.03.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Chuck

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 389156
Time Elapsed: 21 min, 54 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.Softonic, E:\Back up Ashley\Ashley\Downloads\SoftonicDownloader_for_index-dat-suite.exe, Quarantined, [68aa0713a0ea51e502bd3f1bb14fba46],
PUP.RiskwareTool.CK, E:\Back up K drive\Sony Vegas Pro 12 Build 367 (64 bit patch-KHG) [ChingLiu]\patch - KHG\vegas.pro.12.-patch.exe, Quarantined, [d24030ea2e5c1c1a75274811c042bb45],

Physical Sectors: 0
(No malicious items detected)

(end)

ESET online Scanner Will Be Coming soon..............

EDIT: I think i found where alot of these infections came from, originally planted on my external drive, you will see when i show the log. I am glad we are finally doing a thurough clean-up so i lesson the like hood of re-infection on the multilpe computers on my network. I can't beleace that MBAM found the sony vegas pro keygen. I thought i removed that ALONG time ago. That was quite a few years ago when one of my friends was borrowing my computer. I guess little remnants of that still remain? Unbeliable.

Ok here ya go.

C:\Users\Chuck\Downloads\cpuz64bit-setup.exe   Win32/DownloadAdmin.G potentially unwanted application   deleted - quarantined
E:\Back up Ashley\Ashley\Downloads\cbsidlm-cbsi188-Media_Player_Codec_Pack-ORG-10749065.exe   a variant of Win32/CNETInstaller.B potentially unwanted application   deleted - quarantined
E:\Back up Ashley\Ashley\Downloads\FromDocToPDFCrx.1C2DBB87-AE60-4196-9DB6-FFC3E256EB73.exe   a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application   deleted - quarantined
E:\Back up Ashley\Ashley\Downloads\spsetup127.exe   Win32/Bundled.Toolbar.Google.D potentially unsafe application   deleted - quarantined
E:\Back up Ashley\Ashley\Downloads\zaSetupWeb_110_768_000.exe   Win32/Toolbar.Conduit potentially unwanted application   deleted - quarantined
E:\Back up Ashley\Ashley\Downloads\zaSetupWeb_131_211_000.exe   Win32/Toolbar.Conduit potentially unwanted application   deleted - quarantined
E:\Back up K drive\Laptop Back up\Programs\ffortsetup.exe   a variant of Win32/Toolbar.Conduit.H potentially unwanted application   deleted - quarantined
E:\Back Up Main Desktop Computer\Desktop\back up ashley\cpu-z_1.60-setup-en.exe   a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application   deleted - quarantined

You know it still does says Quarantined. Does this mean that they have all been removed, or can they still be copyewd or launched again onto the main C drive and apparently ESET found that Pup that i downloaded just recently bout the CPu-Z.

Edited by jeff matthews, 05 February 2015 - 05:41 PM.

Advertisements

Register to Remove

#86 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 06 February 2015 - 01:58 PM

Hello,

How ever i am not sure which ones are correct as there are quite alot of files there. so i downloaded the ones i thought were ok.

Questions on which drivers you need to install are better suited in the Microsoft Windows section of this forum.

In addition Mesoft detected a Pup from the official site for CPu-Z, but it did block it though so i think all is fine.
and apparently ESET found that Pup that i downloaded just recently bout the CPu-Z.

The PUP detection isn't for the programme, but for bundled software inside the installer. As long as you unchecked the installation of additional software, you have nothing to worry about.

Although i may run another Fubar scan after were all completly finished to see if the PC still remains clean.

Yes, that's fine.

There is an error that displays that says "NTFS support is disabled. Consult Help" in which case the "Vaccinate Button is greyed out and i am unable to vaccinate the drive.

Strange. I was under the impression Panda USB Vaccine supported NTFS.
As long as your computer is vaccinated, it's protected against Autorun Worms.

PUP.RiskwareTool.CK, E:\Back up K drive\Sony Vegas Pro 12 Build 367 (64 bit patch-KHG) [ChingLiu]\patch - KHG\vegas.pro.12.-patch.exe
I thought i removed that ALONG time ago. That was quite a few years ago when one of my friends was borrowing my computer. I guess little remnants of that still remain? Unbeliable.

It's not exactly a remnant. MBAM detected what appears to be the main executable for the crack.
The following is the warning I provide to users with cracked software. Whilst I'm sure you're already aware of the dangers, I will provide the warning nevertheless.

CRACKED SOFTWARE WARNING

------------------------------

One or more of the identified infections is a result of downloading cracked/pirated/keygen software. Participating in the use of such software is a security risk; your infected computer is evidence of this. Were you aware your machine has cracked software installed? We do not approve of nor support illegal software.

Malware authors promote and release cracked software to spread their infections. I strongly recommend you refrain from participating in this activity; your computer will be reinfected otherwise. Simply visiting a cracked software site can result in infection from exploitation of vulnerabilities in your installed software.

Continuing in this practice will ensure your computer is continuously susceptible to malware infections, remote attacks, exposure of personal information, and identity theft. In some instances an infection may cause so much damage to your system that recovery is not possible and the only option is to reformat your Hard Drive and reinstall your Operating System. Please refer to the following articles for more information.

The Hidden Risks of Using Pirated Software

IDC White paper: The Dangersous World of Counterfeit and Pirated Software

Software Piracy on the Internet: A Threat To Your Securiy

File Sharing, Piracy, and Malware

Pirated software carries malware payload that can cost billions

You know it still does says Quarantined. Does this mean that they have all been removed, or can they still be copyewd or launched again onto the main C drive and apparently ESET found that Pup that i downloaded just recently bout the CPu-Z.

Yes, those files have been removed.

Would you like to help others with malware removal? Join our Classroom and learn how!

#87 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 06 February 2015 - 10:54 PM

Yes i am well aware of the pirated rules and have not used illegal practices like that in a very long time. Some of the data on my externals though are quite old.

Ok well besides the 3.0 Drivers launching at start-up each time i reboot. Everything seems fine. The computer is running very fast. Thanks for your patience and expertise in figuring out this extensive and long project. There is no one else i would go to for computer help, you guys are extremely thorough in every thing you do.

Note: Btw are you aware that there is a script on your website that is failing to run at certain times and i happen to know this is not an issue with the computer cause its happening on all of my machines.

I am going to scan one last time with Fubar to make sure everything is "ALL CLEAN". Besides fixing a few driver issues, i don't see anything else that really needs to be done unless you have any more information to offer. Please make sure to check the logs not only for if there any infections but also if everything is properly installed and configured and all the steps you had me do were done properly. Thanks

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-02-2015
Ran by Ashley at 2015-02-06 21:02:42
Running from C:\Users\Ashley\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{0CB2E2BC-A312-5821-C5C7-A295A1BEFD08}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
CBR Reader (HKLM-x32\...\{EDAAC216-AC73-4152-9654-E12FE5A69F5D}_is1) (Version: - cbrreader.com)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CryptoPrevent (HKLM-x32\...\{5C5B24E7-4694-4049-A222-CCE7D3FAC63F}_is1) (Version: - Foolish IT LLC)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
LucidWizard (HKLM-x32\...\{C1CC26DF-148A-4F68-BE42-EE5214686A71}) (Version: 1.00.14 - ASUSTeK Computer Inc.)
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 5.3 - Paramount Software (UK) Ltd.)
Macrium Reflect Free Edition (Version: 5.3.7256 - Paramount Software (UK) Ltd.) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MCShield ::Anti-Malware Tool:: (HKLM-x32\...\MCShield) (Version: 3.0.5.28 - MyCity)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version: - Panda Security)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Unchecky v0.3.6 (HKLM-x32\...\Unchecky) (Version: 0.3.6 - RaMMicHaeL)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

31-01-2015 03:00:28 Windows Update
31-01-2015 09:54:04 Installed Macrium Reflect Free Edition
02-02-2015 03:00:20 Windows Update
03-02-2015 22:14:58 Removed Adobe Reader X (10.1.3) MUI.
05-02-2015 12:14:36 Removed DriverUpdate
05-02-2015 12:26:43 Before Update Driver installs
06-02-2015 16:43:10 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 18:34 - 2015-02-05 15:43 - 00001993 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com

There are 4 more lines.

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {94610BBC-50B9-4745-B90F-CC402E6F08F5} - System32\Tasks\avastBCLRestartS-1-5-21-1083731851-1158676448-2241790815-1000 => Firefox.exe
Task: {9DD8807A-69C6-4B05-BE5F-9391069B9802} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
Task: {B8D1FC85-D73F-44DC-8551-7E6F3939D49A} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {C883326F-B221-4151-ADBC-731CD7128CDA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {FF893434-258A-4D20-B311-B86897DD23D0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-29] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) ==============

2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-06-01 01:42 - 2012-06-01 01:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-01-29 12:45 - 2010-10-21 01:52 - 00586880 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
2012-06-11 12:45 - 2012-06-11 12:45 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-02-05 13:13 - 2015-02-05 13:13 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15020501\algo.dll
2015-01-29 12:43 - 2015-02-05 15:43 - 00027136 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2015-01-29 12:43 - 2010-06-28 18:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-01-29 14:10 - 2015-01-29 14:10 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-03 22:19 - 2015-02-03 22:19 - 00058880 _____ () C:\Program Files (x86)\Unchecky\bin\collector.dll
2015-01-29 12:34 - 2015-01-23 02:37 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Other Registry Areas =====================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1083731851-1158676448-2241790815-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1083731851-1158676448-2241790815-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== Accounts: =============================

Administrator (S-1-5-21-1083731851-1158676448-2241790815-500 - Administrator - Disabled)
Ashley (S-1-5-21-1083731851-1158676448-2241790815-1000 - Administrator - Enabled) => C:\Users\Ashley
Chuck (S-1-5-21-1083731851-1158676448-2241790815-1001 - Administrator - Enabled) => C:\Users\Chuck
Guest (S-1-5-21-1083731851-1158676448-2241790815-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (02/06/2015 04:49:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0x40000015
Fault offset: 0x00093534
Faulting process id: 0xaa4
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (02/05/2015 03:44:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 01:54:40 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:54:36 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:54:36 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:53:18 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:53:18 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:53:10 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/05/2015 01:41:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 00:49:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x830
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

System errors:
=============
Error: (02/06/2015 04:49:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (02/05/2015 02:31:57 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (02/05/2015 02:31:56 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (02/05/2015 00:49:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (02/05/2015 00:44:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (02/05/2015 11:34:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (02/03/2015 10:51:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (02/03/2015 10:09:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (01/29/2015 06:30:08 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Internet Explorer 8 Compatibility View List for Windows 7 for x64-based Systems (KB2598845).

