Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93081 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Explorer.exe crashes constantly. Is it malware related? [Solved]


  • This topic is locked This topic is locked
68 replies to this topic

#31 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 02 April 2014 - 08:26 PM

Hi leader2,

  • Were you successful in getting Torch back to it's original state?
  • Have you been making changes to the computer outside of the instructions I am giving you? If so please go back to post #2  and re-read my opening statement. I appreciate your cooperation.
  • If the logs are too big to post in one (1) reply it is OK to break them up into multiple posts.
  • You are running Windows 8.1, was this via a Windows update?
  • Did you purchase the computer with Windows 8 preinstalled?

Your log is still showing a corruption even after the steps we previously took.
Error: (04/01/2014 08:27:10 AM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume OS.

The Master File Table (MFT) contains a corrupted file record.  The file reference number is 0x300000003e11d.  The name of the file is "<unable to determine file name>".


I will check with some of my colleagues and see what they recommend to remedy this.

=========================

 

Before continuing please disconnect ALL external drives (usb, flash). then reboot before continuing.

Do not reconnect until requested to do so.

 

=========================


bullseye_zpse9eaf36e.gif Disable FireFox plug-in

  • At the top of the Firefox window, click on the Firefox button (Tools menu in Windows XP), and then click Add-ons. The Add-ons Manager tab will open.
  • In the Add-ons Manager tab, select the Extensions or Appearance panel.
  • Select the add-on you wish to disable.
    • turkopticon / Funmoods
    • InboxDollars
  • Click the Disable button.
  • Click Restart now if it pops up. Your tabs will be saved and restored after the restart.
  • =========================

    bullseye_zpse9eaf36e.gif FRST Fix Script

    Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the desktop as fixlist.txt

    FF Extension: turkopticon - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{4324f4a6-3a89-477e-b388-6bca032df78b}.xpi [2014-01-03]
    FF Extension: InboxDollars - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{ceff3aa1-bfdc-f434-c52d-922216a9cdf5}.xpi [2014-01-03]
    
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST and press the Fix button just once and wait.
The tool will make a log (Fixlog.txt) please post it to your reply.

=========================

 

bullseye_zpse9eaf36e.gif Re-run Farbar Recovery Scan Tool it should be on your desktop.

    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.

=========================

 

In your next post please provide the following:

 

  • Fixlog.txt
  • fresh FRST.txt
  • How is the computer running at the moment?

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.

    Advertisements

Register to Remove


#32 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 04 April 2014 - 01:33 AM

 
1. Were you successful in getting Torch back to it's original state?
 
Yes it was successful. 
 
2. Have you been making changes to the computer outside of the instructions I am giving you? If so please go back to post #2  and re-read my opening statement. I appreciate your cooperation.
 
I have in/uninstalled some software and I think I updated my browsers. I apologize if this affected your work. I'm not familiar with malware team work and didn't know it would hinder your efforts. I will try to not install/uninstall any programs while you help me further. I appreciate your help.
 
3. If the logs are too big to post in one (1) reply it is OK to break them up into multiple posts.
 
Sorry OCD if this a problem for you. I attached the logs because they were so large that they would not fit into one post and the browser would crash. I didn't know that I could break them up. I will do this in the future.
 
4. You are running Windows 8.1, was this via a Windows update?
 
Yes it was via an update.
 
 
5. Did you purchase the computer with Windows 8 preinstalled?
 
The computer came with Windows preinstalled.
 
 
ix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by A Lamar at 2014-04-04 03:14:14 Run:2
Running from C:\Users\A Lamar\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
FF Extension: turkopticon - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{4324f4a6-3a89-477e-b388-6bca032df78b}.xpi [2014-01-03]
FF Extension: InboxDollars - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{ceff3aa1-bfdc-f434-c52d-922216a9cdf5}.xpi [2014-01-03]
*****************
 
C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{4324f4a6-3a89-477e-b388-6bca032df78b}.xpi not found.
C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{ceff3aa1-bfdc-f434-c52d-922216a9cdf5}.xpi not found.
 
==== End of Fixlog ====
 
 
 
The computer is running kind of slow at the moment in my opinion in that it's slower than it should be and it had a blue screen error the other day. I will post my FRST log in the in the next post due to it's size.


#33 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 04 April 2014 - 01:33 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by A Lamar (administrator) on HP on 04-04-2014 03:27:21
Running from C:\Users\A Lamar\Desktop
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Webroot) C:\Program Files\Webroot\WRSA.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Webroot) C:\Program Files\Webroot\WRSA.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(AdFender, Inc.) C:\Program Files (x86)\AdFender\AdFender.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
(j2 Global Communications, Inc.) C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Just Great Software) C:\Program Files\Just Great Software\EditPad Lite 7\EditPadLite7.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(freefilesync.sourceforge.net) C:\Program Files\FreeFileSync\FreeFileSync.exe
(freefilesync.sourceforge.net) C:\Program Files\FreeFileSync\Bin\FreeFileSync_x64.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [BeatsOSDApp] - C:\Program Files\IDT\WDM\beats64.exe [37888 2012-08-10] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-10] (IDT, Inc.)
HKLM\...\Run: [Classic Start Menu] - C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft)
HKLM-x32\...\Run: [BtTray] - c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [363520 2012-07-27] (IVT Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [WRSVC] - C:\Program Files\Webroot\WRSA.exe [766040 2014-03-26] (Webroot)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-11-02] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2012-01-16] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [ContentTransferWMDetector.exe] - C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe [583016 2009-11-19] (Sony Corporation)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [eFax 4.4] - C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe [95744 2012-08-29] (j2 Global Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\.DEFAULT\...\Policies\system: [DisableCMD] 0
HKU\.DEFAULT\...\Policies\system: [NoDispAppearancePage] 0
HKU\.DEFAULT\...\Policies\system: [NoDispBackgroundPage] 0
HKU\.DEFAULT\...\Policies\system: [NoDispSettingsPage] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFolderOptions] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoControlPanel] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFind] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFile] 0
HKU\.DEFAULT\...\Policies\Explorer: [HideClock] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetFolders] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDFSTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoLogoff] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoResolveSearch] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSaveSettings] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoHardwareTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [457728 2013-11-14] (Microsoft Corporation)
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [eFax 4.4] - C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe [95744 2012-08-29] (j2 Global Communications, Inc.)
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [Amazon Cloud Player] - C:\Users\White\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3140608 2014-01-14] ()
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [WordWeb] - C:\Program Files (x86)\WordWeb\wweb32.exe [77056 2013-05-16] (WordWeb Software)
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [TWC.Win7] - C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [47616 2014-02-24] ()
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Run: [GoogleChromeAutoLaunch_7F95AED034661DEE360CF71A9EEB50EF] - C:\Users\White\AppData\Local\Torch\Application\torch.exe [884224 2014-03-27] (Torch Media Inc.)
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1001\...\MountPoints2: {d2a5b9ec-23a2-11ff-be6d-689423099ede} - "J:\LaunchU3.exe" 
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHWA.EXE [239488 2011-04-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-4128554873-3097705083-3195864600-1004\...\MountPoints2: {d2a5b9ec-23a2-11ff-be6d-689423099ede} - "J:\LaunchU3.exe" 
 
==================== Internet (Whitelisted) ====================
 
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK13/1
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {91FDD715-9FCF-4967-9B30-6AA09534F2C2} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKLM-x32 - {91FDD715-9FCF-4967-9B30-6AA09534F2C2} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Webroot Filtering Extension - {C9C42510-9B41-42c1-9DCD-7282A2D07C61} - C:\Program Files\Webroot\WRData\PKG\Vistax64\wrflt.dll (Webroot)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Freecorder extension - {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} - C:\Program Files (x86)\Freecorder extension\ScriptHost.dll (Applian Technologies Inc.)
BHO-x32: Webroot Filtering Extension - {C9C42510-9B41-42c1-9DCD-7282A2D07C61} - C:\Program Files\Webroot\WRData\PKG\Vistax86\wrflt.dll (Webroot)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll No File
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB
DPF: HKLM-x32 {1842B0EE-B597-11D4-8997-00104BD12D94} http://www.pcpitstop...cpConnCheck.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
 
FireFox:
========
FF ProfilePath: C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default
FF Homepage: google.com
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @meadco.com/neptune plugin,version=2.0.0.29 - C:\PROGRA~2\MEADCO~1\npmeadax.dll (MeadCo Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin - C:\Program Files (x86)\SumatraPDF\npPdfViewer.dll (Simon Bünzli)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: TorchVLC - C:\Users\White\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: pcpitstop.com/PCMaticPlugin - C:\Users\A Lamar\AppData\Roaming\PCPitstop\PC Matic Plugin\1.0.0.1\npPCMaticPlugin.1.0.0.1.dll (PC Pitstop LLC)
FF Extension: FlashFirebug - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\flashfirebug@o-minds.com [2014-04-01]
FF Extension: DownloadHelper - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: CSHelper - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473} [2014-04-01]
FF Extension: anonymoX - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\client@anonymox.net.xpi [2014-01-03]
FF Extension: CommentBlocker - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\commentblocker@xertoz.se.xpi [2014-04-01]
FF Extension: Ghostery - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\firefox@ghostery.com.xpi [2014-04-01]
FF Extension: Test Pilot - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\testpilot@labs.mozilla.com.xpi [2014-01-03]
FF Extension: translator - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\translator@dontfollowme.net.xpi [2014-01-03]
FF Extension: FlashGot - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-04-01]
FF Extension: Yahoo! Mail Notifier - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{89f8dde0-010a-11da-8cd6-0800200c9a66}.xpi [2014-01-03]
FF Extension: Adblock Plus - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-03]
FF Extension: FusionCash Toolbar - C:\Users\A Lamar\AppData\Roaming\Mozilla\Firefox\Profiles\cfr080di.default\Extensions\{ef914f7f-701e-b874-85f8-9a53e30326d5}.xpi [2014-01-03]
FF HKLM-x32\...\Firefox\Extensions: [webrootsecure@webroot.com] - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer
FF Extension: Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer [2014-02-13]
 
Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-03]
CHR Extension: (Google Drive) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-03]
CHR Extension: (YouTube) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-03]
CHR Extension: (Adblock Plus) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-03]
CHR Extension: (Google Search) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-03]
CHR Extension: (Freecorder) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpicboiclhmnllnjdcfcffifpoaebgkm [2014-04-01]
CHR Extension: (Webroot Filtering Extension) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd [2014-03-05]
CHR Extension: (CommentBlocker) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhkjhnbkeibefoijmacgnnkddlkkmjaf [2014-03-22]
CHR Extension: (Google Wallet) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-03]
CHR Extension: (Gmail) - C:\Users\A Lamar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-03]
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.26.crx [2014-02-13]
CHR HKLM-x32\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - C:\Program Files (x86)\WordWeb\wcxChrome.crx [2014-01-30]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1544192 2012-07-23] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-07-10] (IVT Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S2 TorchCrashHandler; C:\Users\A Lamar\AppData\Local\Torch\Update\TorchCrashHandler.exe [1216520 2014-03-21] (TorchMedia Inc.)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [107624 2014-03-29] (RaMMicHaeL)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-12-23] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)
R2 WRSVC; C:\Program Files\Webroot\WRSA.exe [766040 2014-03-26] (Webroot)
S2 HPConnectedRemote; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; 
U4 BthHFEnum; 
U4 bthhfhid; 
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48352 2012-07-11] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 debutfilter; C:\Windows\system32\DRIVERS\debutfilterx64.sys [33488 2013-12-24] ()
S3 hpvision; C:\Windows\System32\drivers\hp64vision.sys [26912 2013-02-08] (Windows ® Codename Longhorn DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2013-12-18] (Audials AG)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 VNUSB; C:\Windows\System32\Drivers\VNUSB.sys [22528 2009-09-29] (OLYMPUS IMAGING CORP.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)
R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [115168 2014-03-26] (Webroot)
U0 SR; 
U2 srservice; 
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2038-09-13 09:42 - 2038-09-13 09:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1413375.txt
2038-09-13 09:42 - 2038-09-13 09:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1412921.txt
2038-09-13 09:41 - 2038-09-13 09:41 - 00000000 ____D () C:\Users\White\AppData\Roaming\Macromedia
2038-09-13 09:40 - 2038-09-13 09:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1323015.txt
2038-09-13 09:40 - 2014-04-03 14:32 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1001
2038-09-13 09:36 - 2038-09-13 09:36 - 00000000 ____D () C:\ProgramData\Recovery
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-955531.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952843.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952812.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952703.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-950343.txt
2038-09-13 09:24 - 2038-09-13 09:24 - 00000000 ____D () C:\Users\White\Documents\CyberLink
2038-09-13 09:24 - 2014-02-27 18:26 - 00000000 ____D () C:\Users\White\Documents\Naturalsoft
2038-09-13 09:24 - 2014-02-18 07:06 - 00000000 ____D () C:\Users\White\Documents\VHS to DVD
2038-09-13 09:24 - 2014-01-17 07:17 - 00000000 ____D () C:\Users\White\Documents\Virtual Machines
2038-09-13 09:24 - 2013-11-06 06:11 - 00000000 ____D () C:\Users\White\Documents\My CamStudio Temp Files
2038-09-13 09:24 - 2013-10-30 02:39 - 00000000 ____D () C:\Users\White\Documents\VideoPad Projects
2038-09-13 09:23 - 2014-04-02 17:43 - 00000000 ____D () C:\Users\White\AppData\Roaming\Hewlett-Packard
2038-09-13 09:22 - 2014-04-03 01:07 - 00000000 ____D () C:\Users\White\Documents\ConvertXtoDVD
2038-09-13 09:22 - 2013-11-06 08:19 - 00002326 _____ () C:\Users\White\Documents\My Movie.wlmp
2038-09-13 09:21 - 2038-09-13 09:21 - 00003902 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3C6296C1-DDF5-4314-8E7A-E313A6DB753F}
2038-09-13 09:21 - 2038-09-13 09:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-184906.txt
2038-09-13 09:21 - 2038-09-13 09:21 - 00000000 ____D () C:\Users\White\Documents\Bluetooth
2038-09-13 09:21 - 2038-09-13 09:21 - 00000000 ____D () C:\Users\White\AppData\Local\Power2Go8
2038-09-13 09:21 - 2014-03-22 07:55 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2038-09-13 09:21 - 2014-03-22 07:55 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2038-09-13 09:21 - 2014-01-17 09:44 - 00000000 ____D () C:\Users\White\AppData\Local\bluesoleil
2038-09-13 09:21 - 2013-12-24 02:55 - 00000000 ____D () C:\Users\White\AppData\Roaming\Adobe
2038-09-13 09:21 - 2013-12-23 19:37 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2038-09-13 09:20 - 2038-09-13 09:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-90359.txt
2038-09-13 09:20 - 2014-04-02 15:07 - 00000000 ____D () C:\Users\White\AppData\Local\VirtualStore
2038-09-13 09:20 - 2014-01-15 08:43 - 00000000 ___HD () C:\Users\White\Documents\hp.system.package.metadata
2038-09-13 09:20 - 2014-01-08 13:40 - 00000000 ____D () C:\Users\White\AppData\Local\Packages
2038-09-13 07:59 - 2038-09-13 07:59 - 00000142 _____ () C:\WINDOWS\system32\netcfg-138625.txt
2038-09-13 07:57 - 2038-09-13 07:57 - 00018630 _____ () C:\WINDOWS\system32\results.xml
2038-09-13 07:57 - 2014-04-04 03:11 - 00004524 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2038-09-13 07:57 - 2014-04-02 21:22 - 00000043 _____ () C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1340343.txt
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1335187.txt
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Users\Public\Symantec
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\SymSilent
2038-09-13 07:54 - 2014-03-30 12:22 - 00000000 ____D () C:\ProgramData\Norton
2038-09-13 07:54 - 2013-12-23 21:01 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2038-09-13 07:54 - 2013-12-23 19:36 - 00003234 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2038-09-13 07:54 - 2013-12-23 17:01 - 00000000 ____D () C:\WINDOWS\system32\Drivers\NISx64
2038-09-13 07:53 - 2038-09-13 09:21 - 00000000 ___RD () C:\Program Files\Online Services
2038-09-13 07:53 - 2013-12-23 19:29 - 00000000 ____D () C:\WINDOWS\en
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2038-09-13 07:52 - 2009-09-04 20:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2038-09-13 07:52 - 2009-09-04 20:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2038-09-13 07:52 - 2009-09-04 20:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2038-09-13 07:52 - 2009-09-04 20:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2038-09-13 07:52 - 2006-11-29 16:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2038-09-13 07:52 - 2006-11-29 16:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2038-09-13 07:50 - 2038-09-13 07:50 - 00029480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2038-09-13 07:46 - 2012-06-25 13:24 - 00092536 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files\Bonjour
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2038-09-13 07:45 - 2013-12-24 08:25 - 00000000 ____D () C:\ProgramData\Apple
2038-09-13 07:45 - 2012-08-08 02:21 - 00377344 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbrprtmon.dll
2038-09-13 07:45 - 2012-08-08 02:18 - 00170496 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbprtmonui.dll
2038-09-13 07:45 - 2012-08-08 01:22 - 00355840 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbprtmon.dll
2038-09-13 07:43 - 2038-09-13 09:21 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2038-09-13 07:43 - 2038-09-13 07:45 - 00000000 ____D () C:\ProgramData\install_clap
2038-09-13 07:43 - 2014-04-03 00:23 - 00000000 ____D () C:\ProgramData\CyberLink
2038-09-13 07:43 - 2014-04-01 05:40 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2038-09-13 07:42 - 2014-03-25 13:55 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2038-09-13 07:41 - 2038-09-13 07:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Hewlett-Packard
2038-09-13 07:41 - 2010-03-01 17:59 - 00024376 _____ () C:\WINDOWS\system32\Drivers\cpqdfw.sys
2038-09-13 07:40 - 2038-09-13 07:40 - 00000000 ____D () C:\ProgramData\{AFF99647-6D64-46F2-934A-F12F468037F6}
2038-09-13 07:39 - 2038-09-13 07:39 - 00000318 _____ () C:\WINDOWS\system32\netcfg-390500.txt
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____D () C:\ProgramData\Ralink Driver
2038-09-13 07:39 - 2013-12-21 19:24 - 00002901 _____ () C:\WINDOWS\system32\RaCoInst.log
2038-09-13 07:38 - 2038-09-13 07:38 - 00001100 _____ () C:\WINDOWS\system32\netcfg-339656.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000161 _____ () C:\WINDOWS\system32\netcfg-340406.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 _____ () C:\WINDOWS\system32\0
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\ProgramData\Intel
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\Program Files\IDT
2038-09-13 07:37 - 2014-04-01 07:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2038-09-13 07:36 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2038-09-13 07:36 - 2038-09-13 07:36 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2038-09-13 07:36 - 2014-04-01 07:34 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2038-09-13 07:36 - 2011-08-23 16:52 - 00117248 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe
2038-09-13 07:35 - 2038-09-13 09:21 - 00000000 __RSH () C:\WINDOWS\SysWOW64\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J2000_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 07:35 - 2038-09-13 09:21 - 00000000 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J2000_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97406.txt
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97375.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00001027 _____ () C:\WINDOWS\system32\netcfg-38765.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33265.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-28359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-47015.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-33125.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000197 _____ () C:\WINDOWS\system32\netcfg-47781.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000185 _____ () C:\WINDOWS\system32\netcfg-36093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000164 _____ () C:\WINDOWS\system32\netcfg-32687.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000161 _____ () C:\WINDOWS\system32\netcfg-35812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-35609.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-34921.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-32453.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000159 _____ () C:\WINDOWS\system32\netcfg-35093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-35359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-32812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000150 _____ () C:\WINDOWS\system32\netcfg-34703.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000000 ____D () C:\Program Files\Common Files\Intel
2038-09-13 07:32 - 2013-12-23 19:31 - 00000000 ____D () C:\ProgramData\SoundResearch
2038-09-13 07:32 - 2012-08-10 04:34 - 06085632 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2038-09-13 07:32 - 2012-08-10 04:34 - 01425408 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2038-09-13 07:32 - 2012-08-10 04:33 - 01821184 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2038-09-13 07:32 - 2012-08-10 04:32 - 00224256 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2038-09-13 07:32 - 2012-08-10 04:32 - 00037888 _____ (Hewlett-Packard ) C:\WINDOWS\system32\Beats64.exe
2014-04-04 03:10 - 2014-04-04 03:10 - 00001215 _____ () C:\Users\A Lamar\Desktop\my post 2.txt
2014-04-04 03:03 - 2014-04-04 03:03 - 00000368 _____ () C:\Users\A Lamar\Desktop\Stephen_F_Austin_vs_VCU_Game_203_1850_662d7e873cdbc82d_p_Seg1_Frag232574743
2014-04-04 02:51 - 2014-04-04 02:51 - 00000000 ____D () C:\Users\White\AppData\Roaming\KeePass
2014-04-04 02:34 - 2014-04-04 02:50 - 00000000 ____D () C:\Users\White\AppData\Roaming\FLV Extract
2014-04-04 02:30 - 2014-04-03 23:45 - 1249141143 _____ () C:\Users\White\Desktop\2014 gonz vs ok st rd 2 mm (adobe hds downloader test).flv
2014-04-03 23:44 - 2014-04-04 01:25 - 00106496 ___SH () C:\Users\White\Downloads\Thumbs.db
2014-04-03 12:40 - 2014-04-03 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-03 01:21 - 2014-04-03 01:21 - 00000000 ____D () C:\Users\White\AppData\Roaming\WebApp
2014-04-03 01:18 - 2014-04-03 01:18 - 00000000 ____D () C:\Users\White\AppData\Local\Cyberlink
2014-04-03 01:12 - 2014-04-03 01:26 - 00000000 ____D () C:\Users\White\AppData\Roaming\Balabolka
2014-04-03 01:12 - 2014-04-03 01:12 - 00000000 ____D () C:\Users\White\Documents\Balabolka
2014-04-03 00:22 - 2014-04-03 01:18 - 00000000 ____D () C:\Users\White\AppData\Roaming\CyberLink
2014-04-03 00:00 - 2014-04-03 00:00 - 00000000 ____D () C:\Users\White\AppData\Local\Windows Live
2014-04-03 00:00 - 2014-04-03 00:00 - 00000000 ____D () C:\Users\White\AppData\Local\{6D6A07B6-366D-4773-AFF1-3864F0793073}
2014-04-02 17:42 - 2014-04-02 17:42 - 00002234 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Google Earth.lnk
2014-04-02 17:41 - 2014-04-03 23:16 - 00000000 ____D () C:\Users\White\Desktop\New folder
2014-04-02 15:08 - 2014-04-02 23:28 - 00004258 _____ () C:\WINDOWS\System32\Tasks\FREE FILE SYNC EVERY 5 MIN UNATTENDED BACKUP
2014-04-02 14:05 - 2014-04-02 19:16 - 00000000 ____D () C:\Users\White\AppData\Roaming\FreeFileSync
2014-04-02 13:17 - 2014-04-02 13:17 - 00000000 ____D () C:\Program Files\FreeFileSync
2014-04-02 13:15 - 2014-04-02 13:15 - 00000000 ____D () C:\Users\White\AppData\Roaming\SumatraPDF
2014-04-02 12:37 - 2014-04-02 12:37 - 00002387 _____ () C:\Users\White\Desktop\Torch DE3IK FB -.lnk
2014-04-02 12:13 - 2014-04-04 03:03 - 00000368 _____ () C:\Users\A Lamar\Desktop\Stephen_F_Austin_vs_VCU_Game_203_1850_662d7e873cdbc82d_p_Seg1_Frag232574742
2014-04-02 12:08 - 2014-04-02 12:10 - 00000000 ____D () C:\Users\A Lamar\Desktop\User Data
2014-04-02 11:53 - 2014-04-03 01:29 - 00002387 _____ () C:\Users\White\Desktop\Torch DE3IK GV -.lnk
2014-04-02 11:53 - 2014-04-02 11:54 - 00001449 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-04-02 11:53 - 2014-04-02 11:53 - 00000000 ____D () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-04-02 11:51 - 2014-04-02 11:53 - 00000000 ____D () C:\Users\White\AppData\Local\Torch
2014-04-02 11:49 - 2038-09-13 07:53 - 00002269 _____ () C:\Users\White\Desktop\eBay.lnk
2014-04-02 11:49 - 2014-04-02 12:25 - 00002277 _____ () C:\Users\White\Desktop\Facebook.lnk
2014-04-02 11:49 - 2014-04-02 12:25 - 00002273 _____ () C:\Users\White\Desktop\Youtube.lnk
2014-04-02 11:49 - 2014-03-30 06:50 - 00000931 _____ () C:\Users\White\Desktop\Balabolka.lnk
2014-04-02 11:49 - 2014-03-30 03:30 - 00000988 _____ () C:\Users\White\Desktop\Audials 11.lnk
2014-04-02 11:49 - 2014-03-29 23:13 - 00001069 _____ () C:\Users\White\Desktop\KeePass.lnk
2014-04-02 11:49 - 2014-03-29 19:37 - 00001358 _____ () C:\Users\White\Desktop\PROCESS EXPLORER (TASK MANAGER ALTERNATIVE) - Shortcut.lnk
2014-04-02 11:49 - 2014-03-29 17:56 - 00001177 _____ () C:\Users\White\Desktop\PDF Shaper.lnk
2014-04-02 11:49 - 2014-03-25 04:12 - 00000810 _____ () C:\Users\White\Desktop\Speccy.lnk
2014-04-02 11:49 - 2014-02-05 09:35 - 00001202 _____ () C:\Users\White\Desktop\IObit Unlocker.lnk
2014-04-01 22:31 - 2014-04-01 22:31 - 00000000 ____D () C:\Users\White\AppData\Roaming\MPC-HC
2014-04-01 14:42 - 2014-04-01 14:42 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamTransport
2014-04-01 14:33 - 2014-04-01 14:34 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\HandBrake
2014-04-01 12:41 - 2014-04-01 12:41 - 00000000 _____ () C:\Users\A Lamar\mm_backup.cfg
2014-04-01 12:00 - 2014-04-01 12:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\MPC-HC
2014-04-01 11:49 - 2000-08-23 17:00 - 00033280 _____ (Disappearing Inc.) C:\WINDOWS\system32\HUFFYUV.DLL
2014-04-01 11:22 - 2014-04-04 03:27 - 00036155 _____ () C:\Users\A Lamar\Desktop\FRST.txt
2014-04-01 11:22 - 2014-04-01 11:23 - 00039308 _____ () C:\Users\A Lamar\Desktop\Addition.txt
2014-04-01 11:17 - 2014-04-01 12:01 - 00000408 _____ () C:\Users\A Lamar\AppData\Roaming\CamShapes.ini
2014-04-01 11:17 - 2014-04-01 12:01 - 00000408 _____ () C:\Users\A Lamar\AppData\Roaming\CamLayout.ini
2014-04-01 11:17 - 2014-04-01 12:01 - 00000249 _____ () C:\Users\A Lamar\AppData\Roaming\Camdata.ini
2014-04-01 11:17 - 2012-07-21 07:54 - 00122880 _____ (fccHandler) C:\WINDOWS\SysWOW64\is-07H84.tmp
2014-04-01 11:17 - 2011-06-24 11:45 - 00258560 _____ () C:\WINDOWS\system32\xvidvfw.dll
2014-04-01 11:17 - 2011-06-24 11:44 - 00243200 _____ () C:\WINDOWS\SysWOW64\xvidvfw.dll
2014-04-01 11:17 - 2011-06-24 11:31 - 00703488 _____ () C:\WINDOWS\system32\xvidcore.dll
2014-04-01 11:17 - 2011-06-24 11:28 - 00650752 _____ () C:\WINDOWS\SysWOW64\xvidcore.dll
2014-04-01 09:57 - 2014-04-02 09:34 - 00000000 ____D () C:\Program Files (x86)\Applian Technologies
2014-04-01 09:57 - 2014-04-01 09:57 - 00000000 ____D () C:\WINDOWS\Jaksta
2014-04-01 09:56 - 2014-04-02 09:34 - 00000000 ____D () C:\Program Files (x86)\Freecorder extension
2014-04-01 09:56 - 2014-04-01 09:56 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\freecorder
2014-04-01 08:07 - 2011-05-23 05:52 - 00153088 _____ () C:\WINDOWS\SysWOW64\xvid.ax
2014-04-01 08:00 - 2014-04-02 09:27 - 00014848 ___SH () C:\Users\A Lamar\Downloads\Thumbs.db
2014-04-01 06:32 - 2014-04-01 07:31 - 00000000 ____D () C:\Program Files (x86)\Hensence.com
2014-04-01 06:32 - 2014-04-01 06:32 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Hensense.com
2014-04-01 06:05 - 2014-04-02 12:22 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Media Player Classic
2014-04-01 04:09 - 2014-04-04 03:11 - 00000761 _____ () C:\Users\Public\Desktop\Webroot SecureAnywhere.lnk
2014-04-01 04:01 - 2013-11-13 23:41 - 00439296 _____ (Sendori) C:\WINDOWS\system32\plsapp64.dll
2014-04-01 01:58 - 2014-04-02 11:40 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\vlc
2014-04-01 01:58 - 2014-04-01 01:58 - 00000889 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-04-01 00:34 - 2014-04-01 00:34 - 00000204 _____ () C:\WINDOWS\SysWOW64\secustat.dat
2014-04-01 00:32 - 2014-04-01 00:40 - 00000000 ____D () C:\Program Files (x86)\FlashGet Network