Error: (01/29/2015 06:23:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%16405

Microsoft Office Sessions:
=========================
Error: (02/06/2015 04:49:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a824000001500093534aa401d0419d97e0cc34C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe321a933d-ae63-11e4-b8d3-e03f496ef832

Error: (02/05/2015 03:44:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 01:54:40 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:54:36 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:54:36 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:53:18 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:53:18 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:53:10 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Chuck\Downloads\esetsmartinstaller_enu.exe

Error: (02/05/2015 01:41:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 00:49:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82unknown0.0.0.000000000c00000050000000083001d04184bb3a90b4C:\Program Files (x86)\Secunia\PSI\PSIA.exeunknown690458ea-ad78-11e4-8067-e03f496ef832

==================== Memory info ===========================

Processor: Intel® Core™ i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 20%
Total physical RAM: 8134.48 MB
Available physical RAM: 6443.64 MB
Total Pagefile: 16267.15 MB
Available Pagefile: 13117.33 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:162.66 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: B6ED2AF7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2015
Ran by Ashley (administrator) on ASHLEY-PC on 06-02-2015 21:02:20
Running from C:\Users\Ashley\Desktop
Loaded Profiles: Ashley & Chuck (Available profiles: Ashley & Chuck)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AMD) C:\Windows\System32\atieclxx.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-06-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-29] (AVAST Software)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [4997872 2014-12-31] (Emsisoft GmbH)
HKLM Group Policy restriction on software: *.pub*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.pif <====== ATTENTION
HKLM Group Policy restriction on software: lsassvrtdbks.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.exe <====== ATTENTION
HKLM Group Policy restriction on software: vssadmin.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles(x86)%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.scr <====== ATTENTION
HKLM Group Policy restriction on software: lsassw86s.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.exe <====== ATTENTION
HKLM Group Policy restriction on software: ** <====== ATTENTION
HKLM Group Policy restriction on software: scsvserv.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *:\$Recycle.Bin <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.com <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.exe <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\Appdata\Roaming\Microsoft\Windows\IEUpdate\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %systemdrive%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: syskey.exe <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.exe <====== ATTENTION
HKLM Group Policy restriction on software: cipher.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.pif <====== ATTENTION
HKU\S-1-5-21-1083731851-1158676448-2241790815-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1083731851-1158676448-2241790815-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-1083731851-1158676448-2241790815-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...ols/pcmatic.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.65