2014-04-01 00:32 - 2014-04-01 00:34 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\FlashgetSetup
2014-04-01 00:32 - 2014-04-01 00:34 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\BITS
2014-04-01 00:32 - 2014-04-01 00:32 - 00001424 _____ () C:\Users\Eurceliakins\Desktop\FlashGet downloads.lnk
2014-04-01 00:32 - 2014-04-01 00:32 - 00000025 _____ () C:\WINDOWS\libem.INI
2014-03-31 23:44 - 2014-04-01 05:38 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\StreamTorrent
2014-03-31 22:59 - 2014-03-31 22:59 - 01005095 _____ () C:\Users\A Lamar\Desktop\QuarantineRestore_31032014225912.txt
2014-03-31 22:59 - 2014-03-31 17:07 - 00022787 _____ () C:\Users\A Lamar\Desktop\AdwCleaner[S0].txt
2014-03-31 22:49 - 2014-04-01 06:05 - 00000000 ____D () C:\Users\A Lamar\dwhelper
2014-03-31 17:46 - 2014-03-31 17:46 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\ABBYY
2014-03-31 17:16 - 2014-03-31 17:19 - 00002277 _____ () C:\Users\A Lamar\Desktop\Facebook.lnk
2014-03-31 17:16 - 2014-03-31 17:19 - 00002273 _____ () C:\Users\A Lamar\Desktop\Youtube.lnk
2014-03-31 17:16 - 2014-03-31 17:16 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-03-31 17:15 - 2014-03-31 22:57 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-03-31 17:13 - 2014-04-02 12:14 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Torch
2014-03-31 17:09 - 2014-04-04 03:15 - 00000000 ____D () C:\FRST
2014-03-31 16:32 - 2014-03-31 16:32 - 02157056 _____ (Farbar) C:\Users\A Lamar\Desktop\FRST64.exe
2014-03-31 00:24 - 2014-04-01 04:27 - 00000000 ____D () C:\AdwCleaner
2014-03-31 00:23 - 2014-03-31 00:23 - 01950720 _____ () C:\Users\A Lamar\Desktop\AdwCleaner.exe
2014-03-30 23:10 - 2014-03-30 23:10 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mead & Company
2014-03-30 23:10 - 2014-03-30 23:10 - 00000000 ____D () C:\Program Files (x86)\MeadCo Neptune
2014-03-30 23:00 - 2014-03-30 23:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\PCPitstop
2014-03-30 22:59 - 2014-03-30 22:59 - 00761856 _____ () C:\Users\A Lamar\Desktop\PCMaticPlugin.msi
2014-03-30 22:11 - 2014-03-30 22:11 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\QuickScan
2014-03-30 21:26 - 2014-03-30 21:26 - 00002397 _____ () C:\Users\A Lamar\Desktop\DE3IK FB - Torch.lnk
2014-03-30 21:01 - 2014-03-30 21:01 - 00000305 _____ () C:\Users\A Lamar\Desktop\ClickClean-v8.3-Options.json
2014-03-30 20:24 - 2014-03-30 20:24 - 00002397 _____ () C:\Users\A Lamar\Desktop\DE3IK GV - Torch.lnk
2014-03-30 17:50 - 2014-03-30 17:50 - 00000125 _____ () C:\Users\A Lamar\Desktop\POST.txt
2014-03-30 17:40 - 2014-03-30 17:40 - 00008301 _____ () C:\Users\A Lamar\Desktop\ESETScan.txt
2014-03-30 12:30 - 2014-03-30 12:30 - 02347384 _____ (ESET) C:\Users\A Lamar\Desktop\esetsmartinstaller_enu.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-03-30 10:46 - 2014-03-30 10:46 - 00141713 _____ () C:\Users\A Lamar\Desktop\Malwarebytes Anti-Malware.txt
2014-03-30 10:02 - 2014-03-30 10:04 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-03-30 10:02 - 2014-03-30 10:02 - 00001080 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-30 10:02 - 2014-03-30 10:02 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 10:02 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-30 10:02 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-30 10:02 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\Documents\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Program Files (x86)\Balabolka
2014-03-30 06:41 - 2014-03-30 06:49 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\SumatraPDF
2014-03-30 06:41 - 2014-03-30 06:41 - 00000000 ____D () C:\Program Files (x86)\SumatraPDF
2014-03-30 06:39 - 2014-03-30 06:39 - 00000000 ____D () C:\Users\A Lamar\Desktop\FileSample_CSV
2014-03-30 05:59 - 2014-03-30 05:59 - 00000017 _____ () C:\Users\A Lamar\AppData\Local\resmon.resmoncfg
2014-03-30 05:35 - 2014-04-02 09:36 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-03-30 05:19 - 2014-03-31 23:01 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\DiskDefrag
2014-03-30 05:17 - 2014-04-02 09:36 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\GlarySoft
2014-03-30 04:38 - 2014-03-30 04:38 - 00001115 _____ () C:\Users\A Lamar\Desktop\SpywareBlaster.lnk
2014-03-30 04:33 - 2014-03-30 04:33 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2014-03-30 04:09 - 2014-03-30 04:09 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamingStar
2014-03-30 03:29 - 2014-04-02 11:43 - 00000000 ____D () C:\Users\A Lamar\Desktop\SHORTCUTS
2014-03-30 00:48 - 2014-03-30 00:48 - 00000046 _____ () C:\WINDOWS\SysWOW64\DonationCoder_urlsnooper_InstallInfo.dat
2014-03-30 00:48 - 2014-03-30 00:48 - 00000000 ____D () C:\Users\A Lamar\Documents\DonationCoder
2014-03-30 00:48 - 2014-03-30 00:48 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\DonationCoder
2014-03-29 23:15 - 2014-03-29 23:15 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\KeePass
2014-03-29 23:13 - 2014-03-29 23:13 - 00000000 ____D () C:\Program Files (x86)\KeePass Password Safe
2014-03-29 19:59 - 2014-03-29 19:59 - 00000997 _____ () C:\Users\Public\Desktop\Unchecky.lnk
2014-03-29 19:59 - 2014-03-29 19:59 - 00000000 ____D () C:\Program Files (x86)\Unchecky
2014-03-29 19:39 - 2014-03-30 05:42 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Comodo
2014-03-29 19:39 - 2014-03-30 04:33 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Comodo
2014-03-29 19:39 - 2014-03-30 04:33 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-03-29 19:38 - 2014-03-29 19:38 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-03-29 18:57 - 2014-03-31 17:19 - 00001457 _____ () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-03-29 18:13 - 2014-03-31 18:05 - 00000024 _____ () C:\Users\A Lamar\AppData\Local\pdfshaper.ini
2014-03-29 18:00 - 2014-03-29 18:13 - 00000134 _____ () C:\Users\A Lamar\AppData\Roaming\PDFShaper.ini
2014-03-29 17:56 - 2014-03-29 17:56 - 00000000 ____D () C:\Program Files (x86)\Glorylogic
2014-03-29 16:58 - 2014-04-02 12:22 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Azureus
2014-03-29 16:58 - 2014-03-29 16:58 - 00000000 ____D () C:\ProgramData\Azureus
2014-03-29 16:56 - 2014-03-29 16:57 - 00006948 _____ () C:\Users\A Lamar\Desktop\error.log
2014-03-29 16:55 - 2014-03-29 16:55 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Oracle
2014-03-29 16:54 - 2014-03-29 16:54 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-03-29 16:54 - 2014-03-29 16:54 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-28 17:35 - 2014-03-31 18:36 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\CutePDF Writer
2014-03-26 15:18 - 2014-03-26 15:18 - 00000000 ____D () C:\Users\White\AppData\Roaming\Real
2014-03-25 12:24 - 2014-03-25 12:24 - 00334223 _____ () C:\Users\A Lamar\Desktop\CBS.zip
2014-03-25 08:07 - 2014-03-25 08:07 - 11204416 _____ () C:\Users\A Lamar\Desktop\CBS.log
2014-03-25 06:56 - 2014-03-25 06:56 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Intel_Corporation
2014-03-25 04:12 - 2014-03-25 04:12 - 00000000 ____D () C:\Program Files\Speccy
2014-03-25 01:02 - 2014-03-30 05:49 - 00003304 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4128554873-3097705083-3195864600-1004
2014-03-25 01:02 - 2014-03-29 23:39 - 00003354 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4128554873-3097705083-3195864600-1004
2014-03-25 01:01 - 2014-03-25 01:01 - 00201800 _____ (RealNetworks, Inc.) C:\WINDOWS\SysWOW64\rmoc3260.dll
2014-03-25 01:00 - 2014-03-30 04:43 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Real
2014-03-25 01:00 - 2014-03-30 04:43 - 00000000 ____D () C:\Program Files (x86)\Real
2014-03-25 00:51 - 2014-03-30 04:43 - 00000000 ____D () C:\ProgramData\Real
2014-03-24 21:43 - 2014-02-22 08:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-03-24 21:43 - 2014-02-22 07:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-03-24 20:15 - 2014-03-13 12:41 - 23002558 _____ () C:\Users\A Lamar\CbsPersist_20140313164805.log
2014-03-24 19:59 - 2014-03-24 19:59 - 00001141 _____ () C:\Users\A Lamar\Desktop\FastStone Image Viewer.lnk
2014-03-23 01:18 - 2014-03-30 05:48 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Orbit
2014-03-23 01:18 - 2014-03-23 01:18 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\ProgSense
2014-03-23 01:18 - 2014-03-23 01:18 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\GrabPro
2014-03-23 00:02 - 2014-03-23 00:02 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\RapidSolution
2014-03-23 00:02 - 2014-03-23 00:02 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\CrashRpt
2014-03-22 17:10 - 2014-03-22 17:16 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\WORDsearch Basic 10
2014-03-22 17:10 - 2014-03-22 17:10 - 00001179 _____ () C:\Users\A Lamar\Desktop\WORDsearch Basic.lnk
2014-03-22 17:10 - 2014-03-22 17:10 - 00000000 ____D () C:\Users\A Lamar\Documents\WORDsearch
2014-03-22 05:44 - 2014-03-25 11:58 - 00064158 _____ () C:\Users\A
2014-03-22 04:16 - 2014-03-22 04:16 - 00004017 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_D_03222014_041616.txt
2014-03-22 04:14 - 2014-03-22 04:14 - 00003821 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03222014_041456.txt
2014-03-21 21:13 - 2014-03-21 21:13 - 00003787 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211352.txt
2014-03-21 21:11 - 2014-03-21 21:11 - 00003754 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211107.txt
2014-03-21 21:08 - 2014-03-22 04:16 - 00000000 ____D () C:\Users\A Lamar\Desktop\RK_Quarantine
2014-03-20 04:23 - 2014-03-20 04:23 - 03901952 _____ () C:\Users\A Lamar\Desktop\RogueKiller.exe
2014-03-19 19:54 - 2014-03-19 19:54 - 00000000 ____D () C:\_OTL
2014-03-18 15:50 - 2014-03-13 20:08 - 00602112 _____ (OldTimer Tools) C:\Users\White\Desktop\OTL.exe
2014-03-18 13:38 - 2014-03-18 13:38 - 04745728 _____ (AVAST Software) C:\Users\White\Desktop\aswMBR.exe
2014-03-18 13:38 - 2014-03-18 13:38 - 00987442 _____ () C:\Users\White\Desktop\SecurityCheck.exe
2014-03-18 11:09 - 2014-01-07 21:46 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-18 11:09 - 2014-01-07 21:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-03-18 11:09 - 2014-01-07 21:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-03-18 11:09 - 2014-01-04 11:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-18 11:09 - 2014-01-04 11:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-03-18 11:09 - 2014-01-04 10:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-18 11:09 - 2014-01-04 09:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-03-18 11:09 - 2014-01-02 19:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-18 11:09 - 2014-01-02 19:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-18 11:09 - 2013-12-31 21:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-18 11:09 - 2013-12-31 21:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-03-18 11:09 - 2013-12-31 20:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-03-18 11:09 - 2013-12-31 20:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-03-18 11:09 - 2013-12-31 19:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-03-18 11:09 - 2013-12-31 19:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-18 11:09 - 2013-12-31 19:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-03-18 11:09 - 2013-12-30 19:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-03-18 11:09 - 2013-12-30 19:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-03-18 11:09 - 2013-12-30 19:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-03-18 11:09 - 2013-12-30 19:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-18 11:09 - 2013-12-30 19:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-03-18 11:09 - 2013-12-27 11:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-03-18 11:09 - 2013-12-27 04:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-03-18 11:09 - 2013-12-27 04:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-18 11:09 - 2013-12-27 04:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-18 11:09 - 2013-12-27 03:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-03-18 11:09 - 2013-12-27 03:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-18 11:09 - 2013-12-27 02:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-18 11:09 - 2013-12-21 03:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-03-18 11:09 - 2013-12-17 03:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-18 11:09 - 2013-12-14 02:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-18 11:09 - 2013-12-14 02:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-18 11:09 - 2013-12-13 06:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-03-18 11:09 - 2013-12-13 03:24 - 00121088 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2014-03-18 11:09 - 2013-12-13 02:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-03-18 11:09 - 2013-12-13 01:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-03-18 11:09 - 2013-12-09 04:05 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-18 11:09 - 2013-12-09 00:51 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-18 03:34 - 2014-03-18 03:34 - 00003166 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Startup
2014-03-18 03:34 - 2014-03-18 03:34 - 00003164 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-03-15 06:12 - 2014-03-16 19:56 - 00262656 ___SH () C:\Users\White\Documents\Thumbs.db
2014-03-14 20:04 - 2014-03-14 20:04 - 00000885 _____ () C:\Users\White\Desktop\P - Shortcut.lnk
2014-03-13 20:40 - 2014-03-13 20:40 - 00014044 _____ () C:\Users\A Lamar\Desktop\hijackthis.log
2014-03-13 20:35 - 2014-03-13 20:35 - 00105472 _____ () C:\Users\A Lamar\Desktop\Extras.Txt
2014-03-13 20:34 - 2014-03-30 09:59 - 00232338 _____ () C:\Users\A Lamar\Desktop\OTL.Txt
2014-03-13 20:10 - 2014-03-13 20:10 - 00625664 _____ () C:\Users\A Lamar\Desktop\dds.scr
2014-03-13 20:09 - 2014-03-13 20:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\A Lamar\Desktop\HiJackThis.exe
2014-03-13 20:08 - 2014-03-13 20:08 - 00602112 _____ (OldTimer Tools) C:\Users\A Lamar\Desktop\OTL.exe
2014-03-12 23:54 - 2014-03-01 02:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-12 23:54 - 2014-03-01 00:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-12 23:54 - 2014-03-01 00:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-12 23:54 - 2014-03-01 00:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-12 23:54 - 2014-02-28 23:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-12 23:54 - 2014-02-28 23:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-12 23:54 - 2014-02-28 23:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-12 23:54 - 2014-02-28 23:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-12 23:54 - 2014-02-28 23:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-12 23:54 - 2014-02-28 23:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-12 23:54 - 2014-02-28 23:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-12 23:54 - 2014-02-28 22:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-12 23:54 - 2014-02-28 22:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-12 23:54 - 2014-02-28 22:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-12 23:54 - 2014-02-28 22:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-12 23:54 - 2014-02-28 22:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-12 23:54 - 2014-02-28 22:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-12 23:54 - 2014-02-10 23:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-12 23:54 - 2014-02-10 22:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-12 23:54 - 2014-02-10 22:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-12 23:54 - 2014-01-31 12:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-12 23:54 - 2014-01-31 12:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-12 23:54 - 2014-01-31 12:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-12 23:54 - 2014-01-31 09:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-12 23:54 - 2014-01-31 05:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-12 23:54 - 2014-01-29 05:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-12 23:54 - 2014-01-29 04:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-12 23:54 - 2014-01-29 04:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-12 23:54 - 2014-01-29 04:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-12 23:54 - 2014-01-29 04:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-12 23:54 - 2014-01-29 03:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-12 23:54 - 2014-01-29 03:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-12 23:54 - 2014-01-29 03:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-12 23:54 - 2014-01-29 02:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-12 23:54 - 2014-01-28 20:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-12 23:54 - 2014-01-27 15:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-12 23:54 - 2014-01-27 15:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-12 23:54 - 2014-01-27 15:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-12 23:54 - 2014-01-27 14:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-12 23:54 - 2014-01-27 14:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-12 23:54 - 2014-01-27 14:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-12 23:54 - 2014-01-27 14:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-12 23:54 - 2014-01-27 14:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-12 23:54 - 2014-01-27 13:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-12 23:54 - 2014-01-27 13:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-12 23:54 - 2014-01-27 13:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-12 23:54 - 2014-01-27 11:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-12 23:54 - 2014-01-27 11:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-12 23:54 - 2014-01-27 07:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-12 23:54 - 2014-01-17 19:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-12 23:54 - 2014-01-17 17:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-12 23:54 - 2013-12-21 10:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-12 23:54 - 2013-12-21 04:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-12 23:54 - 2013-12-20 06:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-12 23:54 - 2013-12-20 06:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-12 23:54 - 2013-10-30 20:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-12 23:54 - 2013-10-30 20:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-12 23:54 - 2013-10-30 20:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-11 05:25 - 2014-03-11 05:25 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Apple
2014-03-11 05:22 - 2014-03-11 05:22 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Apple Computer
2014-03-07 21:39 - 2014-03-07 21:39 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\IDT
 
==================== One Month Modified Files and Folders =======
 
2038-09-13 09:42 - 2038-09-13 09:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1413375.txt
2038-09-13 09:42 - 2038-09-13 09:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1412921.txt
2038-09-13 09:41 - 2038-09-13 09:41 - 00000000 ____D () C:\Users\White\AppData\Roaming\Macromedia
2038-09-13 09:41 - 2012-09-10 10:31 - 00000000 _RSHD () C:\hp
2038-09-13 09:40 - 2038-09-13 09:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1323015.txt
2038-09-13 09:36 - 2038-09-13 09:36 - 00000000 ____D () C:\ProgramData\Recovery
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-955531.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952843.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952812.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-952703.txt
2038-09-13 09:34 - 2038-09-13 09:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-950343.txt
2038-09-13 09:24 - 2038-09-13 09:24 - 00000000 ____D () C:\Users\White\Documents\CyberLink
2038-09-13 09:21 - 2038-09-13 09:21 - 00003902 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3C6296C1-DDF5-4314-8E7A-E313A6DB753F}
2038-09-13 09:21 - 2038-09-13 09:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-184906.txt
2038-09-13 09:21 - 2038-09-13 09:21 - 00000000 ____D () C:\Users\White\Documents\Bluetooth
2038-09-13 09:21 - 2038-09-13 09:21 - 00000000 ____D () C:\Users\White\AppData\Local\Power2Go8
2038-09-13 09:21 - 2038-09-13 07:53 - 00000000 ___RD () C:\Program Files\Online Services
2038-09-13 09:21 - 2038-09-13 07:43 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2038-09-13 09:21 - 2038-09-13 07:35 - 00000000 __RSH () C:\WINDOWS\SysWOW64\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J2000_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 09:21 - 2038-09-13 07:35 - 00000000 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J2000_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 09:21 - 2012-08-01 23:15 - 00000000 ____D () C:\SWSETUP
2038-09-13 09:21 - 2012-08-01 05:57 - 00000000 _RSHD () C:\SYSTEM.SAV
2038-09-13 09:20 - 2038-09-13 09:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-90359.txt
2038-09-13 07:59 - 2038-09-13 07:59 - 00000142 _____ () C:\WINDOWS\system32\netcfg-138625.txt
2038-09-13 07:57 - 2038-09-13 07:57 - 00018630 _____ () C:\WINDOWS\system32\results.xml
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1340343.txt
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1335187.txt
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Users\Public\Symantec
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\SymSilent
2038-09-13 07:54 - 2038-09-13 07:36 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2038-09-13 07:53 - 2014-04-02 11:49 - 00002269 _____ () C:\Users\White\Desktop\eBay.lnk
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2038-09-13 07:50 - 2038-09-13 07:50 - 00029480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files\Bonjour
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2038-09-13 07:45 - 2038-09-13 07:43 - 00000000 ____D () C:\ProgramData\install_clap
2038-09-13 07:41 - 2038-09-13 07:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Hewlett-Packard
2038-09-13 07:40 - 2038-09-13 07:40 - 00000000 ____D () C:\ProgramData\{AFF99647-6D64-46F2-934A-F12F468037F6}
2038-09-13 07:39 - 2038-09-13 07:39 - 00000318 _____ () C:\WINDOWS\system32\netcfg-390500.txt
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____D () C:\ProgramData\Ralink Driver
2038-09-13 07:38 - 2038-09-13 07:38 - 00001100 _____ () C:\WINDOWS\system32\netcfg-339656.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000161 _____ () C:\WINDOWS\system32\netcfg-340406.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 _____ () C:\WINDOWS\system32\0
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\ProgramData\Intel
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\Program Files\IDT
2038-09-13 07:36 - 2038-09-13 07:36 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97406.txt
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97375.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00001027 _____ () C:\WINDOWS\system32\netcfg-38765.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33265.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-28359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-47015.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-33125.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000197 _____ () C:\WINDOWS\system32\netcfg-47781.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000185 _____ () C:\WINDOWS\system32\netcfg-36093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000164 _____ () C:\WINDOWS\system32\netcfg-32687.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000161 _____ () C:\WINDOWS\system32\netcfg-35812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-35609.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-34921.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-32453.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000159 _____ () C:\WINDOWS\system32\netcfg-35093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-35359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-32812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000150 _____ () C:\WINDOWS\system32\netcfg-34703.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-04-04 03:27 - 2014-04-01 11:22 - 00036155 _____ () C:\Users\A Lamar\Desktop\FRST.txt
2014-04-04 03:27 - 2014-03-31 17:09 - 00000000 ____D () C:\FRST
2014-04-04 03:25 - 2014-01-03 01:31 - 00000000 ____D () C:\WINDOWS\Minidump
2014-04-04 03:25 - 2013-12-24 09:23 - 00000000 ____D () C:\ProgramData\VSO
2014-04-04 03:22 - 2013-12-23 19:26 - 00000000 ____D () C:\Users\White
2014-04-04 03:19 - 2014-01-03 16:14 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\ClassicShell
2014-04-04 03:17 - 2013-12-26 13:36 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1004
2014-04-04 03:16 - 2013-11-14 03:28 - 00956476 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-04 03:13 - 2014-02-01 20:51 - 00000384 _____ () C:\WINDOWS\Tasks\WpsNotifyTask_A Lamar.job
2014-04-04 03:12 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-04-04 03:11 - 2038-09-13 07:57 - 00004524 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2014-04-04 03:11 - 2014-04-01 04:09 - 00000761 _____ () C:\Users\Public\Desktop\Webroot SecureAnywhere.lnk
2014-04-04 03:11 - 2014-01-10 15:31 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-04 03:11 - 2013-12-24 07:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-04 03:11 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-04-04 03:11 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-04-04 03:11 - 2012-07-30 13:22 - 00000821 _____ () C:\WINDOWS\SysWOW64\bscs.ini
2014-04-04 03:10 - 2014-04-04 03:10 - 00001215 _____ () C:\Users\A Lamar\Desktop\my post 2.txt
2014-04-04 03:10 - 2014-02-01 20:51 - 00000384 _____ () C:\WINDOWS\Tasks\WpsUpdateTask_A Lamar.job
2014-04-04 03:10 - 2013-12-24 09:37 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-04-04 03:07 - 2013-12-23 20:38 - 00000000 ____D () C:\ProgramData\WRData
2014-04-04 03:03 - 2014-04-04 03:03 - 00000368 _____ () C:\Users\A Lamar\Desktop\Stephen_F_Austin_vs_VCU_Game_203_1850_662d7e873cdbc82d_p_Seg1_Frag232574743
2014-04-04 03:03 - 2014-04-02 12:13 - 00000368 _____ () C:\Users\A Lamar\Desktop\Stephen_F_Austin_vs_VCU_Game_203_1850_662d7e873cdbc82d_p_Seg1_Frag232574742
2014-04-04 03:03 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar
2014-04-04 03:00 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-04-04 02:53 - 2014-01-03 12:38 - 01050624 ___SH () C:\Users\A Lamar\Desktop\Thumbs.db
2014-04-04 02:53 - 2014-01-02 12:08 - 00000000 ____D () C:\Users\White\Desktop\TRASH
2014-04-04 02:52 - 2014-01-24 03:17 - 00000000 ____D () C:\Users\White\AppData\Roaming\vlc
2014-04-04 02:52 - 2014-01-10 15:31 - 00000902 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-04 02:51 - 2014-04-04 02:51 - 00000000 ____D () C:\Users\White\AppData\Roaming\KeePass
2014-04-04 02:50 - 2014-04-04 02:34 - 00000000 ____D () C:\Users\White\AppData\Roaming\FLV Extract
2014-04-04 02:48 - 2013-12-24 10:11 - 02623488 ___SH () C:\Users\White\Desktop\Thumbs.db
2014-04-04 02:47 - 2014-01-08 23:36 - 00000000 ____D () C:\Users\White\AppData\Roaming\ClassicShell
2014-04-04 02:39 - 2014-02-01 21:18 - 00000380 _____ () C:\WINDOWS\Tasks\WpsUpdateTask_White.job
2014-04-04 02:39 - 2014-02-01 21:18 - 00000380 _____ () C:\WINDOWS\Tasks\WpsNotifyTask_White.job
2014-04-04 01:25 - 2014-04-03 23:44 - 00106496 ___SH () C:\Users\White\Downloads\Thumbs.db
2014-04-03 23:45 - 2014-04-04 02:30 - 1249141143 _____ () C:\Users\White\Desktop\2014 gonz vs ok st rd 2 mm (adobe hds downloader test).flv
2014-04-03 23:16 - 2014-04-02 17:41 - 00000000 ____D () C:\Users\White\Desktop\New folder
2014-04-03 20:56 - 2014-02-05 06:22 - 00000000 ____D () C:\Users\White\AppData\Local\CrashDumps
2014-04-03 14:32 - 2038-09-13 09:40 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1001
2014-04-03 14:18 - 2014-01-17 04:43 - 00000000 ____D () C:\Users\White\dwhelper
2014-04-03 12:40 - 2014-04-03 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-03 01:29 - 2014-04-02 11:53 - 00002387 _____ () C:\Users\White\Desktop\Torch DE3IK GV -.lnk
2014-04-03 01:26 - 2014-04-03 01:12 - 00000000 ____D () C:\Users\White\AppData\Roaming\Balabolka
2014-04-03 01:21 - 2014-04-03 01:21 - 00000000 ____D () C:\Users\White\AppData\Roaming\WebApp
2014-04-03 01:18 - 2014-04-03 01:18 - 00000000 ____D () C:\Users\White\AppData\Local\Cyberlink
2014-04-03 01:18 - 2014-04-03 00:22 - 00000000 ____D () C:\Users\White\AppData\Roaming\CyberLink
2014-04-03 01:15 - 2013-12-24 08:26 - 00000000 ____D () C:\Users\White\AppData\Local\Apple Computer
2014-04-03 01:12 - 2014-04-03 01:12 - 00000000 ____D () C:\Users\White\Documents\Balabolka
2014-04-03 01:07 - 2038-09-13 09:22 - 00000000 ____D () C:\Users\White\Documents\ConvertXtoDVD
2014-04-03 01:07 - 2014-02-21 22:29 - 00000000 ____D () C:\Users\White\AppData\Roaming\VSO
2014-04-03 00:23 - 2038-09-13 07:43 - 00000000 ____D () C:\ProgramData\CyberLink
2014-04-03 00:23 - 2014-02-22 17:42 - 00000000 ____D () C:\Users\Public\CyberLink
2014-04-03 00:00 - 2014-04-03 00:00 - 00000000 ____D () C:\Users\White\AppData\Local\Windows Live
2014-04-03 00:00 - 2014-04-03 00:00 - 00000000 ____D () C:\Users\White\AppData\Local\{6D6A07B6-366D-4773-AFF1-3864F0793073}
2014-04-02 23:28 - 2014-04-02 15:08 - 00004258 _____ () C:\WINDOWS\System32\Tasks\FREE FILE SYNC EVERY 5 MIN UNATTENDED BACKUP
2014-04-02 21:22 - 2038-09-13 07:57 - 00000043 _____ () C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2014-04-02 19:16 - 2014-04-02 14:05 - 00000000 ____D () C:\Users\White\AppData\Roaming\FreeFileSync
2014-04-02 17:43 - 2038-09-13 09:23 - 00000000 ____D () C:\Users\White\AppData\Roaming\Hewlett-Packard
2014-04-02 17:43 - 2013-12-18 15:43 - 00000000 ____D () C:\Users\White\AppData\Local\Hewlett-Packard
2014-04-02 17:42 - 2014-04-02 17:42 - 00002234 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Google Earth.lnk
2014-04-02 15:15 - 2014-01-03 20:30 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-04-02 15:07 - 2038-09-13 09:20 - 00000000 ____D () C:\Users\White\AppData\Local\VirtualStore
2014-04-02 14:52 - 2014-02-01 21:18 - 00000000 ____D () C:\Users\White\AppData\Local\Kingsoft
2014-04-02 13:17 - 2014-04-02 13:17 - 00000000 ____D () C:\Program Files\FreeFileSync
2014-04-02 13:15 - 2014-04-02 13:15 - 00000000 ____D () C:\Users\White\AppData\Roaming\SumatraPDF
2014-04-02 12:37 - 2014-04-02 12:37 - 00002387 _____ () C:\Users\White\Desktop\Torch DE3IK FB -.lnk
2014-04-02 12:25 - 2014-04-02 11:49 - 00002277 _____ () C:\Users\White\Desktop\Facebook.lnk
2014-04-02 12:25 - 2014-04-02 11:49 - 00002273 _____ () C:\Users\White\Desktop\Youtube.lnk
2014-04-02 12:25 - 2013-12-24 08:11 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2014-04-02 12:22 - 2014-04-01 06:05 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Media Player Classic
2014-04-02 12:22 - 2014-03-29 16:58 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Azureus
2014-04-02 12:22 - 2014-02-20 23:50 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\CrashDumps
2014-04-02 12:14 - 2014-03-31 17:13 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Torch
2014-04-02 12:10 - 2014-04-02 12:08 - 00000000 ____D () C:\Users\A Lamar\Desktop\User Data
2014-04-02 11:54 - 2014-04-02 11:53 - 00001449 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-04-02 11:53 - 2014-04-02 11:53 - 00000000 ____D () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-04-02 11:53 - 2014-04-02 11:51 - 00000000 ____D () C:\Users\White\AppData\Local\Torch
2014-04-02 11:53 - 2014-03-04 22:17 - 00000000 ____D () C:\ProgramData\eFax Messenger 4.4 Setup
2014-04-02 11:50 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-04-02 11:43 - 2014-03-30 03:29 - 00000000 ____D () C:\Users\A Lamar\Desktop\SHORTCUTS
2014-04-02 11:40 - 2014-04-01 01:58 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\vlc
2014-04-02 09:36 - 2014-03-30 05:35 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-04-02 09:36 - 2014-03-30 05:17 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\GlarySoft
2014-04-02 09:34 - 2014-04-01 09:57 - 00000000 ____D () C:\Program Files (x86)\Applian Technologies
2014-04-02 09:34 - 2014-04-01 09:56 - 00000000 ____D () C:\Program Files (x86)\Freecorder extension
2014-04-02 09:27 - 2014-04-01 08:00 - 00014848 ___SH () C:\Users\A Lamar\Downloads\Thumbs.db
2014-04-01 22:31 - 2014-04-01 22:31 - 00000000 ____D () C:\Users\White\AppData\Roaming\MPC-HC
2014-04-01 14:42 - 2014-04-01 14:42 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamTransport
2014-04-01 14:34 - 2014-04-01 14:33 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\HandBrake
2014-04-01 12:41 - 2014-04-01 12:41 - 00000000 _____ () C:\Users\A Lamar\mm_backup.cfg
2014-04-01 12:06 - 2014-02-14 14:14 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\NCH Software
2014-04-01 12:01 - 2014-04-01 11:17 - 00000408 _____ () C:\Users\A Lamar\AppData\Roaming\CamShapes.ini
2014-04-01 12:01 - 2014-04-01 11:17 - 00000408 _____ () C:\Users\A Lamar\AppData\Roaming\CamLayout.ini
2014-04-01 12:01 - 2014-04-01 11:17 - 00000249 _____ () C:\Users\A Lamar\AppData\Roaming\Camdata.ini
2014-04-01 12:00 - 2014-04-01 12:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\MPC-HC
2014-04-01 11:23 - 2014-04-01 11:22 - 00039308 _____ () C:\Users\A Lamar\Desktop\Addition.txt
2014-04-01 11:17 - 2013-12-24 02:16 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-04-01 09:57 - 2014-04-01 09:57 - 00000000 ____D () C:\WINDOWS\Jaksta
2014-04-01 09:56 - 2014-04-01 09:56 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\freecorder
2014-04-01 07:35 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Hewlett-Packard
2014-04-01 07:34 - 2038-09-13 07:36 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-04-01 07:31 - 2014-04-01 06:32 - 00000000 ____D () C:\Program Files (x86)\Hensence.com
2014-04-01 07:29 - 2038-09-13 07:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-01 06:32 - 2014-04-01 06:32 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Hensense.com
2014-04-01 06:05 - 2014-03-31 22:49 - 00000000 ____D () C:\Users\A Lamar\dwhelper
2014-04-01 06:00 - 2013-12-26 14:01 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Macromedia
2014-04-01 06:00 - 2013-12-26 14:01 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Macromedia
2014-04-01 06:00 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Adobe
2014-04-01 05:40 - 2038-09-13 07:43 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-04-01 05:38 - 2014-03-31 23:44 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\StreamTorrent
2014-04-01 04:41 - 2014-01-17 07:12 - 00000000 ____D () C:\ProgramData\VMware
2014-04-01 04:27 - 2014-03-31 00:24 - 00000000 ____D () C:\AdwCleaner
2014-04-01 01:58 - 2014-04-01 01:58 - 00000889 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-04-01 01:57 - 2013-12-24 02:33 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-01 00:40 - 2014-04-01 00:32 - 00000000 ____D () C:\Program Files (x86)\FlashGet Network
2014-04-01 00:34 - 2014-04-01 00:34 - 00000204 _____ () C:\WINDOWS\SysWOW64\secustat.dat
2014-04-01 00:34 - 2014-04-01 00:32 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\FlashgetSetup
2014-04-01 00:34 - 2014-04-01 00:32 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\BITS
2014-04-01 00:32 - 2014-04-01 00:32 - 00001424 _____ () C:\Users\Eurceliakins\Desktop\FlashGet downloads.lnk
2014-04-01 00:32 - 2014-04-01 00:32 - 00000025 _____ () C:\WINDOWS\libem.INI
2014-03-31 23:01 - 2014-03-30 05:19 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\DiskDefrag
2014-03-31 22:59 - 2014-03-31 22:59 - 01005095 _____ () C:\Users\A Lamar\Desktop\QuarantineRestore_31032014225912.txt
2014-03-31 22:57 - 2014-03-31 17:15 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-03-31 18:36 - 2014-03-28 17:35 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\CutePDF Writer
2014-03-31 18:05 - 2014-03-29 18:13 - 00000024 _____ () C:\Users\A Lamar\AppData\Local\pdfshaper.ini
2014-03-31 17:46 - 2014-03-31 17:46 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\ABBYY
2014-03-31 17:19 - 2014-03-31 17:16 - 00002277 _____ () C:\Users\A Lamar\Desktop\Facebook.lnk
2014-03-31 17:19 - 2014-03-31 17:16 - 00002273 _____ () C:\Users\A Lamar\Desktop\Youtube.lnk
2014-03-31 17:19 - 2014-03-29 18:57 - 00001457 _____ () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-03-31 17:19 - 2014-01-06 21:53 - 00000000 ___RD () C:\Users\A Lamar\Desktop\TRASH
2014-03-31 17:16 - 2014-03-31 17:16 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-03-31 17:07 - 2014-03-31 22:59 - 00022787 _____ () C:\Users\A Lamar\Desktop\AdwCleaner[S0].txt
2014-03-31 16:32 - 2014-03-31 16:32 - 02157056 _____ (Farbar) C:\Users\A Lamar\Desktop\FRST64.exe
2014-03-31 00:23 - 2014-03-31 00:23 - 01950720 _____ () C:\Users\A Lamar\Desktop\AdwCleaner.exe
2014-03-30 23:10 - 2014-03-30 23:10 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mead & Company
2014-03-30 23:10 - 2014-03-30 23:10 - 00000000 ____D () C:\Program Files (x86)\MeadCo Neptune
2014-03-30 23:00 - 2014-03-30 23:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\PCPitstop
2014-03-30 22:59 - 2014-03-30 22:59 - 00761856 _____ () C:\Users\A Lamar\Desktop\PCMaticPlugin.msi
2014-03-30 22:11 - 2014-03-30 22:11 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\QuickScan
2014-03-30 21:26 - 2014-03-30 21:26 - 00002397 _____ () C:\Users\A Lamar\Desktop\DE3IK FB - Torch.lnk
2014-03-30 21:01 - 2014-03-30 21:01 - 00000305 _____ () C:\Users\A Lamar\Desktop\ClickClean-v8.3-Options.json
2014-03-30 20:24 - 2014-03-30 20:24 - 00002397 _____ () C:\Users\A Lamar\Desktop\DE3IK GV - Torch.lnk
2014-03-30 17:50 - 2014-03-30 17:50 - 00000125 _____ () C:\Users\A Lamar\Desktop\POST.txt
2014-03-30 17:40 - 2014-03-30 17:40 - 00008301 _____ () C:\Users\A Lamar\Desktop\ESETScan.txt
2014-03-30 12:30 - 2014-03-30 12:30 - 02347384 _____ (ESET) C:\Users\A Lamar\Desktop\esetsmartinstaller_enu.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-03-30 12:22 - 2038-09-13 07:54 - 00000000 ____D () C:\ProgramData\Norton
2014-03-30 10:46 - 2014-03-30 10:46 - 00141713 _____ () C:\Users\A Lamar\Desktop\Malwarebytes Anti-Malware.txt
2014-03-30 10:04 - 2014-03-30 10:02 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-03-30 10:02 - 2014-03-30 10:02 - 00001080 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-30 10:02 - 2014-03-30 10:02 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 10:02 - 2014-01-03 18:33 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-30 09:59 - 2014-03-13 20:34 - 00232338 _____ () C:\Users\A Lamar\Desktop\OTL.Txt
2014-03-30 06:50 - 2014-04-02 11:49 - 00000931 _____ () C:\Users\White\Desktop\Balabolka.lnk
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\Documents\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Balabolka
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Program Files (x86)\Balabolka
2014-03-30 06:49 - 2014-03-30 06:41 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\SumatraPDF
2014-03-30 06:44 - 2014-01-03 19:09 - 00000000 ____D () C:\Users\A Lamar\.Synkron
2014-03-30 06:41 - 2014-03-30 06:41 - 00000000 ____D () C:\Program Files (x86)\SumatraPDF
2014-03-30 06:39 - 2014-03-30 06:39 - 00000000 ____D () C:\Users\A Lamar\Desktop\FileSample_CSV
2014-03-30 05:59 - 2014-03-30 05:59 - 00000017 _____ () C:\Users\A Lamar\AppData\Local\resmon.resmoncfg
2014-03-30 05:49 - 2014-03-25 01:02 - 00003304 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4128554873-3097705083-3195864600-1004
2014-03-30 05:48 - 2014-03-23 01:18 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Orbit
2014-03-30 05:48 - 2014-01-03 15:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Vso
2014-03-30 05:48 - 2013-12-23 19:22 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-30 05:47 - 2013-12-24 08:11 - 00000000 ____D () C:\Program Files (x86)\SlimCleaner
2014-03-30 05:44 - 2014-01-03 18:33 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Malwarebytes
2014-03-30 05:42 - 2014-03-29 19:39 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Comodo
2014-03-30 05:42 - 2014-02-20 23:26 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\AnvSoft
2014-03-30 05:17 - 2014-02-01 05:39 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Sony
2014-03-30 05:02 - 2014-01-15 10:05 - 00000000 ____D () C:\Program Files\Adblock Plus for IE
2014-03-30 04:43 - 2014-03-25 01:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Real
2014-03-30 04:43 - 2014-03-25 01:00 - 00000000 ____D () C:\Program Files (x86)\Real
2014-03-30 04:43 - 2014-03-25 00:51 - 00000000 ____D () C:\ProgramData\Real
2014-03-30 04:38 - 2014-03-30 04:38 - 00001115 _____ () C:\Users\A Lamar\Desktop\SpywareBlaster.lnk
2014-03-30 04:33 - 2014-03-30 04:33 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2014-03-30 04:33 - 2014-03-29 19:39 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Comodo
2014-03-30 04:33 - 2014-03-29 19:39 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-03-30 04:33 - 2013-12-31 03:28 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-03-30 04:11 - 2014-02-22 17:34 - 00000000 ____D () C:\Users\A Lamar\Documents\ConvertXtoDVD
2014-03-30 04:09 - 2014-03-30 04:09 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamingStar
2014-03-30 03:38 - 2013-12-24 02:50 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-30 03:30 - 2014-04-02 11:49 - 00000988 _____ () C:\Users\White\Desktop\Audials 11.lnk
2014-03-30 00:48 - 2014-03-30 00:48 - 00000046 _____ () C:\WINDOWS\SysWOW64\DonationCoder_urlsnooper_InstallInfo.dat
2014-03-30 00:48 - 2014-03-30 00:48 - 00000000 ____D () C:\Users\A Lamar\Documents\DonationCoder
2014-03-30 00:48 - 2014-03-30 00:48 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\DonationCoder
2014-03-29 23:39 - 2014-03-25 01:02 - 00003354 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4128554873-3097705083-3195864600-1004
2014-03-29 23:15 - 2014-03-29 23:15 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\KeePass
2014-03-29 23:13 - 2014-04-02 11:49 - 00001069 _____ () C:\Users\White\Desktop\KeePass.lnk
2014-03-29 23:13 - 2014-03-29 23:13 - 00000000 ____D () C:\Program Files (x86)\KeePass Password Safe
2014-03-29 19:59 - 2014-03-29 19:59 - 00000997 _____ () C:\Users\Public\Desktop\Unchecky.lnk
2014-03-29 19:59 - 2014-03-29 19:59 - 00000000 ____D () C:\Program Files (x86)\Unchecky
2014-03-29 19:38 - 2014-03-29 19:38 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-03-29 19:37 - 2014-04-02 11:49 - 00001358 _____ () C:\Users\White\Desktop\PROCESS EXPLORER (TASK MANAGER ALTERNATIVE) - Shortcut.lnk
2014-03-29 18:13 - 2014-03-29 18:00 - 00000134 _____ () C:\Users\A Lamar\AppData\Roaming\PDFShaper.ini
2014-03-29 17:56 - 2014-04-02 11:49 - 00001177 _____ () C:\Users\White\Desktop\PDF Shaper.lnk
2014-03-29 17:56 - 2014-03-29 17:56 - 00000000 ____D () C:\Program Files (x86)\Glorylogic
2014-03-29 16:58 - 2014-03-29 16:58 - 00000000 ____D () C:\ProgramData\Azureus
2014-03-29 16:57 - 2014-03-29 16:56 - 00006948 _____ () C:\Users\A Lamar\Desktop\error.log
2014-03-29 16:55 - 2014-03-29 16:55 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Oracle
2014-03-29 16:54 - 2014-03-29 16:54 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-03-29 16:54 - 2014-03-29 16:54 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-03-29 16:54 - 2014-03-29 16:54 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-27 18:39 - 2014-01-03 13:06 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Adobe
2014-03-27 18:39 - 2013-12-24 09:37 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-03-27 06:47 - 2014-01-10 15:31 - 00003874 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-27 06:47 - 2014-01-10 15:31 - 00003638 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-26 16:16 - 2013-12-23 20:38 - 00154248 _____ (Webroot) C:\WINDOWS\SysWOW64\WRusr.dll
2014-03-26 16:16 - 2013-12-23 20:38 - 00115168 _____ (Webroot) C:\WINDOWS\system32\Drivers\WRkrn.sys
2014-03-26 16:16 - 2013-12-23 20:38 - 00105320 _____ (Webroot) C:\WINDOWS\system32\WRusr.dll
2014-03-26 15:18 - 2014-03-26 15:18 - 00000000 ____D () C:\Users\White\AppData\Roaming\Real
2014-03-25 13:55 - 2038-09-13 07:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-03-25 12:24 - 2014-03-25 12:24 - 00334223 _____ () C:\Users\A Lamar\Desktop\CBS.zip
2014-03-25 11:58 - 2014-03-22 05:44 - 00064158 _____ () C:\Users\A
2014-03-25 08:07 - 2014-03-25 08:07 - 11204416 _____ () C:\Users\A Lamar\Desktop\CBS.log
2014-03-25 06:56 - 2014-03-25 06:56 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Intel_Corporation
2014-03-25 04:12 - 2014-04-02 11:49 - 00000810 _____ () C:\Users\White\Desktop\Speccy.lnk
2014-03-25 04:12 - 2014-03-25 04:12 - 00000000 ____D () C:\Program Files\Speccy
2014-03-25 01:01 - 2014-03-25 01:01 - 00201800 _____ (RealNetworks, Inc.) C:\WINDOWS\SysWOW64\rmoc3260.dll
2014-03-24 19:59 - 2014-03-24 19:59 - 00001141 _____ () C:\Users\A Lamar\Desktop\FastStone Image Viewer.lnk
2014-03-24 14:00 - 2013-12-24 02:16 - 00112640 _____ () C:\WINDOWS\SysWOW64\ff_vfw.dll
2014-03-23 01:24 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\VirtualStore
2014-03-23 01:18 - 2014-03-23 01:18 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\ProgSense
2014-03-23 01:18 - 2014-03-23 01:18 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\GrabPro
2014-03-23 01:18 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-23 00:39 - 2014-01-07 00:47 - 00000000 ____D () C:\Users\A Lamar\Documents\Freemake
2014-03-23 00:02 - 2014-03-23 00:02 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\RapidSolution
2014-03-23 00:02 - 2014-03-23 00:02 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\CrashRpt
2014-03-22 17:16 - 2014-03-22 17:10 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\WORDsearch Basic 10
2014-03-22 17:10 - 2014-03-22 17:10 - 00001179 _____ () C:\Users\A Lamar\Desktop\WORDsearch Basic.lnk
2014-03-22 17:10 - 2014-03-22 17:10 - 00000000 ____D () C:\Users\A Lamar\Documents\WORDsearch
2014-03-22 07:55 - 2038-09-13 09:21 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-22 07:55 - 2038-09-13 09:21 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-22 04:33 - 2014-02-03 16:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Identity Safe
2014-03-22 04:16 - 2014-03-22 04:16 - 00004017 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_D_03222014_041616.txt
2014-03-22 04:16 - 2014-03-21 21:08 - 00000000 ____D () C:\Users\A Lamar\Desktop\RK_Quarantine
2014-03-22 04:14 - 2014-03-22 04:14 - 00003821 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03222014_041456.txt
2014-03-21 21:13 - 2014-03-21 21:13 - 00003787 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211352.txt
2014-03-21 21:11 - 2014-03-21 21:11 - 00003754 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211107.txt
2014-03-20 04:23 - 2014-03-20 04:23 - 03901952 _____ () C:\Users\A Lamar\Desktop\RogueKiller.exe
2014-03-19 21:48 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-19 19:59 - 2013-12-26 13:31 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-19 19:57 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-19 19:54 - 2014-03-19 19:54 - 00000000 ____D () C:\_OTL
2014-03-18 18:37 - 2013-12-24 08:10 - 00000000 ____D () C:\Users\White\.Synkron
2014-03-18 13:38 - 2014-03-18 13:38 - 04745728 _____ (AVAST Software) C:\Users\White\Desktop\aswMBR.exe
2014-03-18 13:38 - 2014-03-18 13:38 - 00987442 _____ () C:\Users\White\Desktop\SecurityCheck.exe
2014-03-18 11:33 - 2013-12-23 15:25 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-18 11:32 - 2013-12-23 15:25 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-18 11:32 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-18 03:34 - 2014-03-18 03:34 - 00003166 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Startup
2014-03-18 03:34 - 2014-03-18 03:34 - 00003164 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-03-16 19:56 - 2014-03-15 06:12 - 00262656 ___SH () C:\Users\White\Documents\Thumbs.db
2014-03-16 19:54 - 2013-12-24 07:55 - 00000000 ____D () C:\Users\White\AppData\Roaming\Media Player Classic
2014-03-15 00:16 - 2014-02-18 05:33 - 00000000 ____D () C:\Users\White\Desktop\SONY MP3 CD
2014-03-14 20:04 - 2014-03-14 20:04 - 00000885 _____ () C:\Users\White\Desktop\P - Shortcut.lnk
2014-03-14 02:26 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-14 02:26 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-14 02:26 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-14 02:26 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-13 20:40 - 2014-03-13 20:40 - 00014044 _____ () C:\Users\A Lamar\Desktop\hijackthis.log
2014-03-13 20:35 - 2014-03-13 20:35 - 00105472 _____ () C:\Users\A Lamar\Desktop\Extras.Txt
2014-03-13 20:10 - 2014-03-13 20:10 - 00625664 _____ () C:\Users\A Lamar\Desktop\dds.scr
2014-03-13 20:09 - 2014-03-13 20:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\A Lamar\Desktop\HiJackThis.exe
2014-03-13 20:08 - 2014-03-18 15:50 - 00602112 _____ (OldTimer Tools) C:\Users\White\Desktop\OTL.exe
2014-03-13 20:08 - 2014-03-13 20:08 - 00602112 _____ (OldTimer Tools) C:\Users\A Lamar\Desktop\OTL.exe
2014-03-13 12:41 - 2014-03-24 20:15 - 23002558 _____ () C:\Users\A Lamar\CbsPersist_20140313164805.log
2014-03-13 12:36 - 2013-08-22 10:44 - 00496256 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-12 21:11 - 2013-12-24 08:32 - 00000000 ____D () C:\WINDOWS\System32\Tasks\NCH Software
2014-03-11 05:25 - 2014-03-11 05:25 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Apple
2014-03-11 05:25 - 2013-12-26 13:32 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Apple Computer
2014-03-11 05:22 - 2014-03-11 05:22 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Apple Computer
2014-03-10 18:17 - 2014-01-17 10:43 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-03-07 21:39 - 2014-03-07 21:39 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\IDT
2014-03-06 06:39 - 2014-01-27 14:44 - 00002470 _____ () C:\Users\White\Desktop\Chrome A LAMAR -.lnk
2014-03-06 06:39 - 2014-01-17 12:22 - 00002470 _____ () C:\Users\White\Desktop\Chrome DE3IK(GOOGLEVOICE) -.lnk
2014-03-06 06:39 - 2014-01-17 12:21 - 00002470 _____ () C:\Users\White\Desktop\Chrome DE3IK (FACEBOOK) -.lnk
2014-03-06 06:39 - 2014-01-17 12:21 - 00002426 _____ () C:\Users\White\Desktop\CHROME atrandom97 (YOUTUBE) -.lnk
2014-03-06 00:04 - 2014-02-21 23:21 - 00000000 ____D () C:\ProgramData\vsosdk
2014-03-05 09:26 - 2014-03-30 10:02 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-05 09:26 - 2014-03-30 10:02 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-03-30 10:02 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
 