FireFox:
========
FF ProfilePath: C:\Users\Ashley\AppData\Roaming\Mozilla\Firefox\Profiles\0897vr02.default
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: https://search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://www.yahoo.co...ast&type=agc511
FF Keyword.URL: https://search.yahoo.com/yhs/search
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Users\Ashley\AppData\Roaming\Mozilla\Firefox\Profiles\0897vr02.default\searchplugins\yahoo-avast.xml
FF Extension: WOT - C:\Users\Ashley\AppData\Roaming\Mozilla\Firefox\Profiles\0897vr02.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-01-29]
FF Extension: Adblock Plus - C:\Users\Ashley\AppData\Roaming\Mozilla\Firefox\Profiles\0897vr02.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-29]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-29]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-29]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4920104 2014-12-31] (Emsisoft GmbH)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-29] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2015-01-29] (AVAST Software)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3272656 2014-07-21] (Paramount Software UK Ltd)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [126568 2015-02-03] (RaMMicHaeL)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH)
S3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-23] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-29] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2015-01-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [87912 2015-01-29] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449936 2015-01-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-29] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-29] ()
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-06 21:00 - 2015-02-06 21:00 - 00000000 ____D () C:\Users\Ashley\Desktop\FRST-OlderVersion
2015-02-05 13:54 - 2015-02-05 13:54 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-05 13:53 - 2015-02-05 13:53 - 02347384 _____ (ESET) C:\Users\Chuck\Desktop\esetsmartinstaller_enu.exe
2015-02-05 13:52 - 2015-02-05 13:53 - 02347384 _____ (ESET) C:\Users\Chuck\Downloads\esetsmartinstaller_enu.exe
2015-02-05 13:14 - 2015-02-06 16:42 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-05 13:14 - 2015-02-05 13:14 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-05 13:14 - 2015-02-05 13:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-05 13:14 - 2015-02-05 13:14 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-05 13:14 - 2014-11-21 06:23 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-05 13:14 - 2014-11-21 06:23 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-05 13:14 - 2014-11-21 06:23 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-05 13:13 - 2015-02-05 13:14 - 20447176 _____ (Malwarebytes Corporation ) C:\Users\Chuck\Downloads\mbam-setup.exe
2015-02-05 13:10 - 2015-02-05 15:43 - 00000000 ____D () C:\ProgramData\MCShield
2015-02-05 13:10 - 2015-02-05 13:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2015-02-05 13:10 - 2015-02-05 13:10 - 00000000 ____D () C:\Program Files (x86)\MCShield
2015-02-05 13:09 - 2015-02-05 13:09 - 02856736 _____ (MyCity) C:\Users\Chuck\Downloads\MCShield-Setup.exe
2015-02-05 12:53 - 2015-02-05 12:53 - 00000000 __SHD () C:\Users\Chuck\AppData\Local\EmieUserList
2015-02-05 12:53 - 2015-02-05 12:53 - 00000000 __SHD () C:\Users\Chuck\AppData\Local\EmieSiteList
2015-02-05 12:53 - 2015-02-05 12:53 - 00000000 __SHD () C:\Users\Chuck\AppData\Local\EmieBrowserModeList
2015-02-05 12:44 - 2015-02-05 12:44 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-02-05 12:44 - 2012-06-12 17:10 - 04060560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-02-05 12:44 - 2012-06-11 13:44 - 00290813 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-02-05 12:44 - 2012-06-08 15:18 - 03615888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-02-05 12:44 - 2012-06-06 10:14 - 00584320 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-02-05 12:44 - 2012-06-06 09:44 - 00869520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-02-05 12:44 - 2012-06-01 08:37 - 02674320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-02-05 12:44 - 2012-05-10 14:22 - 01262696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-02-05 12:44 - 2012-02-21 19:45 - 02605400 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-02-05 12:44 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2015-02-05 12:44 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2015-02-05 12:44 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-02-05 12:44 - 2011-12-13 16:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-02-05 12:44 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-02-05 12:44 - 2011-09-02 13:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2015-02-05 12:44 - 2011-09-02 13:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2015-02-05 12:44 - 2011-09-02 13:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2015-02-05 12:44 - 2011-03-17 11:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2015-02-05 12:44 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-02-05 12:44 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-02-05 12:44 - 2010-11-03 17:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-02-05 12:44 - 2010-07-22 15:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-02-05 12:44 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-02-05 12:44 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-02-05 12:44 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-02-05 12:44 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-02-05 12:43 - 2012-06-05 10:38 - 05096448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-02-05 12:43 - 2012-05-31 17:08 - 00105616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-02-05 12:43 - 2012-05-17 10:29 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-02-05 12:43 - 2012-05-17 10:29 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-02-05 12:43 - 2012-05-17 10:29 - 00141152 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-02-05 12:43 - 2012-05-17 10:29 - 00123744 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-02-05 12:43 - 2012-05-17 10:29 - 00074592 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-02-05 12:43 - 2012-04-03 17:42 - 01345368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2015-02-05 12:43 - 2012-04-03 17:42 - 01015640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-02-05 12:43 - 2012-02-17 15:54 - 00396632 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-02-05 12:43 - 2012-02-14 00:05 - 08363864 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2015-02-05 12:43 - 2011-12-18 17:58 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2015-02-05 12:42 - 2012-04-10 13:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-02-05 12:42 - 2012-03-08 11:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-02-05 12:42 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-02-05 12:42 - 2012-01-23 22:30 - 00537456 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2015-02-05 12:42 - 2012-01-23 22:30 - 00524656 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2015-02-05 12:42 - 2012-01-23 22:30 - 00449392 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2015-02-05 12:42 - 2011-08-23 16:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-02-05 12:42 - 2011-05-31 08:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-02-05 12:42 - 2010-10-03 12:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-02-05 12:42 - 2010-09-27 08:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-02-05 12:27 - 2015-02-05 12:27 - 00000000 ____D () C:\Windows\Intel_Chipset_V9301019_LK_XPWin7
2015-02-05 12:27 - 2015-02-05 12:27 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\WinRAR
2015-02-05 12:18 - 2015-02-05 12:18 - 00003042 _____ () C:\Windows\System32\Tasks\PandaUSBVaccine
2015-02-05 12:18 - 2015-02-05 12:18 - 00000000 ____D () C:\ProgramData\Panda Security
2015-02-05 12:18 - 2015-02-05 12:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2015-02-05 12:18 - 2015-02-05 12:18 - 00000000 ____D () C:\Program Files (x86)\Panda USB Vaccine
2015-02-05 12:17 - 2015-02-05 12:17 - 00848856 _____ (Panda Security ) C:\Users\Chuck\Downloads\USBVaccineSetup.exe
2015-02-05 12:17 - 2015-02-05 12:17 - 00848856 _____ (Panda Security ) C:\Users\Chuck\Desktop\USBVaccineSetup.exe
2015-02-05 12:12 - 2015-02-05 12:25 - 281932656 _____ () C:\Users\Chuck\Downloads\Intel_VGA_Driver_V917102828_Win7_8.zip
2015-02-05 12:12 - 2015-02-05 12:14 - 19659222 _____ () C:\Users\Chuck\Downloads\Realtek_LAN_V5796_V761_XPWin7.zip
2015-02-05 12:12 - 2015-02-05 12:13 - 05945172 _____ () C:\Users\Chuck\Downloads\Intel_USB3_V105235_Win7.zip
2015-02-05 12:11 - 2015-02-05 12:25 - 251838139 _____ () C:\Users\Chuck\Downloads\Intel_Chipset_V9301019_LK_XPWin7.zip
2015-02-05 12:11 - 2015-02-05 12:22 - 145789471 _____ () C:\Users\Chuck\Downloads\Realtek_Audio_V51006657_V6016657_XPWin7_8.zip
2015-02-05 12:03 - 2015-02-05 12:03 - 01577464 _____ ( ) C:\Users\Chuck\Downloads\cpu-z_1.71.1-en.exe
2015-02-05 12:03 - 2015-02-05 12:03 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-02-05 12:03 - 2015-02-05 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-02-05 12:03 - 2015-02-05 12:03 - 00000000 ____D () C:\Program Files\CPUID
2015-02-05 12:02 - 2015-02-05 12:02 - 00000774 _____ () C:\Users\Chuck\Desktop\Install CPU-Z (64-bit).lnk
2015-02-05 11:58 - 2015-02-05 11:58 - 00834416 _____ (SlimWare Utilities, Inc.) C:\Users\Chuck\Downloads\DriverUpdate-setup.exe
2015-02-05 11:58 - 2015-02-05 11:58 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2015-02-05 11:58 - 2015-02-05 11:58 - 00000000 ____D () C:\Users\Chuck\AppData\Local\SlimWare Utilities Inc
2015-02-05 11:48 - 2015-02-05 11:48 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-02-05 11:46 - 2015-02-06 21:00 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2015-02-05 11:46 - 2015-02-05 11:46 - 00001095 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-02-05 11:46 - 2015-02-05 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-02-05 11:42 - 2015-02-05 11:45 - 176738312 _____ (Emsisoft Ltd. ) C:\Users\Ashley\Downloads\EmsisoftAntiMalwareSetup(1).exe
2015-02-05 11:35 - 2015-02-05 11:35 - 00136405 _____ () C:\Users\Ashley\Downloads\hosts.zip
2015-02-03 22:19 - 2015-02-05 11:59 - 00000000 ____D () C:\ProgramData\Unchecky
2015-02-03 22:19 - 2015-02-03 22:19 - 00906432 _____ (RaMMicHaeL) C:\Users\Ashley\Downloads\unchecky_setup.exe
2015-02-03 22:19 - 2015-02-03 22:19 - 00001023 _____ () C:\Users\Public\Desktop\Unchecky.lnk
2015-02-03 22:19 - 2015-02-03 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2015-02-03 22:19 - 2015-02-03 22:19 - 00000000 ____D () C:\Program Files (x86)\Unchecky
2015-02-03 22:17 - 2015-02-03 22:17 - 04551776 _____ (Krzysztof Kowalczyk) C:\Users\Ashley\Downloads\SumatraPDF-3.0-install.exe
2015-02-03 22:17 - 2015-02-03 22:17 - 00001933 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2015-02-03 22:17 - 2015-02-03 22:17 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\SumatraPDF
2015-02-03 22:17 - 2015-02-03 22:17 - 00000000 ____D () C:\Program Files (x86)\SumatraPDF
2015-02-03 22:08 - 2015-02-03 22:08 - 00001073 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2015-02-03 22:08 - 2015-02-03 22:08 - 00000000 ____D () C:\Users\Chuck\AppData\Local\Secunia PSI
2015-02-03 22:08 - 2015-02-03 22:08 - 00000000 ____D () C:\Program Files (x86)\Secunia
2015-02-03 22:07 - 2015-02-03 22:07 - 05490752 _____ (Secunia) C:\Users\Ashley\Downloads\PSISetup.exe
2015-02-03 21:55 - 2015-02-05 11:51 - 00000000 ____D () C:\ProgramData\TEMP
2015-02-03 21:55 - 2015-02-03 21:55 - 00001083 _____ () C:\Users\Public\Desktop\SpywareBlaster.lnk
2015-02-03 21:55 - 2015-02-03 21:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-02-03 21:55 - 2015-02-03 21:55 - 00000000 ____D () C:\ProgramData\Licenses
2015-02-03 21:55 - 2015-02-03 21:55 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2015-02-03 21:55 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2015-02-03 21:54 - 2015-02-03 21:55 - 04095448 _____ (BrightFort LLC ) C:\Users\Ashley\Downloads\spywareblastersetup50.exe
2015-02-03 21:43 - 2015-02-03 21:43 - 00053248 _____ () C:\Windows\SysWOW64\zlib.dll
2015-02-03 21:43 - 2015-02-03 21:43 - 00001216 _____ () C:\Users\Public\Desktop\CryptoPrevent.lnk
2015-02-03 21:43 - 2015-02-03 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foolish IT
2015-02-03 21:43 - 2015-02-03 21:43 - 00000000 ____D () C:\ProgramData\Foolish IT
2015-02-03 21:43 - 2015-02-03 21:43 - 00000000 ____D () C:\Program Files (x86)\Foolish IT
2015-02-03 21:42 - 2015-02-03 21:42 - 00971528 _____ (Foolish IT LLC ) C:\Users\Ashley\Downloads\CryptoPreventSetup.exe
2015-02-03 21:29 - 2015-02-03 21:32 - 176521736 _____ () C:\Users\Ashley\Downloads\EmsisoftAntiMalwareSetup.exe
2015-02-03 21:23 - 2015-02-03 21:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-03 21:22 - 2015-02-03 21:23 - 20447120 _____ (Malwarebytes Corporation ) C:\Users\Ashley\Downloads\mbam_premium.exe
2015-02-03 11:02 - 2015-02-03 11:02 - 00124810 _____ () C:\Users\Chuck\Desktop\Grants Pass Weather - AccuWeather Forecast for OR 97526.htm
2015-02-03 11:02 - 2015-02-03 11:02 - 00124645 _____ () C:\Users\Chuck\Desktop\Medford Weather - AccuWeather Forecast for OR 97501.htm
2015-02-03 11:02 - 2015-02-03 11:02 - 00000000 ____D () C:\Users\Chuck\Desktop\Medford Weather - AccuWeather Forecast for OR 97501_files
2015-02-03 11:02 - 2015-02-03 11:02 - 00000000 ____D () C:\Users\Chuck\Desktop\Grants Pass Weather - AccuWeather Forecast for OR 97526_files
2015-02-03 11:01 - 2015-02-03 11:01 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\Macromedia
2015-02-03 11:01 - 2015-02-03 11:01 - 00000000 ____D () C:\Users\Chuck\AppData\Local\Macromedia
2015-02-03 11:00 - 2015-02-03 11:00 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\Mozilla
2015-02-03 11:00 - 2015-02-03 11:00 - 00000000 ____D () C:\Users\Chuck\AppData\Local\Mozilla
2015-02-03 10:59 - 2015-02-03 10:59 - 00109296 _____ () C:\Users\Chuck\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-03 10:59 - 2015-02-03 10:59 - 00001417 _____ () C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-03 10:59 - 2015-02-03 10:59 - 00000020 ___SH () C:\Users\Chuck\ntuser.ini
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\AVAST Software
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\ATI
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck\AppData\Roaming\Adobe
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck\AppData\Local\VirtualStore
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck\AppData\Local\ATI
2015-02-03 10:59 - 2015-02-03 10:59 - 00000000 ____D () C:\Users\Chuck
2015-02-03 10:59 - 2015-01-31 03:34 - 00000000 ____D () C:\Users\Chuck\AppData\Local\Microsoft Help
2015-02-03 10:59 - 2009-07-13 20:54 - 00000000 ___RD () C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-03 10:59 - 2009-07-13 20:49 - 00000000 ___RD () C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-31 10:12 - 2015-01-31 10:13 - 00000000 ____D () C:\Users\Ashley\Documents\Reflect
2015-01-31 09:54 - 2015-01-31 09:54 - 00002483 _____ () C:\Users\Public\Desktop\Reflect.lnk
2015-01-31 09:54 - 2015-01-31 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2015-01-31 09:54 - 2015-01-31 09:54 - 00000000 ____D () C:\Program Files\Macrium
2015-01-31 09:53 - 2015-01-31 09:54 - 00282484 _____ () C:\Reflect_Install.log
2015-01-31 09:53 - 2014-12-12 21:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-31 09:53 - 2014-12-12 19:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-01-31 09:48 - 2015-01-31 09:53 - 00000000 ____D () C:\Users\Ashley\Downloads\Macrium
2015-01-31 09:48 - 2015-01-31 09:53 - 00000000 ____D () C:\ProgramData\Macrium
2015-01-31 09:47 - 2015-01-31 09:47 - 02292720 _____ (Paramount Software UK Ltd) C:\Users\Ashley\Downloads\reflectdl.exe