Files to move or delete:
====================
C:\Users\A Lamar\AppData\Roaming\CamLayout.ini
C:\Users\A Lamar\AppData\Roaming\CamShapes.ini
 
 
Some content of TEMP:
====================
C:\Users\White\AppData\Local\Temp\PROCESS EXPLORER (TASK MANAGER ALTERNATIVE)64.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-12 23:54] - [2014-01-31 12:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02
 
 
 
LastRegBack: 2014-04-01 08:23
 
==================== End Of Log ============================


#34 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 04 April 2014 - 02:23 AM

Hi leader2,

Have you had any other Blue Screen episodes?
  • Go here, and scroll down to OPTION ONE.
  • Follow the instructions in the tutorial to run chkdsk on the C drive. If any errors are found, choose to repair this drive.
  • After chkdsk is complete, locate the chkdsk log and post it in your next reply.

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#35 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 04 April 2014 - 05:14 AM

Hi leader2,

Have you had any other Blue Screen episodes?

  • Go here, and scroll down to OPTION ONE.
  • Follow the instructions in the tutorial to run chkdsk on the C drive. If any errors are found, choose to repair this drive.
  • After chkdsk is complete, locate the chkdsk log and post it in your next reply.

 

 

 

I think there have been about 4 blue screens in total including this one, All of them have happened I believe within the year.

 

Log Name:      Application
Source:        Chkdsk
Date:          4/4/2014 7:09:45 AM
Event ID:      26226
Task Category: None
Level:         Information
Keywords:      Classic
User:          N/A
Computer:      HP
Description:
Chkdsk was executed in scan mode on a volume snapshot.  
 
Checking file system on C:
Volume label is OS.
 
Stage 1: Examining basic file system structure ...
                                                                                       
  426752 file records processed.                                                        
 
File verification completed.
                                                                                       
  4531 large file records processed.                                   
 
                                                                                       
  0 bad file records processed.                                     
 
 
Stage 2: Examining file name linkage ...
                                                                                       
  539296 index entries processed.                                                       
 
Index verification completed.
                                                                                       
 
                                                                                       
 
 
Stage 3: Examining security descriptors ...
Security descriptor verification completed.
                                                                                       
  56273 data files processed.                                           
 
CHKDSK is verifying Usn Journal...
                                                                                       
  34378016 USN bytes processed.                                                           
 
Usn Journal verification completed.
 
Windows has scanned the file system and found no problems.
No further action is required.
 
1940276223 KB total disk space.
1057683476 KB in 258727 files.
    136324 KB in 56274 indexes.
    589019 KB in use by the system.
     65536 KB occupied by the log file.
 881867404 KB available on disk.
 
      4096 bytes in each allocation unit.
 485069055 total allocation units on disk.
 220466851 allocation units available on disk.
 
----------------------------------------------------------------------
 
 
Stage 1: Examining basic file system structure ...
 
Stage 2: Examining file name linkage ...
 
Stage 3: Examining security descriptors ...
 
Windows has scanned the file system and found no problems.
No further action is required.
 
Event Xml:
  <System>
    <Provider Name="Chkdsk" />
    <EventID Qualifiers="0">26226</EventID>
    <Level>4</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2014-04-04T11:09:45.000000000Z" />
    <EventRecordID>31825</EventRecordID>
    <Channel>Application</Channel>
    <Computer>HP</Computer>
    <Security />
  </System>
  <EventData>
    <Data>
 
Checking file system on C:
Volume label is OS.
 
Stage 1: Examining basic file system structure ...
                                                                                       
  426752 file records processed.                                                        
 
File verification completed.
                                                                                       
  4531 large file records processed.                                   
 
                                                                                       
  0 bad file records processed.                                     
 
 
Stage 2: Examining file name linkage ...
                                                                                       
  539296 index entries processed.                                                       
 
Index verification completed.
                                                                                       
 
                                                                                       
 
 
Stage 3: Examining security descriptors ...
Security descriptor verification completed.
                                                                                       
  56273 data files processed.                                           
 
CHKDSK is verifying Usn Journal...
                                                                                       
  34378016 USN bytes processed.                                                           
 
Usn Journal verification completed.
 
Windows has scanned the file system and found no problems.
No further action is required.
 
1940276223 KB total disk space.
1057683476 KB in 258727 files.
    136324 KB in 56274 indexes.
    589019 KB in use by the system.
     65536 KB occupied by the log file.
 881867404 KB available on disk.
 
      4096 bytes in each allocation unit.
 485069055 total allocation units on disk.
 220466851 allocation units available on disk.
 
----------------------------------------------------------------------
 
 
Stage 1: Examining basic file system structure ...
 
Stage 2: Examining file name linkage ...
 
Stage 3: Examining security descriptors ...
 
Windows has scanned the file system and found no problems.
No further action is required.
</Data>
    <Binary>0083060084CE0400241C08000000000068030000690000000000000000000000</Binary>
  </EventData>
</Event>


#36 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 04 April 2014 - 08:26 AM

Hi leader2,

Thanks for that log. I know I have asked this multiple times already, but please describe the symptoms you keep encountering. I am fairly confident that the issue you are experiencing is not malware related. What is your opinion on using System Restore to roll back to a previous date or doing a Refresh of the operating system? Information can be found here on the process.

Let's confirm that we have removed all the malware that was present.

bullseye_zpse9eaf36e.gif Malwarebytes' Anti-Malware

Locate Malwarebytes' Anti-Malware (it should be on your desktop).
If not, download it here

    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • Once the program has loaded, select the Update tab to get the latest updates before performing the scan.
  • Select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected .
  • When completed, a log will open in Notepad. Please save it to a convenient location and post the results.
  • Note: If you receive a notice that some of the items couldn't be removed, that they have been added to the delete on reboot list, please reboot.

=========================


bullseye_zpse9eaf36e.gif ESET Online Scanner

*Note:

  • It is recommended to disable on-board antivirus program and anti-spyware programs while performing scans so there are no conflicts and it will speed up scan time.
  • Please don't go surfing while your resident protection is disabled!
  • Once the scan is finished remember to re-enable your antivirus along with your anti-spyware programs.

** You need to run your browser with Administrator Rights, to do so right click your browsers short cut and select "Run as Administrator".

= = = = = = = = = = = = = = = = = = = =

Go here to run ESET Online Scanner

(Note: You can use Internet Explorer or FireFox for this scan. If you use FireFox you will be asked to install an additional component. Please allow this.)

  • Place a check mark in the box YES, I accept the Terms Of Use
  • Click the Start button.
  • Now click the Install button.
  • Click Start. The scanner engine will initialize and update.
  • Place a check mark in the box beside Remove found threats.
  • Click the Scan button. The scan will now run, please be patient.
  • When the scan finishes click the Details tab.
  • Copy and paste the contents of the C:\Program Files\ESET\log.txt into your next reply.

    Note - when ESET doesn't find any threats, no report will be created.
  • Push the back button.
  • Push Finish
  • Re-enable your Antivirus software.

=========================

In your next post please provide the following:


  • MBAM log
  • ESET's log.txt
  • List of current symptoms

Edited by OCD, 04 April 2014 - 08:27 AM.
added instruction clarification

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#37 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 05 April 2014 - 07:17 PM

Hi leader2,
 
Thanks for that log. I know I have asked this multiple times already, but please describe the symptoms you keep encountering. I am fairly confident that the issue you are experiencing is not malware related. What is your opinion on using System Restore to roll back to a previous date or doing a Refresh of the operating system? Information can be found here on the process.
 
 
In your next post please provide the following:
 
MBAM log
ESET's log.txt
List of current symptoms
 
 
Your welcome OCD. There is no problem with you asking me. I appreciate your help on this and know the information helps you to fix the problem. 
 
The symptoms are the recent blue screens, the explorer exe red x that pop up when users log off or the comp restarts or shuts down, the comp seems to be slower than it should be in my opinion and today I noticed when watching live online video the quality fluctuated from high to low more than I had seen recently. I know my connection isn't fast (6mbs), but this made me wonder since I hadn't seen this happen before today and when I did a speed test my speed was the same as before. The other day my quality was stable. I'm not technical, but OCD maybe you can inform me if this was because I was watching a live stream and not an archived stream. Some other streams I watched were archived and the quality was stable, however I did watch a live stream just last week and the quality was stable then too so when this happened today it made me wonder. 
 
Finally I have had no problem installing Windows updates, but I noticed that one update will not install and gives errors. It's Update for Office 2003 (KB907417)
 
(Details)
Microsoft has released an update for Microsoft Office Excel 2003 and for Microsoft Office Word 2003. This update corrects a potential problem in which an add-in, a smart tag, or a smart document may not load if it uses the Microsoft .NET Framework 2.0.
 
More information: 
 
Error Code 80096004
 
I tried to troubleshoot it as advised and it still wouldn't update, so I was wondering if you had any advice on this or if it's related to this at all.
 
 
Concerning a system restore or refresh. I have no problem with this if it will allow my computer to function properly. Actually I had considered doing a full reformat via the recovery drive, because I was wondering if something was wrong (ie corruption you mentioned). I didn't want to do this because I had my settings as I wanted them, but I was wondering if you could tell me if making a system image of the users I have set up on the computer and the installed software, browsers, settings, etc via windows or a free imaging software would work if I had to do a full recovery? Would making an image copy the corruption to a newly restored system? My concern was that a system restore or refresh would not go far enough to correct any problems in the system. In the past I had to do a full reformat for my computer to perform better, so if this issue isn't malware related then I was wondering if you think it would be better for me to try a full reformat instead. 
 
 
<?xml version="1.0" encoding="UTF-16"?>
 
-<mbam-log>
 
 
-<header>
 
<date>2014/04/05 04:03:30 -0400</date>
 
<log>mbam-log-2014-04-05 (03-56-48).xml</log>
 
<isadmin>yes</isadmin>
 
</header>
 
 
-<engine>
 
<version>2.00.0.1000</version>
 
<rules-database>v2014.04.04.08</rules-database>
 
<swissarmy-database>v2014.03.27.01</swissarmy-database>
 
<license>free</license>
 
<file-protection>disabled</file-protection>
 
<web-protection>disabled</web-protection>
 
<self-protection>disabled</self-protection>
 
</engine>
 
 
-<system>
 
<osversion>Windows 8.1</osversion>
 
<arch>x64</arch>
 
<username>A Lamar</username>
 
<filesys>NTFS</filesys>
 
</system>
 
 
-<summary>
 
<type>threat</type>
 
<result>completed</result>
 
<objects>320989</objects>
 
<time>399</time>
 
<processes>0</processes>
 
<modules>0</modules>
 
<keys>0</keys>
 
<values>0</values>
 
<datas>0</datas>
 
<folders>0</folders>
 
<files>0</files>
 
<sectors>0</sectors>
 
</summary>
 
 
-<options>
 
<memory>enabled</memory>
 
<startup>enabled</startup>
 
<filesystem>enabled</filesystem>
 
<archives>enabled</archives>
 
<rootkits>disabled</rootkits>
 
<deeprootkit>disabled</deeprootkit>
 
<shuriken>enabled</shuriken>
 
<pup>enabled</pup>
 
<pum>enabled</pum>
 
</options>
 
<items> </items>
 
</mbam-log>
 
 
C:\AdwCleaner\Quarantine\C\Users\A Lamar\AppData\Roaming\OpenCandy\24B58415966D49BF98567DDA191F672C\PureLeadsSetupx21701.exe.vir a variant of Win32/AdWare.Sendori.A application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\A Lamar\AppData\Roaming\OpenCandy\24B58415966D49BF98567DDA191F672C\PureLeads_p1v1.exe.vir a variant of Win32/AdWare.Sendori.A application cleaned by deleting - quarantined
K:\SOFTWARE\AUDIO & VIDEO\AUDIO\DVD KNIFE .exe Win32/Adware.RK.AP application cleaned by deleting - quarantined
O:\SOFTWARE\AUDIO & VIDEO\AUDIO\DVD KNIFE .exe Win32/Adware.RK.AP application cleaned by deleting - quarantined


#38 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 05 April 2014 - 08:10 PM

Hi leader2,

When you say "archived", do you mean they are downloaded to a hard drive?

If your system resources (RAM & download speed) are not up to the task you could see a reduction in quality and stability while trying to view a "Live Stream". By the same token, if the video file has been downloaded to a hard drive for later viewing you should expect more stability. But both of these instances may be affected by what other task you are trying to accomplish at the same time.

= = = = = = = = = =

The Windows Update for Microsoft Office 2003 (KB907417) should not be the cause of your issues. Let's get the other issues resolved then we will work on getting this update to download.

= = = = = = = = = =

With regards to the System Restore, Refresh or Reformat. They are listed this way because they are less extreme (desired approach) to most extreme.

We know we have some form of corruption with regards to the file system.
  • So I would suggest trying System Restore first provided we can roll back to an early enough date to correct the issue. That will be up to you to determine based on when the issue started and what Restore points are available.
  • Next I would use the Refresh capability. Now please be aware with doing the Refresh, it will take you back to Windows 8 and remove any software/apps you have installed since then. But it will keep all your settings. You would then need to re-upgrade to Windows 8.1. Refresh will also provide you with a list of apps that need to be reinstalled.
  • Lastly, would be a Reformat. I would hold off on this for now for obvious reasons. (you'd be starting from scratch again).
= = = = = = = = = =

Did you re-run the ESET scan and select "remove found threats" this time around? If so please post the log generated.

= = = = = = = = = =
 
Post the ESET results
Try System Restore if appropriate date is available.
Don't do the Refresh or Reformat until after I see the ESET log.
OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#39 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 06 April 2014 - 06:13 AM

Posted Yesterday, 10:10 PM
Hi leader2,
 
When you say "archived", do you mean they are downloaded to a hard drive?
 
If your system resources (RAM & download speed) are not up to the task you could see a reduction in quality and stability while trying to view a "Live Stream". By the same token, if the video file has been downloaded to a hard drive for later viewing you should expect more stability. But both of these instances may be affected by what other task you are trying to accomplish at the same time.
 
I think by archived I mean they are being streamed from the server online on the video site and I'm watching on the computer at a later date. They are not actual live streams playing at a live time, but they are streaming I believe from the server archive. I was concerned though because this happened just yesterday when I watched a live stream broadcast with the lack of stability, but last week when I live stream (my ram/ dl speed were the same of course) the stability was fine. Are you meaning that the CPU usage was too high? I have 8 gb in ram which I was told is pretty good and my download speed was the same as when I watched the live stream last week. Do you recommend not doing other tasks or using a Chrome based browser (I've heard it's resource hungry) while streaming live since my speed is slower?
 
I understand your concerns about the system restore and refresh options. I will follow your recommendations.
 
 
 
Did you re-run the ESET scan and select "remove found threats" this time around? If so please post the log generated.
 
 
Yes I ran the ESET scan and selected "remove found threats". It was at the bottom of the mbam log to clarify. This was all the log produced.
 
ESET
 
C:\AdwCleaner\Quarantine\C\Users\A Lamar\AppData\Roaming\OpenCandy\24B58415966D49BF98567DDA191F672C\PureLeadsSetupx21701.exe.vir a variant of Win32/AdWare.Sendori.A application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\A Lamar\AppData\Roaming\OpenCandy\24B58415966D49BF98567DDA191F672C\PureLeads_p1v1.exe.vir a variant of Win32/AdWare.Sendori.A application cleaned by deleting - quarantined
K:\SOFTWARE\AUDIO & VIDEO\AUDIO\DVD KNIFE .exe Win32/Adware.RK.AP application cleaned by deleting - quarantined
O:\SOFTWARE\AUDIO & VIDEO\AUDIO\DVD KNIFE .exe Win32/Adware.RK.AP application cleaned by deleting - quarantined


#40 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 06 April 2014 - 08:20 AM

Hi leader2,

The stability issues you are experiencing could be related to the file corruption. I don't know a lot about streaming videos, but you could try different browsers and see if that alters the performance. Generally speaking the 8 gig of RAM should be sufficient to stream videos, but if you have other applications running in the background it may affect performance.

At this time, go ahead and see if you can locate a suitable System Restore Point (pre-issue) and roll back the computer to that date. Keep in mind that you will lose whatever apps/programs you have added since that date. Upon completion you may also be prompted to download updates from Windows, go ahead and get the latest updates. If possible, do not reinstall any apps/programs that were lost at this time.

Reboot after any Windows updates and check the performance of the machine, report back with your findings.


 


OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.

    Advertisements

Register to Remove


#41 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 06 April 2014 - 10:35 AM

Thanks for the information about the streaming video issue. As far as the system restore the furthest back point listed was March 30th, but this issue started at least a month or so ago so I don't think that restore point would be sufficient. Should I do the refresh instead?



#42 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 06 April 2014 - 07:35 PM

Hi leader2,
 

Should I do the refresh instead?

That would be next step to try and resolve the corrupt file issues.

I have include 2 links that both contain tutorials of what to expect during the process. Please take the time to familarize yourself with the process so there will be no surprises during the Refresh

http://windows.micro...efresh-reset-pc
http://www.dummies.c...-windows-8.html

After you have completed the Refresh your computer will most likely reboot itself. If not, reboot it manually.

Next, get the latest Windows Updates, reboot again.

Before reinstalling any apps/programs that were lost during the Refresh "test drive" the computer to see how it performs and report back for further instructions.
 


OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#43 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 08 April 2014 - 02:07 PM

Hi leader2,
 

Should I do the refresh instead?

That would be next step to try and resolve the corrupt file issues.

I have include 2 links that both contain tutorials of what to expect during the process. Please take the time to familarize yourself with the process so there will be no surprises during the Refresh

http://windows.micro...efresh-reset-pc
http://www.dummies.c...-windows-8.html

After you have completed the Refresh your computer will most likely reboot itself. If not, reboot it manually.

Next, get the latest Windows Updates, reboot again.

Before reinstalling any apps/programs that were lost during the Refresh "test drive" the computer to see how it performs and report back for further instructions.
 

 

Hi OCD. I have done the refresh. I test drove the computer by going on the different users and I have tried to lightly used the preinstalled applications to see how things were working. I went online to browse a bit, including to youtube and facebook. Facebook was slow and I didn't see the removed apps link on my desktop referred to in the dummies link. However in the short time I tried to use the computer so far I haven't seen the explorer crash or show the error message when logging off or shutting down/restarting. I haven't upgraded to Win 8.1 again, although I did install the Windows updates as directed. The computer seems to be doing a little better, but I can't say what it will do once I reinstall Win 8.1 or anymore programs. So please let me know what else you think I should do.



#44 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 08 April 2014 - 10:00 PM

Hi leader2,
 

However in the short time I tried to use the computer so far I haven't seen the explorer crash or show the error message when logging off or shutting down/restarting.

 

:thumbup:

 

Go ahead and update to Windows 8.1

Reboot, then run a scan with FRST. You will probably need to download a new copy.

In your next post please provide the following:

  • FRST
  • Addition.txt

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#45 leader2

leader2

    Silver Member

  • Authentic Member
  • PipPipPip
  • 260 posts

Posted 09 April 2014 - 11:48 AM

Thanks for your help OCD. I'm glad to make progress on this. :clap:  

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 (ATTENTION: ====> FRST version is 27 days old and could be outdated)
Ran by White (administrator) on HP on 09-04-2014 13:35:52
Running from C:\Users\White\Desktop
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard) c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Hewlett-Packard) c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BeatsOSDApp] - C:\Program Files\IDT\WDM\beats64.exe [37888 2012-08-10] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-10] (IDT, Inc.)
HKLM-x32\...\Run: [BtTray] - c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [363520 2012-07-27] (IVT Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK13/1
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM - {91FDD715-9FCF-4967-9B30-6AA09534F2C2} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...54371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {91FDD715-9FCF-4967-9B30-6AA09534F2C2} URL = http://www.amazon.co...ds={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...54371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