2015-01-31 09:43 - 2015-01-31 09:43 - 00003264 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-1083731851-1158676448-2241790815-1000
2015-01-31 03:34 - 2015-01-31 03:34 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2015-01-31 03:34 - 2015-01-31 03:34 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2015-01-31 03:01 - 2014-06-26 18:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-01-31 03:01 - 2014-06-26 17:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-01-30 13:59 - 2014-11-21 18:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-01-30 13:59 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-01-30 13:59 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-01-30 13:59 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-01-30 13:59 - 2014-07-08 18:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-30 13:59 - 2014-07-08 18:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-01-30 13:59 - 2014-07-08 17:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-01-30 13:59 - 2014-07-08 17:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-01-30 13:59 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-01-30 13:59 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-01-30 13:59 - 2014-07-08 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-01-30 13:59 - 2014-07-08 14:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2015-01-30 13:59 - 2014-07-08 14:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2015-01-30 13:59 - 2014-06-23 19:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-01-30 13:59 - 2014-06-23 18:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-01-30 13:59 - 2013-11-26 00:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-01-30 13:59 - 2013-11-23 10:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-01-30 13:59 - 2013-11-23 09:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-01-30 13:59 - 2013-11-22 14:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-01-30 13:59 - 2011-03-10 22:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-01-30 13:59 - 2011-03-10 22:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-01-30 13:59 - 2011-03-10 22:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-01-30 13:59 - 2011-03-10 22:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-01-30 13:59 - 2011-03-10 22:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-01-30 13:59 - 2011-03-10 22:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-01-30 13:59 - 2011-03-10 22:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-01-30 13:59 - 2011-03-10 21:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-01-30 13:59 - 2011-03-10 21:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2015-01-30 13:59 - 2011-03-10 20:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-30 13:59 - 2011-02-24 22:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-30 13:59 - 2011-02-24 21:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-01-30 13:56 - 2012-02-10 22:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-01-30 13:56 - 2012-02-10 22:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-01-30 02:20 - 2015-02-06 21:01 - 00025480 _____ () C:\Users\Ashley\Desktop\Addition.txt
2015-01-30 02:19 - 2015-02-06 21:02 - 00025639 _____ () C:\Users\Ashley\Desktop\FRST.txt
2015-01-30 02:19 - 2015-02-06 21:02 - 00000000 ____D () C:\FRST
2015-01-30 02:18 - 2015-02-06 21:00 - 02131968 _____ (Farbar) C:\Users\Ashley\Desktop\FRST64.exe
2015-01-30 02:18 - 2015-01-30 02:18 - 02130432 _____ (Farbar) C:\Users\Ashley\Downloads\FRST64.exe
2015-01-29 18:34 - 2014-11-10 19:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-29 18:34 - 2014-11-10 18:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-01-29 18:14 - 2015-01-29 18:14 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-01-29 18:14 - 2015-01-29 18:14 - 00000000 ____D () C:\Windows\system32\appraiser
2015-01-29 17:25 - 2013-05-09 21:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-01-29 17:25 - 2013-05-09 21:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-01-29 17:25 - 2013-05-09 20:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-01-29 17:25 - 2013-05-09 20:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-01-29 17:11 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-01-29 17:08 - 2015-01-29 17:08 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-01-29 17:08 - 2015-01-29 17:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-01-29 17:08 - 2015-01-29 17:08 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-29 17:08 - 2015-01-29 17:08 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-01-29 17:08 - 2015-01-29 17:08 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-01-29 17:08 - 2015-01-29 17:08 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-01-29 17:08 - 2015-01-29 17:08 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-01-29 17:08 - 2015-01-29 17:08 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-01-29 17:08 - 2015-01-29 17:08 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-01-29 17:08 - 2015-01-29 17:08 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-01-29 17:08 - 2015-01-29 17:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-01-29 17:08 - 2015-01-29 17:08 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-01-29 17:08 - 2015-01-29 17:08 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-01-29 17:00 - 2015-01-29 17:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-01-29 16:58 - 2015-01-29 17:11 - 00013213 _____ () C:\Windows\IE11_main.log
2015-01-29 16:55 - 2015-01-29 16:55 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\Macromedia
2015-01-29 16:55 - 2015-01-29 16:55 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\Adobe
2015-01-29 16:55 - 2015-01-29 16:55 - 00000000 ____D () C:\Users\Ashley\AppData\Local\Macromedia
2015-01-29 15:32 - 2014-10-17 18:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-29 15:32 - 2014-10-17 17:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-01-29 15:32 - 2014-07-06 18:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-01-29 15:32 - 2014-07-06 18:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-01-29 15:32 - 2014-07-06 18:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-01-29 15:32 - 2014-07-06 18:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-01-29 15:32 - 2014-07-06 17:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-01-29 15:32 - 2014-07-06 17:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-01-29 15:32 - 2014-07-06 17:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-01-29 15:32 - 2014-07-06 17:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-01-29 15:31 - 2012-07-25 19:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-01-29 15:31 - 2012-07-25 19:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-29 15:31 - 2012-07-25 19:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-29 15:31 - 2012-07-25 19:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-29 15:31 - 2012-07-25 19:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-01-29 15:31 - 2012-07-25 18:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-29 15:31 - 2012-07-25 18:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-29 15:31 - 2012-06-02 06:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-01-29 15:19 - 2015-01-29 15:25 - 00000000 ____D () C:\Users\Ashley\Documents\DC Comics
2015-01-29 15:19 - 2012-02-29 22:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-01-29 15:19 - 2012-02-29 22:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-01-29 15:19 - 2012-02-29 21:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-01-29 15:13 - 2015-01-29 15:15 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-29 15:13 - 2014-12-31 13:12 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-29 15:11 - 2014-06-30 14:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-01-29 15:11 - 2014-06-30 14:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2015-01-29 15:11 - 2014-06-05 22:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-01-29 15:11 - 2014-06-05 22:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-01-29 15:11 - 2014-03-09 13:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-01-29 15:11 - 2014-03-09 13:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-01-29 15:11 - 2014-03-09 13:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2015-01-29 15:11 - 2014-03-09 13:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2015-01-29 15:09 - 2015-01-29 15:09 - 01640406 _____ (cbrreader.com ) C:\Users\Ashley\Downloads\cbrreader_setup.exe
2015-01-29 15:09 - 2015-01-29 15:09 - 00001030 _____ () C:\Users\Public\Desktop\CBR Reader.lnk
2015-01-29 15:09 - 2015-01-29 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CBR Reader
2015-01-29 15:09 - 2015-01-29 15:09 - 00000000 ____D () C:\Program Files (x86)\CBR Reader
2015-01-29 15:06 - 2015-02-06 21:00 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 15:06 - 2015-02-04 11:00 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-29 15:06 - 2015-02-04 11:00 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-29 15:06 - 2015-02-04 11:00 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-29 15:06 - 2015-01-29 15:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-01-29 15:06 - 2015-01-29 15:06 - 00000000 ____D () C:\Windows\system32\Macromed
2015-01-29 15:04 - 2015-01-29 15:06 - 00000000 ____D () C:\Users\Ashley\AppData\Local\Adobe
2015-01-29 14:41 - 2014-12-11 21:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-29 14:41 - 2014-12-11 21:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-29 14:41 - 2014-12-11 21:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-29 14:41 - 2014-12-11 21:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-29 14:41 - 2014-12-11 21:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-29 14:41 - 2014-12-11 21:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-29 14:41 - 2014-12-11 21:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-29 14:41 - 2014-12-11 09:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-29 14:41 - 2013-08-01 18:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-01-29 14:41 - 2013-08-01 18:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-01-29 14:41 - 2013-08-01 17:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-01-29 14:41 - 2013-08-01 16:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-01-29 14:22 - 2015-01-29 14:22 - 00016819 _____ () C:\Users\Ashley\Desktop\dds.txt
2015-01-29 14:22 - 2015-01-29 14:22 - 00007038 _____ () C:\Users\Ashley\Desktop\attach.txt
2015-01-29 14:21 - 2015-01-29 14:20 - 00688992 ____R (Swearware) C:\Users\Ashley\Desktop\dds.com
2015-01-29 14:20 - 2015-01-29 14:20 - 00688992 _____ (Swearware) C:\Users\Ashley\Downloads\dds.com
2015-01-29 14:12 - 2015-01-29 14:12 - 00002030 _____ () C:\Users\Public\Desktop\Avast SafeZone.lnk
2015-01-29 14:12 - 2015-01-29 14:12 - 00001970 _____ () C:\Users\Public\Desktop\Avast Internet Security.lnk
2015-01-29 14:12 - 2015-01-29 14:12 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\AVAST Software
2015-01-29 14:12 - 2015-01-29 14:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-29 14:11 - 2015-02-05 12:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-29 14:11 - 2015-01-29 14:11 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-29 14:11 - 2015-01-29 14:11 - 00087912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-29 14:11 - 2015-01-29 14:10 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2015-01-29 14:10 - 2015-01-29 14:10 - 00449936 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2015-01-29 14:10 - 2015-01-29 14:10 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-29 14:10 - 2015-01-29 14:10 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-29 14:10 - 2015-01-29 14:10 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-29 14:10 - 2015-01-29 11:24 - 00007616 _____ () C:\Users\Ashley\Desktop\bookmarks.html
2015-01-29 13:59 - 2011-04-08 22:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-29 13:59 - 2011-04-08 21:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-01-29 13:56 - 2014-10-13 18:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-01-29 13:56 - 2014-10-13 18:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-01-29 13:56 - 2014-10-13 18:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-01-29 13:56 - 2014-10-13 17:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-01-29 13:56 - 2014-10-13 17:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-01-29 13:55 - 2014-01-27 18:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-01-29 13:55 - 2013-10-29 18:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-01-29 13:55 - 2013-10-29 18:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-01-29 13:55 - 2013-07-04 04:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-01-29 13:55 - 2013-07-04 03:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-01-29 13:55 - 2013-03-18 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-01-29 13:55 - 2011-06-15 21:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-01-29 13:55 - 2011-06-15 20:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-01-29 13:55 - 2011-06-15 02:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-01-29 13:55 - 2011-06-15 02:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-01-29 13:55 - 2011-06-15 02:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-01-29 13:55 - 2011-06-15 02:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-01-29 13:55 - 2011-06-15 00:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-01-29 13:55 - 2011-06-15 00:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-01-29 13:55 - 2011-06-15 00:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-01-29 13:55 - 2011-06-15 00:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-01-29 13:55 - 2011-06-15 00:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-01-29 13:54 - 2013-07-08 21:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-01-29 13:54 - 2013-07-08 20:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-01-29 13:54 - 2012-10-09 10:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-01-29 13:54 - 2012-10-09 10:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-01-29 13:54 - 2012-10-09 09:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-01-29 13:54 - 2012-10-09 09:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-01-29 13:54 - 2012-01-04 02:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-01-29 13:54 - 2012-01-04 00:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-01-29 13:54 - 2011-10-25 21:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-01-29 13:54 - 2011-10-25 20:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-01-29 13:54 - 2010-12-23 02:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-01-29 13:54 - 2010-12-23 02:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-01-29 13:54 - 2010-12-23 02:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-01-29 13:54 - 2010-12-22 21:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-01-29 13:54 - 2010-12-22 21:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-01-29 13:54 - 2010-12-22 21:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2015-01-29 13:53 - 2014-12-18 19:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-01-29 13:53 - 2014-12-03 18:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-01-29 13:53 - 2014-12-03 18:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-01-29 13:53 - 2014-12-01 15:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-01-29 13:53 - 2014-08-01 03:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-01-29 13:53 - 2014-08-01 03:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-01-29 13:53 - 2014-04-24 18:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-01-29 13:53 - 2014-04-24 18:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-01-29 13:53 - 2013-10-05 12:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-29 13:53 - 2013-10-05 11:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-01-29 13:53 - 2013-07-08 21:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-01-29 13:53 - 2013-07-08 21:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-01-29 13:53 - 2013-07-08 20:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-01-29 13:53 - 2013-07-08 20:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-01-29 13:53 - 2011-11-16 22:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-01-29 13:53 - 2011-11-16 21:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-01-29 13:53 - 2011-07-08 18:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-01-29 13:53 - 2011-05-03 21:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-01-29 13:53 - 2011-05-03 21:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-01-29 13:53 - 2011-05-03 21:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-01-29 13:53 - 2011-05-03 21:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-01-29 13:53 - 2011-05-03 21:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-01-29 13:53 - 2011-05-03 21:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-01-29 13:53 - 2011-05-03 21:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-01-29 13:53 - 2011-05-03 21:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-01-29 13:53 - 2011-05-03 21:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-01-29 13:53 - 2011-05-03 20:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-01-29 13:53 - 2011-05-03 20:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-01-29 13:53 - 2011-05-03 20:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-01-29 13:53 - 2011-05-03 20:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-01-29 13:53 - 2011-05-03 20:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-01-29 13:53 - 2011-05-03 20:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-01-29 13:53 - 2011-05-03 20:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-01-29 13:53 - 2011-05-03 20:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-01-29 13:53 - 2011-05-03 20:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-01-29 13:53 - 2011-04-26 18:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-29 13:53 - 2011-04-26 18:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-01-29 13:52 - 2014-12-18 17:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-29 13:52 - 2014-12-05 20:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-29 13:52 - 2014-12-05 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-29 13:52 - 2014-12-05 19:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2015-01-29 13:52 - 2014-06-18 14:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-01-29 13:52 - 2014-06-17 18:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-01-29 13:52 - 2014-06-17 17:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-01-29 13:52 - 2014-04-04 18:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-29 13:52 - 2014-04-04 18:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-29 13:52 - 2014-03-26 06:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-01-29 13:52 - 2014-03-26 06:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-01-29 13:52 - 2014-03-26 06:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-01-29 13:52 - 2014-03-26 06:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-01-29 13:52 - 2014-01-28 18:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-29 13:52 - 2014-01-28 18:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-01-29 13:52 - 2013-11-26 03:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-29 13:52 - 2013-10-18 18:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-01-29 13:52 - 2013-10-18 17:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-01-29 13:52 - 2013-10-03 18:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-01-29 13:52 - 2013-10-03 17:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-01-29 13:52 - 2011-12-29 22:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-01-29 13:52 - 2011-12-29 21:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2015-01-29 13:51 - 2014-08-20 22:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-29 13:51 - 2014-08-20 22:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-01-29 13:51 - 2014-08-20 22:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-01-29 13:51 - 2014-08-20 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-01-29 13:51 - 2014-06-06 02:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-01-29 13:51 - 2014-06-06 01:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-01-29 13:51 - 2014-05-29 22:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-01-29 13:51 - 2013-12-03 18:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-01-29 13:51 - 2013-12-03 18:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-01-29 13:51 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-01-29 13:51 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-01-29 13:51 - 2013-12-03 18:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-01-29 13:51 - 2013-12-03 18:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-01-29 13:51 - 2013-12-03 18:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-01-29 13:51 - 2013-12-03 18:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-01-29 13:51 - 2013-12-03 18:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-01-29 13:51 - 2013-12-03 18:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-01-29 13:51 - 2013-12-03 18:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-01-29 13:51 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-01-29 13:51 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-01-29 13:51 - 2013-12-03 18:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-01-29 13:51 - 2013-12-03 17:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-01-29 13:51 - 2013-12-03 17:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-01-29 13:51 - 2013-12-03 17:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-01-29 13:51 - 2013-12-03 17:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-01-29 13:51 - 2013-11-26 17:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-01-29 13:51 - 2013-11-26 17:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-01-29 13:51 - 2013-11-26 17:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-01-29 13:51 - 2013-11-26 17:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-01-29 13:51 - 2013-11-26 17:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-01-29 13:51 - 2013-10-03 18:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-01-29 13:51 - 2013-10-03 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-01-29 13:51 - 2013-10-03 17:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-01-29 13:51 - 2013-10-03 17:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-01-29 13:51 - 2013-08-04 18:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-01-29 13:51 - 2013-07-25 01:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-01-29 13:51 - 2013-07-25 00:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-01-29 13:51 - 2013-06-25 14:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-01-29 13:51 - 2013-06-05 21:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-01-29 13:51 - 2013-06-05 21:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-01-29 13:51 - 2013-06-05 21:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-01-29 13:51 - 2013-06-05 21:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-01-29 13:51 - 2013-06-05 20:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-01-29 13:51 - 2013-06-05 20:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-01-29 13:51 - 2013-06-05 20:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-01-29 13:51 - 2013-06-05 19:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-01-29 13:51 - 2013-06-05 19:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-01-29 13:51 - 2013-06-05 19:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-01-29 13:51 - 2013-04-25 15:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-01-29 13:51 - 2013-03-31 14:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-01-29 13:51 - 2013-02-11 20:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-01-29 13:51 - 2012-11-28 14:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-01-29 13:51 - 2012-11-28 14:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-01-29 13:51 - 2012-11-28 14:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-01-29 13:51 - 2012-08-22 10:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-01-29 13:51 - 2012-07-04 12:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-01-29 13:51 - 2011-03-10 22:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-01-29 13:51 - 2011-03-10 22:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-01-29 13:51 - 2011-03-10 21:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-01-29 13:51 - 2011-03-10 21:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-01-29 13:50 - 2014-11-10 17:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-29 13:50 - 2014-09-24 18:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-01-29 13:50 - 2014-09-24 17:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-01-29 13:50 - 2014-08-11 18:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-01-29 13:50 - 2014-08-11 17:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2015-01-29 13:50 - 2014-06-15 18:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-01-29 13:50 - 2014-03-04 01:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-01-29 13:50 - 2014-03-04 01:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-29 13:50 - 2014-03-04 01:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-01-29 13:50 - 2014-03-04 01:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-01-29 13:50 - 2014-03-04 01:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-01-29 13:50 - 2014-03-04 01:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-01-29 13:50 - 2014-03-04 01:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-01-29 13:50 - 2014-03-04 01:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-01-29 13:50 - 2014-03-04 01:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-01-29 13:50 - 2014-03-04 01:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-01-29 13:50 - 2013-09-07 18:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-01-29 13:50 - 2013-09-07 18:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-01-29 13:50 - 2013-07-12 02:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-01-29 13:50 - 2013-07-04 04:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-01-29 13:50 - 2013-07-04 04:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-01-29 13:50 - 2013-07-04 03:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-01-29 13:50 - 2013-07-04 03:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-01-29 13:50 - 2013-07-02 20:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-01-29 13:50 - 2013-07-02 20:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-01-29 13:50 - 2013-04-09 22:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-01-29 13:50 - 2012-12-07 05:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-01-29 13:50 - 2012-12-07 05:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-01-29 13:50 - 2012-12-07 04:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-01-29 13:50 - 2012-12-07 04:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-01-29 13:50 - 2012-12-07 03:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-01-29 13:50 - 2012-12-07 03:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-01-29 13:50 - 2012-12-07 03:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2015-01-29 13:50 - 2012-12-07 02:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2015-01-29 13:50 - 2012-11-01 21:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-01-29 13:50 - 2012-11-01 21:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-01-29 13:50 - 2012-10-03 09:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-01-29 13:50 - 2012-10-03 09:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-29 13:50 - 2012-10-03 09:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-29 13:50 - 2012-10-03 09:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-01-29 13:50 - 2012-10-03 09:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-29 13:50 - 2012-10-03 08:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-01-29 13:50 - 2012-10-03 08:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2015-01-29 13:50 - 2012-10-03 08:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-01-29 13:50 - 2012-08-21 13:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-01-29 13:50 - 2011-04-28 19:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-01-29 13:50 - 2011-04-28 19:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-01-29 13:50 - 2011-04-28 19:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-01-29 13:50 - 2011-03-02 22:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-01-29 13:50 - 2011-03-02 22:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-01-29 13:50 - 2011-03-02 22:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-01-29 13:50 - 2011-03-02 21:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-01-29 13:50 - 2011-03-02 21:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2015-01-29 13:50 - 2011-02-03 03:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-01-29 13:49 - 2014-11-10 19:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-29 13:49 - 2014-11-10 19:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-01-29 13:49 - 2014-11-10 18:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-01-29 13:49 - 2014-11-10 18:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-01-29 13:49 - 2014-10-13 18:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-01-29 13:49 - 2014-10-13 18:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-29 13:49 - 2014-10-13 17:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-01-29 13:49 - 2014-10-13 17:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-01-29 13:49 - 2014-04-11 18:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-01-29 13:49 - 2014-04-11 18:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-01-29 13:49 - 2014-04-11 18:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-01-29 13:49 - 2014-04-11 18:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-01-29 13:49 - 2014-04-11 18:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-01-29 13:49 - 2013-08-28 18:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-29 13:49 - 2013-08-28 18:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-01-29 13:49 - 2013-08-28 18:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-01-29 13:49 - 2013-08-28 17:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-01-29 13:49 - 2013-08-28 17:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-01-29 13:49 - 2013-08-28 17:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-01-29 13:49 - 2012-03-16 23:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-01-29 13:49 - 2011-08-16 21:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-01-29 13:49 - 2011-08-16 21:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-01-29 13:49 - 2011-08-16 20:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-01-29 13:49 - 2011-08-16 20:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-01-29 13:48 - 2014-10-29 18:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-01-29 13:48 - 2014-10-29 17:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-01-29 13:48 - 2014-10-09 16:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-01-29 13:48 - 2014-10-02 18:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-29 13:48 - 2014-10-02 18:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-29 13:48 - 2014-10-02 18:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-01-29 13:48 - 2014-10-02 18:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-01-29 13:48 - 2014-10-02 18:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-01-29 13:48 - 2014-10-02 18:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-29 13:48 - 2014-10-02 18:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-29 13:48 - 2014-10-02 18:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-29 