==================== Services (Whitelisted) =================

R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1544192 2012-07-23] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-07-10] (IVT Corporation)
R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-09] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140319.001\BHDrvx64.sys [1525976 2014-03-19] (Symantec Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48352 2012-07-11] (Ralink Corporation)
R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-15] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-04-07] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-04-07] (Symantec Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20140408.001\IDSvia64.sys [525016 2014-04-05] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140408.025\ENG64.SYS [126040 2014-04-07] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140408.025\EX64.SYS [2099288 2014-04-07] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-04] (Symantec Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation)
R3 SymDS; C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R3 SymEFA; C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1404000.028\SymELAM.sys [23448 2012-06-20] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-04-07] (Symantec Corporation)
R3 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-04] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-24] (Symantec Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-04-09] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2038-09-13 21:39 - 2038-09-13 21:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48980828.txt
2038-09-13 21:39 - 2038-09-13 21:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48977750.txt
2038-09-13 21:39 - 2014-04-07 21:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-49009500.txt
2038-09-13 21:38 - 2038-09-13 21:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48945875.txt
2038-09-13 21:38 - 2038-09-13 21:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48942812.txt
2038-09-13 21:38 - 2038-09-13 21:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48912859.txt
2038-09-13 21:38 - 2038-09-13 21:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48909812.txt
2038-09-13 21:37 - 2038-09-13 21:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48877234.txt
2038-09-13 21:37 - 2038-09-13 21:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48877140.txt
2038-09-13 21:37 - 2038-09-13 21:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48849218.txt
2038-09-13 21:37 - 2038-09-13 21:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48846203.txt
2038-09-13 21:36 - 2038-09-13 21:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48817390.txt
2038-09-13 21:36 - 2038-09-13 21:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48814312.txt
2038-09-13 21:36 - 2038-09-13 21:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48782015.txt
2038-09-13 21:36 - 2038-09-13 21:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48781984.txt
2038-09-13 21:36 - 2014-04-09 13:35 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1001
2038-09-13 21:35 - 2038-09-13 21:35 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48753687.txt
2038-09-13 21:35 - 2038-09-13 21:35 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48750640.txt
2038-09-13 21:34 - 2038-09-13 21:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48720078.txt
2038-09-13 21:34 - 2038-09-13 21:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48717015.txt
2038-09-13 21:34 - 2038-09-13 21:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48687781.txt
2038-09-13 21:34 - 2038-09-13 21:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48684750.txt
2038-09-13 21:33 - 2038-09-13 21:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48650937.txt
2038-09-13 21:33 - 2038-09-13 21:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48650875.txt
2038-09-13 21:33 - 2038-09-13 21:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48621421.txt
2038-09-13 21:33 - 2038-09-13 21:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48618406.txt
2038-09-13 21:32 - 2038-09-13 21:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48589515.txt
2038-09-13 21:32 - 2038-09-13 21:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48586437.txt
2038-09-13 21:32 - 2038-09-13 21:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48557593.txt
2038-09-13 21:32 - 2038-09-13 21:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48554671.txt
2038-09-13 21:32 - 2038-09-13 21:32 - 00000000 ____D () C:\Users\White\AppData\Roaming\Macromedia
2038-09-13 21:31 - 2038-09-13 21:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48523937.txt
2038-09-13 21:31 - 2038-09-13 21:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48520953.txt
2038-09-13 21:31 - 2038-09-13 21:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48486703.txt
2038-09-13 21:31 - 2038-09-13 21:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48486656.txt
2038-09-13 21:31 - 2038-09-13 21:31 - 00000000 ____D () C:\Users\White\AppData\Roaming\Hewlett-Packard
2038-09-13 21:31 - 2038-09-13 21:31 - 00000000 ____D () C:\Users\White\AppData\Roaming\Adobe
2038-09-13 21:31 - 2038-09-13 21:31 - 00000000 ____D () C:\Users\White\AppData\Local\Power2Go8
2038-09-13 21:31 - 2038-09-13 21:31 - 00000000 ____D () C:\Users\White\AppData\Local\bluesoleil
2038-09-13 21:31 - 2014-04-09 13:28 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2038-09-13 21:31 - 2014-04-09 13:28 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2038-09-13 21:30 - 2038-09-13 21:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48453906.txt
2038-09-13 21:30 - 2038-09-13 21:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48453828.txt
2038-09-13 21:30 - 2038-09-13 21:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48421843.txt
2038-09-13 21:30 - 2038-09-13 21:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48421640.txt
2038-09-13 21:30 - 2038-09-13 21:30 - 00000000 ____D () C:\Users\White\AppData\Local\VirtualStore
2038-09-13 21:30 - 2014-04-09 13:30 - 00000000 ____D () C:\Users\White\AppData\Local\Packages
2038-09-13 21:29 - 2038-09-13 21:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48389031.txt
2038-09-13 21:29 - 2038-09-13 21:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48388968.txt
2038-09-13 21:29 - 2014-04-08 21:09 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1005
2038-09-13 21:28 - 2038-09-13 21:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48357390.txt
2038-09-13 21:28 - 2038-09-13 21:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48357343.txt
2038-09-13 21:28 - 2038-09-13 21:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48324437.txt
2038-09-13 21:28 - 2038-09-13 21:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48324390.txt
2038-09-13 21:27 - 2038-09-13 21:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48293343.txt
2038-09-13 21:27 - 2038-09-13 21:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48293281.txt
2038-09-13 21:27 - 2038-09-13 21:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48261890.txt
2038-09-13 21:27 - 2038-09-13 21:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48258890.txt
2038-09-13 21:26 - 2038-09-13 21:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48229390.txt
2038-09-13 21:26 - 2038-09-13 21:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48226343.txt
2038-09-13 21:26 - 2038-09-13 21:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48195203.txt
2038-09-13 21:26 - 2038-09-13 21:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48192156.txt
2038-09-13 21:25 - 2038-09-13 21:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48160109.txt
2038-09-13 21:25 - 2038-09-13 21:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48160046.txt
2038-09-13 21:25 - 2038-09-13 21:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48126421.txt
2038-09-13 21:25 - 2038-09-13 21:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48126375.txt
2038-09-13 21:24 - 2038-09-13 21:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48094953.txt
2038-09-13 21:24 - 2038-09-13 21:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48094906.txt
2038-09-13 21:24 - 2038-09-13 21:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48065500.txt
2038-09-13 21:24 - 2038-09-13 21:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48062437.txt
2038-09-13 21:24 - 2038-09-13 21:24 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Local\Power2Go8
2038-09-13 21:24 - 2038-09-13 21:24 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Local\bluesoleil
2038-09-13 21:23 - 2038-09-13 21:23 - 00003930 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6C1B114E-6E43-441E-B16C-27D36F757042}
2038-09-13 21:23 - 2038-09-13 21:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48031828.txt
2038-09-13 21:23 - 2038-09-13 21:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48028796.txt
2038-09-13 21:23 - 2038-09-13 21:23 - 00000000 __RSH () C:\WINDOWS\SysWOW64\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J4001_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 21:23 - 2038-09-13 21:23 - 00000000 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_cPC_h8-1410_Y53316J_0U_Q4CE2370G93_E12NA3RR8605_4A_I2AD5_SPEGATRON CORPORATION_V1.03_B8.18_T130318_W8101-0_L409_M8059_J4001_7Intel_86A9_93.00_#380913_N19691091;18143290_Z_G80860152_Ohp DVD-RAM SW810.MRK
2038-09-13 21:23 - 2038-09-13 21:23 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Roaming\Adobe
2038-09-13 21:23 - 2038-09-13 07:53 - 00002269 _____ () C:\Users\Public\Desktop\eBay.lnk
2038-09-13 21:23 - 2038-09-13 07:52 - 00002213 _____ () C:\Users\Public\Desktop\Snapfish.lnk
2038-09-13 21:23 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2038-09-13 21:23 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2038-09-13 21:22 - 2038-09-13 21:29 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Roaming\Hewlett-Packard
2038-09-13 21:22 - 2038-09-13 21:22 - 00000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2038-09-13 21:22 - 2038-09-13 21:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48000484.txt
2038-09-13 21:22 - 2038-09-13 21:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47997406.txt
2038-09-13 21:22 - 2038-09-13 21:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47967921.txt
2038-09-13 21:22 - 2038-09-13 21:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47964421.txt
2038-09-13 21:21 - 2038-09-13 21:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47933750.txt
2038-09-13 21:21 - 2038-09-13 21:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47933687.txt
2038-09-13 21:21 - 2038-09-13 21:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47900562.txt
2038-09-13 21:21 - 2038-09-13 21:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47897640.txt
2038-09-13 21:21 - 2038-09-13 21:21 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Local\VirtualStore
2038-09-13 21:21 - 2014-04-09 13:11 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Local\Packages
2038-09-13 21:20 - 2038-09-13 21:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47868625.txt
2038-09-13 21:20 - 2038-09-13 21:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47865562.txt
2038-09-13 21:20 - 2038-09-13 21:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47833265.txt
2038-09-13 21:20 - 2038-09-13 21:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47832578.txt
2038-09-13 21:20 - 2014-04-09 12:52 - 01916705 _____ () C:\WINDOWS\WindowsUpdate (1).log
2038-09-13 21:19 - 2038-09-13 21:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47815093.txt
2038-09-13 21:19 - 2038-09-13 21:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47814312.txt
2038-09-13 09:24 - 2038-09-13 09:24 - 00000000 ____D () C:\Users\White\Documents\CyberLink
2038-09-13 09:24 - 2014-02-27 18:26 - 00000000 ____D () C:\Users\White\Documents\Naturalsoft
2038-09-13 09:24 - 2014-02-18 07:06 - 00000000 ____D () C:\Users\White\Documents\VHS to DVD
2038-09-13 09:24 - 2014-01-17 07:17 - 00000000 ____D () C:\Users\White\Documents\Virtual Machines
2038-09-13 09:24 - 2013-11-06 06:11 - 00000000 ____D () C:\Users\White\Documents\My CamStudio Temp Files
2038-09-13 09:24 - 2013-10-30 02:39 - 00000000 ____D () C:\Users\White\Documents\VideoPad Projects
2038-09-13 09:22 - 2014-04-03 01:07 - 00000000 ____D () C:\Users\White\Documents\ConvertXtoDVD
2038-09-13 09:22 - 2013-11-06 08:19 - 00002326 _____ () C:\Users\White\Documents\My Movie.wlmp
2038-09-13 09:21 - 2038-09-13 09:21 - 00000000 ____D () C:\Users\White\Documents\Bluetooth
2038-09-13 08:23 - 2038-09-13 08:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1211828.txt
2038-09-13 08:23 - 2038-09-13 08:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1211796.txt
2038-09-13 08:22 - 2038-09-13 08:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1177781.txt
2038-09-13 08:22 - 2038-09-13 08:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1177734.txt
2038-09-13 08:22 - 2038-09-13 08:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1145703.txt
2038-09-13 08:22 - 2038-09-13 08:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1145671.txt
2038-09-13 08:21 - 2038-09-13 08:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1111250.txt
2038-09-13 08:21 - 2038-09-13 08:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1111218.txt
2038-09-13 08:20 - 2038-09-13 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1077984.txt
2038-09-13 08:20 - 2038-09-13 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1077953.txt
2038-09-13 08:20 - 2038-09-13 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1045640.txt
2038-09-13 08:20 - 2038-09-13 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1045609.txt
2038-09-13 08:20 - 2038-09-13 08:20 - 00000000 _____ () C:\12NA3RR8605.restore
2038-09-13 08:19 - 2038-09-13 08:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-979875.txt
2038-09-13 08:19 - 2038-09-13 08:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-979828.txt
2038-09-13 08:19 - 2038-09-13 08:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1011828.txt
2038-09-13 08:19 - 2038-09-13 08:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1011796.txt
2038-09-13 08:18 - 2038-09-13 08:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-947687.txt
2038-09-13 08:18 - 2038-09-13 08:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-947640.txt
2038-09-13 08:18 - 2038-09-13 08:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-917781.txt
2038-09-13 08:18 - 2038-09-13 08:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-914703.txt
2038-09-13 08:17 - 2038-09-13 08:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-884921.txt
2038-09-13 08:17 - 2038-09-13 08:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-881859.txt
2038-09-13 08:17 - 2038-09-13 08:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-848656.txt
2038-09-13 08:17 - 2038-09-13 08:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-848640.txt
2038-09-13 08:16 - 2038-09-13 08:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-817656.txt
2038-09-13 08:16 - 2038-09-13 08:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-817625.txt
2038-09-13 08:16 - 2038-09-13 08:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-785187.txt
2038-09-13 08:16 - 2038-09-13 08:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-785156.txt
2038-09-13 08:15 - 2038-09-13 08:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-751953.txt
2038-09-13 08:15 - 2038-09-13 08:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-751921.txt
2038-09-13 08:14 - 2038-09-13 08:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-718718.txt
2038-09-13 08:14 - 2038-09-13 08:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-718671.txt
2038-09-13 08:14 - 2038-09-13 08:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-685515.txt
2038-09-13 08:14 - 2038-09-13 08:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-685484.txt
2038-09-13 08:13 - 2038-09-13 08:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-653234.txt
2038-09-13 08:13 - 2038-09-13 08:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-653203.txt
2038-09-13 08:13 - 2038-09-13 08:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-620031.txt
2038-09-13 08:13 - 2038-09-13 08:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-620000.txt
2038-09-13 08:12 - 2038-09-13 08:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-588640.txt
2038-09-13 08:12 - 2038-09-13 08:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-588609.txt
2038-09-13 08:12 - 2038-09-13 08:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-557812.txt
2038-09-13 08:12 - 2038-09-13 08:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-557765.txt
2038-09-13 08:11 - 2038-09-13 08:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-524031.txt
2038-09-13 08:11 - 2038-09-13 08:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-524000.txt
2038-09-13 08:11 - 2038-09-13 08:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-489125.txt
2038-09-13 08:11 - 2038-09-13 08:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-489093.txt
2038-09-13 08:10 - 2038-09-13 08:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-454453.txt
2038-09-13 08:10 - 2038-09-13 08:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-454421.txt
2038-09-13 08:10 - 2038-09-13 08:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-424328.txt
2038-09-13 08:10 - 2038-09-13 08:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-421296.txt
2038-09-13 08:09 - 2038-09-13 08:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-388546.txt
2038-09-13 08:09 - 2038-09-13 08:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-388515.txt
2038-09-13 08:08 - 2038-09-13 08:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-360671.txt
2038-09-13 08:08 - 2038-09-13 08:08 - 00000117 _____ () C:\WINDOWS\system32\netcfg-357625.txt
2038-09-13 08:08 - 2038-09-13 08:08 - 00000117 _____ () C:\WINDOWS\system32\netcfg-323765.txt
2038-09-13 08:08 - 2038-09-13 08:08 - 00000117 _____ () C:\WINDOWS\system32\netcfg-323734.txt
2038-09-13 08:07 - 2038-09-13 08:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-293515.txt
2038-09-13 08:07 - 2038-09-13 08:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-290453.txt
2038-09-13 08:07 - 2038-09-13 08:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255812.txt
2038-09-13 08:07 - 2038-09-13 08:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255781.txt
2038-09-13 08:06 - 2038-09-13 08:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-226937.txt
2038-09-13 08:06 - 2038-09-13 08:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-223921.txt
2038-09-13 08:06 - 2038-09-13 08:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-189750.txt
2038-09-13 08:06 - 2038-09-13 08:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-189718.txt
2038-09-13 08:05 - 2038-09-13 08:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174312.txt
2038-09-13 08:05 - 2038-09-13 08:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174234.txt
2038-09-13 08:05 - 2038-09-13 08:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-172843.txt
2038-09-13 08:05 - 2038-09-13 08:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-161109.txt
2038-09-13 08:04 - 2038-09-13 08:05 - 00000000 ___HD () C:\Users\White\Documents\hp.system.package.metadata
2038-09-13 08:04 - 2038-09-13 08:05 - 00000000 ___HD () C:\Users\Eurceliakins\Documents\hp.system.package.metadata
2038-09-13 08:04 - 2038-09-13 08:05 - 00000000 ___HD () C:\Users\A Lamar\Documents\hp.system.package.metadata
2038-09-13 07:59 - 2038-09-13 07:59 - 00000142 _____ () C:\WINDOWS\system32\netcfg-138625.txt
2038-09-13 07:58 - 2038-09-13 07:58 - 00000000 ____D () C:\Users\Administrator\Documents\Bluetooth
2038-09-13 07:58 - 2038-09-13 07:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2038-09-13 07:58 - 2038-09-13 07:58 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Power2Go8
2038-09-13 07:58 - 2038-09-13 07:58 - 00000000 ____D () C:\Users\Administrator\AppData\Local\bluesoleil
2038-09-13 07:58 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2038-09-13 07:58 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2038-09-13 07:57 - 2038-09-13 07:57 - 00018630 _____ () C:\WINDOWS\system32\results.xml
2038-09-13 07:57 - 2014-04-09 13:29 - 00004678 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2038-09-13 07:57 - 2014-04-09 13:17 - 00000043 _____ () C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1340343.txt
2038-09-13 07:55 - 2038-09-13 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1335187.txt
2038-09-13 07:54 - 2038-09-13 21:21 - 00000000 ____D () C:\ProgramData\Norton
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Users\Public\Symantec
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files\Symantec
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\SymSilent
2038-09-13 07:54 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2038-09-13 07:54 - 2014-04-09 13:27 - 00003234 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2038-09-13 07:54 - 2014-04-07 23:59 - 00002503 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2038-09-13 07:54 - 2014-04-07 23:59 - 00000000 ____D () C:\WINDOWS\system32\Drivers\NISx64
2038-09-13 07:54 - 2014-04-07 21:46 - 00177312 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2038-09-13 07:54 - 2014-04-07 21:46 - 00007631 _____ () C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2038-09-13 07:53 - 2038-09-13 21:23 - 00000000 ___RD () C:\Program Files\Online Services
2038-09-13 07:53 - 2014-04-09 13:15 - 00000000 ____D () C:\WINDOWS\en
2038-09-13 07:52 - 2038-09-13 07:52 - 00000204 _____ () C:\WINDOWS\DirectX.log
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Windows Live
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2038-09-13 07:52 - 2038-09-13 07:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2038-09-13 07:52 - 2009-09-04 20:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2038-09-13 07:52 - 2009-09-04 20:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2038-09-13 07:52 - 2009-09-04 20:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2038-09-13 07:52 - 2009-09-04 20:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2038-09-13 07:52 - 2006-11-29 16:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2038-09-13 07:52 - 2006-11-29 16:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2038-09-13 07:50 - 2038-09-13 07:50 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2038-09-13 07:50 - 2038-09-13 07:50 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2038-09-13 07:50 - 2038-09-13 07:50 - 00029480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2038-09-13 07:46 - 2012-06-25 13:24 - 00092536 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2038-09-13 07:45 - 2038-09-13 07:45 - 00001106 _____ () C:\Users\Public\Desktop\Connected Music powered by Meridian.lnk
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\ProgramData\Apple
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files\Bonjour
2038-09-13 07:45 - 2038-09-13 07:45 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2038-09-13 07:45 - 2012-08-08 01:22 - 00355840 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbprtmon.dll
2038-09-13 07:45 - 2012-08-08 01:21 - 00377344 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbrprtmon.dll
2038-09-13 07:45 - 2012-08-08 01:18 - 00170496 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpbprtmonui.dll
2038-09-13 07:44 - 2038-09-13 07:44 - 00002276 _____ () C:\Users\Public\Desktop\Connected Remote.lnk
2038-09-13 07:44 - 2038-09-13 07:44 - 00002148 _____ () C:\Users\Public\Desktop\Connected Backup.lnk
2038-09-13 07:44 - 2038-09-13 07:44 - 00000000 ____D () C:\ProgramData\Autonomy
2038-09-13 07:44 - 2038-09-13 07:44 - 00000000 ____D () C:\Program Files (x86)\Autonomy
2038-09-13 07:43 - 2038-09-13 21:23 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2038-09-13 07:43 - 2038-09-13 07:50 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2038-09-13 07:43 - 2038-09-13 07:45 - 00000000 ____D () C:\ProgramData\install_clap
2038-09-13 07:43 - 2014-04-08 15:51 - 00000000 ____D () C:\ProgramData\CyberLink
2038-09-13 07:42 - 2038-09-13 07:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2038-09-13 07:41 - 2038-09-13 07:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Hewlett-Packard
2038-09-13 07:41 - 2038-09-13 07:41 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Hewlett-Packard
2038-09-13 07:41 - 2012-05-29 18:53 - 00027456 _____ (Windows ® Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\cpqdfw.sys
2038-09-13 07:40 - 2038-09-13 07:40 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\hpqLog
2038-09-13 07:40 - 2038-09-13 07:40 - 00000000 ____D () C:\ProgramData\{AFF99647-6D64-46F2-934A-F12F468037F6}
2038-09-13 07:39 - 2038-09-13 07:39 - 00000318 _____ () C:\WINDOWS\system32\netcfg-390500.txt
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\InstallShield
2038-09-13 07:39 - 2038-09-13 07:39 - 00000000 ____D () C:\ProgramData\Ralink Driver
2038-09-13 07:39 - 2014-04-09 10:36 - 00002859 _____ () C:\WINDOWS\system32\RaCoInst.log
2038-09-13 07:38 - 2038-09-13 07:39 - 00000032 _____ () C:\WINDOWS\0
2038-09-13 07:38 - 2038-09-13 07:38 - 00001100 _____ () C:\WINDOWS\system32\netcfg-339656.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000161 _____ () C:\WINDOWS\system32\netcfg-340406.txt
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2038-09-13 07:38 - 2038-09-13 07:38 - 00000000 _____ () C:\WINDOWS\system32\0
2038-09-13 07:37 - 2038-09-13 07:51 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\ProgramData\Intel
2038-09-13 07:37 - 2038-09-13 07:37 - 00000000 ____D () C:\Program Files\IDT
2038-09-13 07:36 - 2038-09-13 08:24 - 00000010 _____ () C:\WINDOWS\csup.txt
2038-09-13 07:36 - 2038-09-13 07:59 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2038-09-13 07:36 - 2038-09-13 07:54 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2038-09-13 07:36 - 2038-09-13 07:36 - 00000000 ___HD () C:\Users\Administrator\Documents\hp.system.package.metadata
2038-09-13 07:36 - 2038-09-13 07:36 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2038-09-13 07:36 - 2011-08-23 16:52 - 00117248 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97406.txt
2038-09-13 07:34 - 2038-09-13 07:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97375.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00001027 _____ () C:\WINDOWS\system32\netcfg-38765.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33265.txt
2038-09-13 07:33 - 2038-09-13 07:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-28359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-47015.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00001136 _____ () C:\WINDOWS\system32\netcfg-33125.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000197 _____ () C:\WINDOWS\system32\netcfg-47781.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000185 _____ () C:\WINDOWS\system32\netcfg-36093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000164 _____ () C:\WINDOWS\system32\netcfg-32687.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000161 _____ () C:\WINDOWS\system32\netcfg-35812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-35609.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-34921.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000160 _____ () C:\WINDOWS\system32\netcfg-32453.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000159 _____ () C:\WINDOWS\system32\netcfg-35093.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-35359.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000157 _____ () C:\WINDOWS\system32\netcfg-32812.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000150 _____ () C:\WINDOWS\system32\netcfg-34703.txt
2038-09-13 07:32 - 2038-09-13 07:32 - 00000000 ____D () C:\Program Files\Common Files\Intel
2038-09-13 07:32 - 2014-04-09 13:17 - 00000000 ____D () C:\ProgramData\SoundResearch
2038-09-13 07:32 - 2012-08-10 04:34 - 06085632 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2038-09-13 07:32 - 2012-08-10 04:34 - 01425408 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2038-09-13 07:32 - 2012-08-10 04:33 - 01821184 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2038-09-13 07:32 - 2012-08-10 04:32 - 00224256 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2038-09-13 07:32 - 2012-08-10 04:32 - 00037888 _____ (Hewlett-Packard ) C:\WINDOWS\system32\Beats64.exe
2014-04-09 17:05 - 2014-04-09 17:05 - 00000000 __SHD () C:\Recovery
2014-04-09 17:04 - 2014-04-09 17:04 - 00000000 ____D () C:\Windows.old
2014-04-09 17:04 - 2014-04-09 13:28 - 00000000 ___DC () C:\WINDOWS\Panther
2014-04-09 17:00 - 2014-04-09 17:00 - 21232792 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 18679216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 16875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 13286400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 12732416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 11791360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 08653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 06641152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 04268544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02519384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 02479616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02373784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 02331000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02270208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02141912 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02088160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 02030080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 02013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01779800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01705984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01679128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 01542768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01466864 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01339240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01291200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01200296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01129472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01112536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01095488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01066496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-04-09 17:00 - 2014-04-09 17:00 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00958464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00836096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-04-09 17:00 - 2014-04-09 17:00 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00565536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00492256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00488280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-04-09 17:00 - 2014-04-09 17:00 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-04-09 17:00 - 2014-04-09 17:00 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-04-09 17:00 - 2014-04-09 17:00 - 00406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00406512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00390488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00387210 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-04-09 17:00 - 2014-04-09 17:00 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00376152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00360512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00356848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00355832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-04-09 17:00 - 2014-04-09 17:00 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00244888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00113648 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00094016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-04-09 17:00 - 2014-04-09 17:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocation.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-04-09 17:00 - 2014-04-09 17:00 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-04-09 17:00 - 2014-04-09 17:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-04-09 16:59 - 2014-04-09 16:59 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-04-09 16:58 - 2014-04-09 16:58 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-04-09 16:58 - 2014-04-09 16:58 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-04-09 16:58 - 2014-04-09 16:58 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-04-09 16:58 - 2014-04-09 16:58 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-04-09 16:58 - 2014-04-09 16:58 - 00000000 ____D () C:\Program Files\MSBuild
2014-04-09 16:58 - 2014-04-09 16:58 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-04-09 16:58 - 2014-04-09 16:58 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-04-09 16:58 - 2014-04-09 16:58 - 00000000 ____D () C:\inetpub
2014-04-09 16:57 - 2013-08-03 00:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-04-09 16:57 - 2013-08-03 00:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-04-09 16:57 - 2013-08-03 00:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-04-09 16:57 - 2013-08-03 00:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-04-09 16:57 - 2013-08-03 00:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-04-09 16:57 - 2013-08-03 00:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-04-09 13:34 - 2014-04-09 13:35 - 00011898 _____ () C:\Users\White\Desktop\FRST.txt
2014-04-09 13:33 - 2014-04-09 13:33 - 02157056 _____ (Farbar) C:\Users\White\Desktop\FRST64.exe
2014-04-09 13:33 - 2014-04-09 13:33 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Internet Security
2014-04-09 13:32 - 2014-04-09 13:32 - 00003902 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B2ECF128-070B-4F6F-829D-97879F70588E}
2014-04-09 13:32 - 2014-04-09 13:32 - 00000000 __SHD () C:\Users\White\AppData\Local\EmieUserList
2014-04-09 13:32 - 2014-04-09 13:32 - 00000000 __SHD () C:\Users\White\AppData\Local\EmieSiteList
2014-04-09 13:28 - 2014-04-09 13:28 - 00001448 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-09 13:27 - 2014-04-09 13:27 - 00000020 ___SH () C:\Users\White\ntuser.ini
2014-04-09 13:20 - 2014-04-09 13:31 - 00071269 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-09 13:20 - 2014-04-09 13:20 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-04-09 13:17 - 2012-08-10 04:34 - 00656896 ____N (IDT, Inc.) C:\WINDOWS\system32\stapi64.dll
2014-04-09 13:13 - 2014-04-09 13:13 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-04-09 13:13 - 2014-04-09 13:13 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-04-09 13:11 - 2014-04-09 13:11 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-04-09 13:10 - 2014-04-09 13:27 - 00000000 ____D () C:\Users\White
2014-04-09 13:10 - 2014-04-09 13:20 - 00049533 _____ () C:\WINDOWS\diagwrn.xml
2014-04-09 13:10 - 2014-04-09 13:20 - 00049533 _____ () C:\WINDOWS\diagerr.xml
2014-04-09 13:10 - 2014-04-09 13:20 - 00000000 ____D () C:\Users\A Lamar
2014-04-09 13:10 - 2014-04-09 13:18 - 00000000 ____D () C:\Users\Eurceliakins
2014-04-09 13:10 - 2014-04-09 13:18 - 00000000 ____D () C:\Users\Administrator
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-09 13:10 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-09 13:10 - 2014-03-18 06:13 - 00000369 _____ () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\White\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-09 13:10 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-09 13:08 - 2014-04-09 13:11 - 00012096 _____ () C:\WINDOWS\iis.log
2014-04-09 13:08 - 2014-04-09 13:08 - 00930400 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-04-09 13:06 - 2014-04-09 13:12 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-04-09 13:06 - 2014-04-09 13:06 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-04-09 13:06 - 2014-04-09 13:06 - 00000000 ____D () C:\Program Files\Intel
2014-04-09 13:06 - 2013-10-21 11:53 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-04-09 13:06 - 2013-10-21 11:53 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-04-09 12:33 - 2014-04-09 13:20 - 00006589 _____ () C:\WINDOWS\comsetup.log
2014-04-09 10:01 - 2014-04-09 10:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-122650125.txt
2014-04-09 10:01 - 2014-04-09 10:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-122645156.txt
2014-04-08 19:45 - 2014-04-08 19:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-71329609.txt
2014-04-08 19:45 - 2014-04-08 19:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-71329578.txt
2014-04-08 18:38 - 2014-04-08 18:38 - 00000000 ____D () C:\Users\Eurceliakins\AppData\Roaming\Macromedia
2014-04-08 18:36 - 2014-04-08 18:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-67186171.txt
2014-04-08 18:36 - 2014-04-08 18:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-67184109.txt
2014-04-08 15:49 - 2014-04-08 15:49 - 00000000 ___RD () C:\Users\White\Documents\Notes
2014-04-08 15:43 - 2014-04-08 15:43 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-04-08 15:31 - 2014-04-08 15:31 - 00000000 ____D () C:\Users\White\AppData\Local\Hewlett-Packard
2014-04-08 15:06 - 2014-04-08 15:06 - 00000000 ____D () C:\Users\White\AppData\Roaming\enchant
2014-04-08 15:06 - 2014-04-08 15:06 - 00000000 ____D () C:\Users\White\AbiSuite
2014-04-08 15:00 - 2014-04-08 15:00 - 06604216 _____ (PortableApps.com) C:\Users\White\Downloads\AbiWordPortable_2.8.6_Rev_3.paf.exe
2014-04-08 14:29 - 2014-04-08 14:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-52370828.txt
2014-04-08 14:29 - 2014-04-08 14:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-52366843.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32216437.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32216406.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32215640.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32215593.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32215546.txt
2014-04-08 08:53 - 2014-04-08 08:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32211812.txt
2014-04-08 00:04 - 2014-04-08 01:24 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4128554873-3097705083-3195864600-1004
2014-04-08 00:00 - 2014-04-08 00:00 - 00000117 _____ () C:\WINDOWS\system32\netcfg-195093.txt
2014-04-08 00:00 - 2014-04-08 00:00 - 00000117 _____ () C:\WINDOWS\system32\netcfg-191187.txt
2014-04-08 00:00 - 2014-04-08 00:00 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Hewlett-Packard
2014-04-07 23:59 - 2014-04-07 23:59 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Power2Go8
2014-04-07 23:59 - 2014-04-07 23:59 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\bluesoleil
2014-04-07 23:58 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-07 23:58 - 2014-04-09 13:11 - 00000000 ___RD () C:\Users\A Lamar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-07 23:58 - 2014-04-09 13:11 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\Packages
2014-04-07 23:58 - 2014-04-07 23:58 - 00000000 ____D () C:\Users\A Lamar\AppData\Roaming\Adobe
2014-04-07 23:58 - 2014-04-07 23:58 - 00000000 ____D () C:\Users\A Lamar\AppData\Local\VirtualStore
2014-04-07 23:57 - 2014-04-07 23:57 - 00000117 _____ () C:\WINDOWS\system32\netcfg-46828.txt
2014-04-07 23:56 - 2014-04-07 23:56 - 00000117 _____ () C:\WINDOWS\system32\netcfg-70573875.txt
2014-04-07 23:21 - 2014-04-07 23:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-68479078.txt
2014-04-07 23:21 - 2014-04-07 23:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-68479046.txt
2014-04-07 21:39 - 2014-04-07 21:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-49012593.txt
2014-04-07 20:28 - 2014-04-07 20:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-58083937.txt
2014-04-07 20:28 - 2014-04-07 20:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-58083906.txt
2014-04-07 20:28 - 2014-04-07 20:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-58080734.txt
2014-04-07 20:28 - 2014-04-07 20:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-58079640.txt
2014-04-07 18:42 - 2014-04-07 18:42 - 00000710 _____ () C:\Users\White\Desktop\MOM'S FILES 2 - Shortcut.lnk
2014-04-07 18:26 - 2014-04-08 17:15 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-04-07 18:26 - 2014-04-08 17:14 - 90655440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-04-07 18:21 - 2013-05-04 00:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2014-04-07 18:21 - 2013-05-04 00:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2014-04-07 04:05 - 2014-04-07 21:17 - 00000000 ___HD () C:\$SysReset
2014-04-06 11:51 - 2014-04-06 15:18 - 00000000 ____D () C:\PHP
2014-04-06 11:44 - 2014-04-06 11:44 - 05673816 _____ (Microsoft Corporation) C:\Users\White\Downloads\vcredist_x64.exe
2014-04-06 11:35 - 2014-04-07 02:01 - 00000000 ____D () C:\Users\White\Desktop\New folder (2)
2014-04-06 10:55 - 2014-04-06 10:56 - 25200168 _____ (Mozilla) C:\Users\White\Downloads\Firefox Setup 28.0.exe
2014-04-05 21:17 - 2014-04-05 04:03 - 00002452 _____ () C:\Users\A Lamar\Desktop\mbam-log-2014-04-05 (03-56-48).xml
2014-04-05 19:13 - 2014-04-05 21:17 - 00005208 _____ () C:\Users\A Lamar\Desktop\4-5-2014 my post to ocd on what the tech must post back to him.txt
2014-04-05 19:13 - 2014-04-05 19:13 - 00000515 _____ () C:\Users\A Lamar\Documents\4-5-2014 my post to ocd on what the tech must post back to him.txt
2014-04-05 18:53 - 2014-04-05 18:56 - 00001429 _____ () C:\Users\A Lamar\Desktop\Adobe HDS Download - Shortcut.lnk
2014-04-05 18:05 - 2014-04-05 18:05 - 00000644 _____ () C:\Users\A Lamar\Desktop\ESET.txt
2014-04-04 06:17 - 2014-04-04 06:17 - 00000568 _____ () C:\Users\White\Desktop\CASH--4--YOUR Broken & Unwanted APPLIANCES, ELECTRONICS, TVS, ETC. (detroit).txt
2014-04-04 03:10 - 2014-04-04 03:30 - 00001137 _____ () C:\Users\A Lamar\Desktop\my post 2.txt
2014-04-04 02:30 - 2014-04-03 23:45 - 1249141143 _____ () C:\Users\White\Desktop\2014 gonz vs ok st rd 2 mm (adobe hds downloader test).flv
2014-04-03 23:44 - 2014-04-04 01:25 - 00106496 ___SH () C:\Users\White\Downloads\Thumbs.db
2014-04-03 01:12 - 2014-04-03 01:12 - 00000000 ____D () C:\Users\White\Documents\Balabolka
2014-04-02 17:41 - 2014-04-05 03:27 - 00000000 ____D () C:\Users\White\Desktop\New folder
2014-04-02 12:08 - 2014-04-02 12:10 - 00000000 ____D () C:\Users\A Lamar\Desktop\User Data
2014-04-02 11:49 - 2038-09-13 07:53 - 00002269 _____ () C:\Users\White\Desktop\eBay.lnk
2014-04-02 11:49 - 2014-03-29 19:37 - 00001358 _____ () C:\Users\White\Desktop\PROCESS EXPLORER (TASK MANAGER ALTERNATIVE) - Shortcut.lnk
2014-04-01 14:42 - 2014-04-01 14:42 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamTransport
2014-04-01 12:41 - 2014-04-01 12:41 - 00000000 _____ () C:\Users\A Lamar\mm_backup.cfg
2014-04-01 11:22 - 2014-04-04 03:27 - 00114600 _____ () C:\Users\A Lamar\Desktop\FRST.txt
2014-04-01 11:22 - 2014-04-01 11:23 - 00039308 _____ () C:\Users\A Lamar\Desktop\Addition.txt
2014-04-01 08:00 - 2014-04-02 09:27 - 00014848 ___SH () C:\Users\A Lamar\Downloads\Thumbs.db
2014-03-31 22:59 - 2014-03-31 22:59 - 01005095 _____ () C:\Users\A Lamar\Desktop\QuarantineRestore_31032014225912.txt
2014-03-31 22:59 - 2014-03-31 17:07 - 00022787 _____ () C:\Users\A Lamar\Desktop\AdwCleaner[S0].txt
2014-03-31 22:49 - 2014-04-01 06:05 - 00000000 ____D () C:\Users\A Lamar\dwhelper
2014-03-31 17:09 - 2014-04-09 13:35 - 00000000 ____D () C:\FRST
2014-03-31 16:32 - 2014-03-31 16:32 - 02157056 _____ (Farbar) C:\Users\A Lamar\Desktop\FRST64.exe
2014-03-31 00:24 - 2014-04-01 04:27 - 00000000 ____D () C:\AdwCleaner
2014-03-31 00:23 - 2014-03-31 00:23 - 01950720 _____ () C:\Users\A Lamar\Desktop\AdwCleaner.exe
2014-03-30 22:59 - 2014-03-30 22:59 - 00761856 _____ () C:\Users\A Lamar\Desktop\PCMaticPlugin.msi
2014-03-30 17:50 - 2014-03-30 17:50 - 00000125 _____ () C:\Users\A Lamar\Desktop\POST.txt
2014-03-30 17:40 - 2014-03-30 17:40 - 00008301 _____ () C:\Users\A Lamar\Desktop\ESETScan.txt
2014-03-30 12:30 - 2014-04-05 09:01 - 02347384 _____ (ESET) C:\Users\A Lamar\Desktop\esetsmartinstaller_enu.exe
2014-03-30 10:46 - 2014-03-30 10:46 - 00141713 _____ () C:\Users\A Lamar\Desktop\Malwarebytes Anti-Malware.txt
2014-03-30 06:50 - 2014-03-30 06:50 - 00000000 ____D () C:\Users\A Lamar\Documents\Balabolka
2014-03-30 06:39 - 2014-03-30 06:39 - 00000000 ____D () C:\Users\A Lamar\Desktop\FileSample_CSV
2014-03-30 04:09 - 2014-03-30 04:09 - 00000000 ____D () C:\Users\A Lamar\Documents\StreamingStar
2014-03-30 03:29 - 2014-04-04 03:48 - 00000000 ___RD () C:\Users\A Lamar\Desktop\SHORTCUTS
2014-03-30 00:48 - 2014-03-30 00:48 - 00000000 ____D () C:\Users\A Lamar\Documents\DonationCoder
2014-03-29 16:56 - 2014-03-29 16:57 - 00006948 _____ () C:\Users\A Lamar\Desktop\error.log
2014-03-25 12:24 - 2014-03-25 12:24 - 00334223 _____ () C:\Users\A Lamar\Desktop\CBS.zip
2014-03-25 08:07 - 2014-03-25 08:07 - 11204416 _____ () C:\Users\A Lamar\Desktop\CBS.log
2014-03-24 20:15 - 2014-03-13 12:41 - 23002558 _____ () C:\Users\A Lamar\CbsPersist_20140313164805.log
2014-03-22 17:10 - 2014-03-22 17:10 - 00000000 ____D () C:\Users\A Lamar\Documents\WORDsearch
2014-03-22 04:16 - 2014-03-22 04:16 - 00004017 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_D_03222014_041616.txt
2014-03-22 04:14 - 2014-03-22 04:14 - 00003821 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03222014_041456.txt
2014-03-21 21:13 - 2014-03-21 21:13 - 00003787 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211352.txt
2014-03-21 21:11 - 2014-03-21 21:11 - 00003754 _____ () C:\Users\A Lamar\Desktop\RKreport[0]_S_03212014_211107.txt
2014-03-21 21:08 - 2014-03-22 04:16 - 00000000 ____D () C:\Users\A Lamar\Desktop\RK_Quarantine
2014-03-20 04:23 - 2014-03-20 04:23 - 03901952 _____ () C:\Users\A Lamar\Desktop\RogueKiller.exe
2014-03-19 19:54 - 2014-03-19 19:54 - 00000000 ____D () C:\_OTL
2014-03-18 07:47 - 2014-04-09 13:30 - 00000000 ___HD () C:\$Windows.~BT
2014-03-18 06:31 - 2014-03-18 06:31 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-03-18 06:31 - 2014-03-18 06:31 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-03-18 06:31 - 2014-03-18 06:31 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-03-18 06:31 - 2014-03-18 06:31 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-03-18 06:31 - 2014-03-18 06:31 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-03-18 06:31 - 2014-03-18 06:31 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-03-18 06:26 - 2014-03-18 06:26 - 23549952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-18 06:26 - 2014-03-18 06:26 - 17387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-18 06:26 - 2014-03-18 06:26 - 02678784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 13933568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 13551104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 12027904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 11776000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 11745792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 11742720 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 08946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 08874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 05784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 04192768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03494912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03408384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03394384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02943488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02648064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02588168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 02574240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-03-18 06:13 - 2014-03-18 06:13 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02428928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-03-18 06:13 - 2014-03-18 06:13 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02395136 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02262016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02142976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 02043904 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 01967104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01929608 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01927600 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01791752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01789440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01767440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01727760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01659056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-18 06:13 - 2014-03-18 06:13 - 01653352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01640960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01621504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01519520 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01487520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-18 06:13 - 2014-03-18 06:13 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01474104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01445616 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01369736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01356360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01341440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01290688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01215832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01200640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 01192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 01132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01118552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01077944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01063976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01017936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01011280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 01000424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00876544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00800552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00669896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00662528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00650736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00645104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00609456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00590168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00539992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00490136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-03-18 06:13 - 2014-03-18 06:13 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00477744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2014-03-18 06:13 - 2014-03-18 06:13 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00424280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00422968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2014-03-18 06:13 - 2014-03-18 06:13 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00391008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00384856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-03-18 06:13 - 2014-03-18 06:13 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00336232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-18 06:13 - 2014-03-18 06:13 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00280920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00262335 _____ () C:\WINDOWS\system32\dfpinc.dat
2014-03-18 06:13 - 2014-03-18 06:13 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00258784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00210736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-03-18 06:13 - 2014-03-18 06:13 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00189784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-03-18 06:13 - 2014-03-18 06:13 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00180240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-18 06:13 - 2014-03-18 06:13 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00148824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-18 06:13 - 2014-03-18 06:13 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-03-18 06:13 - 2014-03-18 06:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00139600 _____ () C:\WINDOWS\system32\systemsf.ebd
2014-03-18 06:13 - 2014-03-18 06:13 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-18 06:13 - 2014-03-18 06:13 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00123448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-03-18 06:13 - 2014-03-18 06:13 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-03-18 06:13 - 2014-03-18 06:13 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00098072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-03-18 06:13 - 2014-03-18 06:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-03-18 06:13 - 2014-03-18 06:13 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2014-03-18 06:13 - 2014-03-18 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-03-18 06:13 - 2014-03-18 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
 


Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users