13:48 - 2014-10-02 18:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-29 13:48 - 2014-10-02 18:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-01-29 13:48 - 2014-10-02 17:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-01-29 13:48 - 2014-10-02 17:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-01-29 13:48 - 2014-10-02 17:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-01-29 13:48 - 2014-10-02 17:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-01-29 13:48 - 2014-10-02 17:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-01-29 13:48 - 2014-10-02 17:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-01-29 13:48 - 2014-10-02 17:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-01-29 13:48 - 2014-10-02 17:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-01-29 13:48 - 2014-09-19 01:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-01-29 13:48 - 2014-09-19 01:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-01-29 13:48 - 2014-09-03 21:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-29 13:48 - 2014-09-03 21:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-01-29 13:48 - 2014-06-24 18:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-29 13:48 - 2014-06-24 17:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-01-29 13:48 - 2014-02-03 18:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-01-29 13:48 - 2014-02-03 18:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-01-29 13:48 - 2014-02-03 18:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-01-29 13:48 - 2014-02-03 18:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-01-29 13:48 - 2014-02-03 18:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2015-01-29 13:48 - 2013-07-25 18:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-01-29 13:48 - 2013-07-25 17:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-01-29 13:48 - 2013-04-25 21:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-29 13:48 - 2013-04-25 20:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2015-01-29 13:48 - 2012-11-22 19:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-01-29 13:48 - 2012-09-25 14:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-01-29 13:48 - 2012-09-25 14:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-01-29 13:48 - 2011-02-05 09:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-01-29 13:48 - 2011-02-05 09:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-01-29 13:48 - 2011-02-05 09:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2015-01-29 13:48 - 2011-02-05 09:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2015-01-29 13:48 - 2011-02-05 09:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-01-29 13:48 - 2011-02-05 09:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-01-29 13:48 - 2011-02-05 09:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-01-29 13:47 - 2013-05-09 21:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-01-29 13:47 - 2013-05-09 19:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-01-29 13:47 - 2011-05-24 03:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-01-29 13:47 - 2011-05-24 02:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2015-01-29 13:47 - 2011-05-24 02:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2015-01-29 13:47 - 2011-05-24 02:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2015-01-29 13:47 - 2011-05-24 02:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-01-29 13:46 - 2014-11-07 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-29 13:46 - 2014-11-07 18:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-01-29 13:46 - 2014-10-24 17:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-01-29 13:46 - 2014-10-24 17:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-01-29 13:46 - 2014-10-13 18:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-29 13:46 - 2014-10-13 17:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-01-29 13:46 - 2014-07-16 18:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-29 13:46 - 2014-07-16 18:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-01-29 13:46 - 2014-07-16 18:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-01-29 13:46 - 2014-07-16 18:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-01-29 13:46 - 2014-07-16 18:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-01-29 13:46 - 2014-07-16 17:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-01-29 13:46 - 2014-07-16 17:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-01-29 13:46 - 2014-07-16 17:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-01-29 13:46 - 2014-07-16 17:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-01-29 13:46 - 2014-07-16 17:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-01-29 13:46 - 2014-07-16 17:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-01-29 13:46 - 2014-06-03 02:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-29 13:46 - 2014-06-03 02:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-29 13:46 - 2014-06-03 02:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-29 13:46 - 2014-06-03 01:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-01-29 13:46 - 2014-06-03 01:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-01-29 13:46 - 2014-03-04 01:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-01-29 13:46 - 2014-03-04 01:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-01-29 13:46 - 2014-03-04 01:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-01-29 13:46 - 2014-03-04 01:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-01-29 13:46 - 2014-03-04 01:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-01-29 13:46 - 2014-03-04 01:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-01-29 13:46 - 2014-03-04 01:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-01-29 13:46 - 2014-03-04 01:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-01-29 13:46 - 2014-03-04 01:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-01-29 13:46 - 2014-03-04 00:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-01-29 13:46 - 2014-03-04 00:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-01-29 13:46 - 2014-01-23 18:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-01-29 13:46 - 2013-08-01 18:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 17:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-01-29 13:46 - 2013-08-01 16:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 16:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 16:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-01-29 13:46 - 2013-08-01 16:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-01-29 13:46 - 2013-07-20 02:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-29 13:46 - 2013-07-20 02:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-01-29 13:46 - 2013-02-26 21:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-29 13:46 - 2013-02-14 22:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-29 13:46 - 2013-02-14 22:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-01-29 13:46 - 2013-02-14 19:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-01-29 13:46 - 2013-01-23 22:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-01-29 13:46 - 2012-07-04 14:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-01-29 13:46 - 2012-07-04 14:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-01-29 13:46 - 2012-07-04 14:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-01-29 13:46 - 2012-07-04 13:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-01-29 13:46 - 2012-07-04 13:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-01-29 13:46 - 2012-04-25 21:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-01-29 13:46 - 2012-04-25 21:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-01-29 13:46 - 2011-12-16 00:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-01-29 13:46 - 2011-12-15 23:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-01-29 13:46 - 2011-05-02 21:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-01-29 13:46 - 2011-05-02 20:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-01-29 13:46 - 2011-02-18 02:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-01-29 13:46 - 2011-02-17 21:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2015-01-29 13:46 - 2011-02-12 03:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-01-29 13:36 - 2015-01-29 14:10 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-29 13:34 - 2015-01-29 13:34 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\Acronis
2015-01-29 13:34 - 2015-01-20 18:24 - 00001770 _____ () C:\Users\Ashley\Documents\License.avastlic
2015-01-29 13:28 - 2015-01-29 13:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2015-01-29 13:28 - 2015-01-29 13:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-01-29 13:27 - 2015-01-29 13:27 - 00000000 ____D () C:\Windows\PCHEALTH
2015-01-29 13:27 - 2015-01-29 13:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2015-01-29 13:27 - 2015-01-29 13:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2015-01-29 13:27 - 2015-01-29 13:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-01-29 13:26 - 2015-01-29 13:35 - 186654536 _____ (AVAST Software) C:\Users\Public\Desktop\avast_internet_security_setup.exe
2015-01-29 13:26 - 2015-01-29 13:35 - 186654536 _____ (AVAST Software) C:\Users\Ashley\Downloads\avast_internet_security_setup.exe
2015-01-29 13:26 - 2015-01-29 13:26 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-01-29 13:26 - 2015-01-29 13:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2015-01-29 13:25 - 2015-01-29 13:25 - 00000000 ____D () C:\Users\Ashley\AppData\Local\Microsoft Help
2015-01-29 13:25 - 2015-01-29 13:25 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-01-29 13:25 - 2015-01-29 13:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2015-01-29 13:24 - 2015-02-02 03:01 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-01-29 13:24 - 2015-01-29 13:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-29 13:24 - 2015-01-29 13:24 - 00000000 __RHD () C:\MSOCache
2015-01-29 13:11 - 2015-01-29 13:12 - 01782936 _____ (Acronis) C:\Users\Ashley\Downloads\AcronisTrueImage2015_web_trial_en-US.exe
2015-01-29 13:09 - 2013-10-11 18:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-01-29 13:09 - 2013-10-11 18:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-01-29 13:09 - 2013-10-11 18:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-01-29 13:09 - 2013-10-11 18:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-01-29 13:09 - 2013-10-11 17:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-01-29 13:09 - 2013-10-11 17:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-01-29 13:09 - 2013-10-11 17:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-01-29 13:09 - 2013-10-11 17:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-01-29 13:09 - 2013-07-04 04:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-01-29 13:09 - 2013-05-12 21:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-01-29 13:09 - 2013-05-12 19:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-01-29 13:09 - 2013-05-12 19:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-01-29 13:09 - 2013-05-12 19:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-01-29 13:05 - 2015-02-03 21:14 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-29 13:05 - 2015-02-03 21:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-29 13:05 - 2015-02-03 21:14 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-29 13:05 - 2015-01-29 13:05 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\WinRAR
2015-01-29 13:00 - 2014-08-22 18:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-01-29 13:00 - 2014-08-22 17:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-01-29 13:00 - 2012-05-13 21:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-29 12:59 - 2015-01-29 12:59 - 00010047 _____ () C:\Windows\DirectX.log
2015-01-29 12:59 - 2014-10-17 18:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-29 12:59 - 2014-10-17 17:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-01-29 12:59 - 2011-10-14 22:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-01-29 12:59 - 2011-10-14 21:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-01-29 12:59 - 2011-08-26 21:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-01-29 12:59 - 2011-08-26 20:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-01-29 12:59 - 2011-02-22 20:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-01-29 12:59 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-01-29 12:59 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-01-29 12:59 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-01-29 12:59 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-01-29 12:59 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-01-29 12:59 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-01-29 12:59 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-01-29 12:59 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-01-29 12:59 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-01-29 12:59 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-01-29 12:59 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-01-29 12:59 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-01-29 12:59 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-01-29 12:59 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-01-29 12:59 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-01-29 12:59 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-01-29 12:59 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-01-29 12:59 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-01-29 12:59 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-01-29 12:59 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-01-29 12:59 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-01-29 12:59 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-01-29 12:59 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-01-29 12:59 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-01-29 12:59 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-01-29 12:59 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-01-29 12:59 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-01-29 12:59 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-01-29 12:59 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-01-29 12:59 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-01-29 12:59 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-01-29 12:59 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-01-29 12:59 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-01-29 12:59 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-01-29 12:59 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-01-29 12:59 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-01-29 12:59 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-01-29 12:59 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-01-29 12:59 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-01-29 12:59 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-01-29 12:59 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-01-29 12:59 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-01-29 12:59 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-01-29 12:59 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-01-29 12:59 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-01-29 12:59 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-01-29 12:59 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-01-29 12:59 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-01-29 12:59 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-01-29 12:59 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-01-29 12:59 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-01-29 12:59 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-01-29 12:59 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-01-29 12:59 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-01-29 12:59 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-01-29 12:59 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-01-29 12:59 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-01-29 12:59 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-01-29 12:59 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-01-29 12:59 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-01-29 12:59 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-01-29 12:59 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-01-29 12:59 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-01-29 12:59 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-01-29 12:59 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-01-29 12:59 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-01-29 12:59 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-01-29 12:59 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-01-29 12:59 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-01-29 12:59 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-01-29 12:59 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-01-29 12:59 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-01-29 12:59 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-01-29 12:59 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-01-29 12:59 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-01-29 12:59 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-01-29 12:59 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-01-29 12:59 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-01-29 12:59 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-01-29 12:59 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-01-29 12:59 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-01-29 12:59 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-01-29 12:59 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-01-29 12:59 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-01-29 12:59 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-01-29 12:59 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-01-29 12:59 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-01-29 12:59 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-01-29 12:59 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-01-29 12:59 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-01-29 12:59 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-01-29 12:59 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-01-29 12:59 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-01-29 12:59 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-01-29 12:59 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-01-29 12:59 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-01-29 12:59 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-01-29 12:59 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-01-29 12:59 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-01-29 12:59 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-01-29 12:59 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-01-29 12:59 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-01-29 12:59 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-01-29 12:59 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-01-29 12:59 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-01-29 12:59 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-01-29 12:59 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-01-29 12:59 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-01-29 12:59 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-01-29 12:59 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-01-29 12:59 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-01-29 12:59 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-01-29 12:59 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-01-29 12:59 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-01-29 12:59 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-01-29 12:57 - 2013-10-11 18:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-01-29 12:57 - 2013-10-11 18:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-01-29 12:57 - 2013-10-11 18:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-01-29 12:57 - 2013-10-11 18:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-01-29 12:57 - 2013-10-11 18:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-01-29 12:57 - 2013-08-27 17:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-01-29 12:57 - 2012-06-05 22:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-01-29 12:57 - 2012-06-05 21:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-01-29 12:56 - 2014-07-13 18:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-01-29 12:56 - 2014-07-13 17:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-01-29 12:54 - 2015-01-31 09:42 - 00109296 _____ () C:\Users\Ashley\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-29 12:54 - 2015-01-29 12:59 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-01-29 12:54 - 2015-01-29 12:58 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-01-29 12:53 - 2015-01-29 13:00 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2015-01-29 12:53 - 2015-01-29 12:53 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\ATI
2015-01-29 12:53 - 2015-01-29 12:53 - 00000000 ____D () C:\Users\Ashley\AppData\Local\ATI
2015-01-29 12:53 - 2015-01-29 12:53 - 00000000 ____D () C:\ProgramData\ATI
2015-01-29 12:52 - 2015-01-29 12:52 - 00000000 _____ () C:\Windows\ativpsrm.bin
2015-01-29 12:51 - 2015-01-29 12:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2015-01-29 12:51 - 2015-01-29 12:51 - 00000000 ____D () C:\ProgramData\AMD
2015-01-29 12:51 - 2015-01-29 12:51 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2015-01-29 12:51 - 2015-01-29 12:51 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-01-29 12:51 - 2015-01-29 12:51 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2015-01-29 12:50 - 2015-01-29 12:50 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2015-01-29 12:50 - 2012-06-11 10:35 - 00070144 _____ (AMD) C:\Windows\system32\coinst_8.98.dll
2015-01-29 12:50 - 2012-06-11 09:26 - 00263840 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2015-01-29 12:50 - 2012-06-11 09:26 - 00263840 _____ () C:\Windows\system32\atiapfxx.blb
2015-01-29 12:50 - 2012-06-11 09:20 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2015-01-29 12:50 - 2012-06-11 08:50 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2015-01-29 12:50 - 2012-06-11 08:50 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2015-01-29 12:50 - 2012-06-11 08:50 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2015-01-29 12:50 - 2012-06-11 08:50 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2015-01-29 12:50 - 2012-03-12 15:10 - 00038177 _____ () C:\Windows\atiogl.xml
2015-01-29 12:50 - 2012-02-23 04:32 - 00095760 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2015-01-29 12:50 - 2011-09-12 14:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2015-01-29 12:50 - 2011-09-12 14:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2015-01-29 12:49 - 2015-01-29 12:49 - 00000000 ____D () C:\Program Files\ATI
2015-01-29 12:48 - 2015-01-29 12:51 - 00000000 ____D () C:\Program Files\ATI Technologies
2015-01-29 12:45 - 2015-01-29 12:45 - 00000000 ____D () C:\Users\Public\Desktop\LucidWizard.exe
2015-01-29 12:44 - 2015-01-29 12:44 - 00000000 ____D () C:\ProgramData\ASUS
2015-01-29 12:43 - 2015-01-29 12:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\MFDLL
2015-01-29 12:43 - 2010-08-23 23:16 - 00013440 ____R () C:\Windows\SysWOW64\Drivers\AsIO.sys
2015-01-29 12:43 - 2010-06-28 23:41 - 00028672 ____R (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2015-01-29 12:43 - 2008-01-04 13:34 - 00011832 _____ () C:\Windows\SysWOW64\Drivers\AsInsHelp64.sys
2015-01-29 12:39 - 2015-01-29 13:01 - 00000000 ____D () C:\Program Files (x86)\ASUS
2015-01-29 12:39 - 2012-03-22 16:10 - 00014848 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\Drivers\AiCharger.sys
2015-01-29 12:38 - 2012-02-16 22:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-01-29 12:38 - 2012-02-16 21:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-01-29 12:38 - 2012-02-16 20:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-01-29 12:34 - 2015-01-31 09:43 - 00001139 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-01-29 12:34 - 2015-01-31 09:43 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-29 12:34 - 2015-01-29 12:34 - 00000000 ____D () C:\Users\Ashley\AppData\Roaming\Mozilla
2015-01-29 12:34 - 2015-01-29 12:34 - 00000000 ____D () C:\Users\Ashley\AppData\Local\Mozilla
2015-01-29 12:34 - 2015-01-29 12:34 - 00000000 ____D () C:\ProgramData\Mozilla
2015-01-29 12:34 - 2015-01-29 12:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-29 12:34 - 2015-01-29 12:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-29 12:33 - 2014-05-14 08:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-29 12:33 - 2014-05-14 08:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-01-29 12:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-29 12:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-01-29 12:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-29 12:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-01-29 12:32 - 2014-05-14 08:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-29 12:32 - 2014-05-14 08:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-29 12:32 - 2014-05-14 08:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-01-29 12:32 - 2014-05-14 08:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-01-29 12:32 - 2014-05-14 08:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-01-29 12:32 - 2014-05-14 08:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-29 12:32 - 2014-05-14 08:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-29 12:32 - 2014-05-14 08:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-01-29 12:31 - 2015-01-29 12:31 - 00243440 _____ () C:\Users\Ashley\Documents\Firefox Setup Stub 35.0.1.exe
2015-01-29 12:30 - 2015-02-05 11:49 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{D1D1B71A-0DCB-497D-A869-F39EBAA11A0F}
2015-01-29 12:27 - 2015-01-29 12:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2015-01-29 12:27 - 2015-01-29 12:27 - 00000000 ____D () C:\Temp
2015-01-29 12:27 - 2012-05-20 08:25 - 00789824 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2015-01-29 12:27 - 2012-05-20 08:25 - 00357184 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2015-01-29 12:27 - 2012-05-20 08:25 - 00019264 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2015-01-29 12:26 - 2015-01-29 12:26 - 00000189 _____ () C:\Windows\LAN.log
2015-01-29 12:26 - 2012-06-12 06:00 - 00726160 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2015-01-29 12:26 - 2012-06-12 06:00 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2015-01-29 12:26 - 2012-06-12 06:00 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2015-01-29 12:25 - 2015-01-29 12:25 - 00000000 ____D () C:\Program Files\Realtek
2015-01-29 12:24 - 2015-02-05 12:44 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-01-29 12:24 - 2015-02-05 12:41 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-29 12:24 - 2015-02-05 12:39 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-01-29 12:24 - 2015-01-29 12:25 - 00002217 _____ () C:\RHDSetup.log
2015-01-29 12:24 - 2015-01-29 12:25 - 00000206 _____ () C:\Windows\audio.log
2015-01-29 12:24 - 2012-05-25 17:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-01-29 12:23 - 2015-01-29 12:27 - 00000000 ____D () C:\Program Files (x86)\Intel
2015-01-29 12:23 - 2015-01-29 12:23 - 00000000 ____D () C:\Intel
2015-01-29 12:23 - 2011-12-06 15:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2015-01-29 12:20 - 2015-01-29 12:27 - 00061698 _____ () C:\Windows\Ascd_log.ini
2015-01-29 12:19 - 2015-01-29 12:20 - 00000000 ____D () C:\Windows\Chipset
2015-01-29 12:19 - 2015-01-29 12:19 - 00016896 _____ (ASUS) C:\Windows\AsTaskSched.dll
2015-01-29 12:19 - 2011-02-24 22:25 - 00296320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-01-29 12:17 - 2015-01-29 12:42 - 00044236 _____ () C:\Windows\Ascd_tmp.ini
2015-01-29 12:17 - 2015-01-29 12:41 - 00001769 _____ () C:\Windows\Language_trs.ini
2015-01-29 12:15 - 2015-01-29 13:57 - 00000000 ____D () C:\Users\Ashley\AppData\Local\VirtualStore
2015-01-29 12:15 - 2015-01-29 12:15 - 00001447 _____ () C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-29 12:15 - 2015-01-29 12:15 - 00001413 _____ () C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2015-01-29 12:15 - 2015-01-29 12:15 - 00000020 ___SH () C:\Users\Ashley\ntuser.ini
2015-01-29 12:15 - 2015-01-29 12:15 - 00000000 __SHD () C:\Recovery
2015-01-29 12:15 - 2015-01-29 12:15 - 00000000 ____D () C:\Users\Ashley
2015-01-29 12:15 - 2009-07-13 20:54 - 00000000 ___RD () C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-29 12:15 - 2009-07-13 20:49 - 00000000 ___RD () C:\Users\Ashley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-29 12:10 - 2015-02-06 20:58 - 01832174 _____ () C:\Windows\WindowsUpdate.log
2015-01-29 12:10 - 2015-01-29 12:10 - 00001355 _____ () C:\Windows\TSSysprep.log
2015-01-29 12:10 - 2015-01-29 12:10 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-01-29 12:10 - 2015-01-29 12:10 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-01-29 12:07 - 2015-01-29 12:15 - 00000000 ____D () C:\Windows\Panther
2015-01-27 00:23 - 2015-01-27 00:23 - 00014464 _____ (Western Digital Technologies) C:\Windows\system32\Drivers\wdcsam64.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-06 16:47 - 2009-07-13 20:45 - 00021872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-06 16:47 - 2009-07-13 20:45 - 00021872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-05 15:48 - 2009-07-13 21:13 - 00726316 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-05 15:43 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-05 15:42 - 2010-11-20 19:47 - 00044012 _____ () C:\Windows\PFRO.log
2015-02-05 15:42 - 2009-07-13 20:51 - 00026337 _____ () C:\Windows\setupact.log
2015-02-05 13:40 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-05 12:02 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\Resources
2015-01-31 04:31 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2015-01-31 03:54 - 2009-07-13 20:45 - 00408136 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-29 18:15 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-01-29 18:14 - 2011-04-12 00:28 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-29 18:14 - 2009-07-13 21:32 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-29 18:14 - 2009-07-13 21:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-01-29 18:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\AppCompat
2015-01-29 15:52 - 2009-07-13 18:34 - 00000478 _____ () C:\Windows\win.ini
2015-01-29 13:28 - 2011-04-12 00:28 - 00000000 ____D () C:\Windows\ShellNew
2015-01-29 13:28 - 2009-07-13 21:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-01-29 13:26 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-29 12:19 - 2009-07-13 21:32 - 00000000 ____D () C:\Windows\system32\restore
2015-01-29 12:10 - 2009-07-13 21:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-29 12:10 - 2009-07-13 20:46 - 00002790 _____ () C:\Windows\DtcInstall.log
2015-01-29 12:10 - 2009-07-13 19:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-29 12:10 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\sysprep
2015-01-29 12:07 - 2009-07-13 21:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-01-29 12:07 - 2009-07-13 21:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2015-01-08 09:55 - 2010-11-20 19:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Ashley\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
C:\Users\Ashley\AppData\Local\Temp\MSIAFTERBURNERSETUP.EXE
C:\Users\Ashley\AppData\Local\Temp\ose00000.exe
C:\Users\Ashley\AppData\Local\Temp\SETUP_AFTERBURNER.EXE

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-02-03 11:27

==================== End Of Log ============================

Edited by jeff matthews, 06 February 2015 - 11:06 PM.

#88 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 08 February 2015 - 09:47 AM

Hello,

Note: Btw are you aware that there is a script on your website that is failing to run at certain times and i happen to know this is not an issue with the computer cause its happening on all of my machines.

No, I wasn't aware. Can you provide a little more detail on this please? There's not much to go on.

-------------

Your FRST logs are OK.

Regarding Emsisoft - which version do you have? Paid-for or free?

Would you like to help others with malware removal? Join our Classroom and learn how!

#89 jeff matthews

Advanced Member

Authentic Member
781 posts

Posted 08 February 2015 - 12:31 PM

No i bought the premium edition of MBAM, i have the free version of EMisoft.

Here is a screen shot of the script failing to load which cause the website to not respond until i stop the script.

Edited by jeff matthews, 08 February 2015 - 12:34 PM.

#90 LiquidTension

SuperMember

Retired Classroom Teacher
2,566 posts

Posted 09 February 2015 - 11:08 AM

Hello,

No i bought the premium edition of MBAM, i have the free version of EMisoft.

OK, that's fine.

Here is a screen shot of the script failing to load which cause the website to not respond until i stop the script.

Thank you. I will pass it on.

----------

Is there anything else I can help with?

Below are reading material I recommend you pass onto your sister.

Answers to common security questions - Best Practices by quietman7, MVP
How Malware Spreads - How did I get infected? by quietman7, MVP
Simple and easy ways to keep your computer safe and secure on the Internet by Lawrence Abrams, MVP
How to Prevent Malware by miekiemoes, MVP
Slow Computer/browser? It May Not Be Malware by quietman7, MVP

Would you like to help others with malware removal? Join our Classroom and learn how!

Also tagged with one or more of these keywords: Viruses, Maleware, Infection, CCcleaner, Internet connection issue, Rootkits, trovi search bar

Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → My PC won't open Malware Bytes (QQPCTray) [Solved] Started by victor_lf , 12 May 2016 infection 1 2 3	Hot 33 replies 10,180 views	ken545 16 May 2016
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Default browser keeps opening by itself Started by mugger , 26 Sep 2015 maleware, virus, spyware, browser and 1 more...	3 replies 21,596 views	Cypher 01 Oct 2015
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Trojan Horse Collected_c.BEIS (Have logs) [Solved] Started by jeff matthews , 21 Jun 2015 Maleware, Trojan, Infection and 4 more... 1 2	Hot 15 replies 16,702 views	ken545 26 Jun 2015
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Windows 7 runs hot then signs of infection wont connect to Internet [C Started by jocase , 18 Apr 2015 Infection	3 replies 4,173 views	ken545 27 Apr 2015
Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal → Keylogger, KernelMode Rootkit SSDT hooks have plagued my PC since June Started by BrotherPorter , 26 Nov 2014 Windows redirect, SSDT, keylogger and 6 more... 1 2 3	Hot 35 replies 20,750 views	OCD 11 Jan 2015

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Body Background

skin color theme

Trovi search bar, causing failed internet! Logs are ready. [Solved

#76 jeff matthews

Advertisements

Register to Remove

#77 LiquidTension

#78 jeff matthews

#79 LiquidTension

#80 jeff matthews

#81 LiquidTension

#82 jeff matthews

#83 LiquidTension

#84 jeff matthews

#85 jeff matthews

Advertisements

Register to Remove

#86 LiquidTension

#87 jeff matthews

#88 LiquidTension

#89 jeff matthews

#90 LiquidTension

Related Topics

Also tagged with one or more of these keywords: Viruses, Maleware, Infection, CCcleaner, Internet connection issue, Rootkits, trovi search bar

My PC won't open Malware Bytes (QQPCTray) [Solved]

Default browser keeps opening by itself

Trojan Horse Collected_c.BEIS (Have logs) [Solved]

Windows 7 runs hot then signs of infection wont connect to Internet [C

Keylogger, KernelMode Rootkit SSDT hooks have plagued my PC since June

0 user(s) are reading this topic

About What the Tech

Follow Us

Body Background

skin color theme

Trovi search bar, causing failed internet! Logs are ready. [Solved

#76 jeff matthews

Advertisements Register to Remove

#77 LiquidTension

#78 jeff matthews

#79 LiquidTension

#80 jeff matthews

#81 LiquidTension

#82 jeff matthews

#83 LiquidTension

#84 jeff matthews

#85 jeff matthews

Advertisements Register to Remove

#86 LiquidTension

#87 jeff matthews

#88 LiquidTension

#89 jeff matthews

#90 LiquidTension

Related Topics

Also tagged with one or more of these keywords: Viruses, Maleware, Infection, CCcleaner, Internet connection issue, Rootkits, trovi search bar

My PC won't open Malware Bytes (QQPCTray) [Solved]

Default browser keeps opening by itself

Trojan Horse Collected_c.BEIS (Have logs) [Solved]

Windows 7 runs hot then signs of infection wont connect to Internet [C

Keylogger, KernelMode Rootkit SSDT hooks have plagued my PC since June

0 user(s) are reading this topic

About What the Tech

Follow Us

Sign In

Advertisements

Register to Remove

Advertisements

Register to Remove