Jump to content

Major issues with my PC


Recommended Posts

After posting on the PC Help section i was kindly linked to this section of the forum for my issue.

This computer is a Dell and is about 5 years old, running vista.

Over the last few months my computer has been acting really odd. I did the mistake of not keeping up with Windows updates over a year ago and have been trying to get the updates going but to no avail.

If i try to run the windows update, the update window pops up and freezes right there and then. Sometimes it manages to start, search and find X amount of updates required but when i try installing those, again it freezes completely and have to terminate the process with ctr+alt+del.

Apart from that i am running IE9 and i am at a point where IE9 does NOT let me download anything from my hotmail account. I cannot save any documents or run anything.

The same goes for any website, once i select 'save as' and choose a location, it begins saving the file but once it reaches 99% it stops and i get a little message at the bottom of the IE9 page saying 'the X file contained a virus and was deleted.'

I have ran malwarebytes quite a few times in the past and a few months ago it did find viruses in some windows files if i recall, something like windows defender and other windows files which i deleted thinking they could have been part of the virus. But over the last 2 weeks whenever i do a malwarebytes scan it comes up clean.

I have tried the microsoft windows pages and couldn't find anything that helped.

I have surfed pages for hours over the last 2 weeks with regards to these problems but have not come across anything that really helped solve any of these problems.

I strongly need to mention that i do not have ANY virus program on this computer at the moment and only run malwarebytes when i feel there is a problem. I know that is absolutely terrible but after using many in the past i have found that ones i used, gave me more trouble that not having one. I am however hoping that when my issue is solved you could be kind enough to also advise me on some antivirus software you recommend.

I have tried downloading DDS from either locations but at 99% IE9 pops up a little window saying something like 'a virus was found and file was deleted',

Any help at this point would be greatly appreciated.

Ron

Link to post
Share on other sites

Hello Ron! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:

  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:


    • Startup Repair
      System Restore
      Windows Complete PC Restore
      Windows Memory Diagnostic Tool
      Command Prompt

[*]Select Command Prompt

[*]In the command window type in notepad and press Enter.

[*]The notepad opens. Under File menu select Open.

[*]Select "Computer" and find your flash drive letter and close the notepad.

[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter

Note: Replace letter e with the drive letter of your flash drive.

[*]The tool will start to run.

[*]When the tool opens click Yes to disclaimer.

[*]Press Scan button.

[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

Link to post
Share on other sites

Hi Maniac, thank you for your kind help.

Before continuing i wanted to mention something i forgot to last time. When shutting down the pc take about 5-10mns shutting down.

First it hangs then i get a black screen with the mouse cursor still on the screen and then i get some window popping up saying Security error.

Once i click on that window the pc then shuts down.

Ok now for the instructions you have left me.

I could not save the Farbar recovery tool anywhere not even onto the flash drive since IE9 deleted it as soon as it was near completion.

I have had to use my laptop to save it onto a flash drive but that is now done and saved.

I did not want to continue since i wasn't sure what disc to insert for the systems recovery options or which option to choose:

I have 2 discs from Dell.

1. Operating system

2. Drivers and utilities

Once i did get on the Advanced boot options ( no disc inserted ) i only had the following options:

Safe Mode

Safe mode with networking

safe mode with command prompt

Enable boot logging

Enable low-resolution video

Last known good configuration

Directory services restore mode

Debugging mode

Disable automatic restart on system failure

Disable drive signature enforcement

.

Start windows normally

Those are the options i had when pressing F8

If i press F12 on bootup, i get a different window with Boot up options:

Onboard or USB cd-rom drive

ID 01 nvidia mirror 298.09G

System setup

Hard drive diagnostics

Boot to utility partition

I am sorry about taking up your time in explaining what options i have but with all those options i am not sure which boot up option to use or which disk i should insert to get to the system recovery options.

Thanks again Maniac
Link to post
Share on other sites

Hi Maniac, from looking at the forum it seems you have your hands full.

So i guess i will try to get to the system recovery page by trial and error.

i feel like a real computer noob even though i do know my way pretty much around computers except for technical stuff :blush: which seems to be these bits.

Link to post
Share on other sites

Hi Maniac, thanks for that,i thought it would be that disc.

Ok before i continue i also would like to mention that my cpu is always around 40% used even when idle. I seem to have some Searchindex.exe running all the time. When i do go to check the processes it drops to 1 % or so.

Anyway enough about my issues. Here is the log you kindly as asked me to post.

can result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-05-2013

Ran by SYSTEM on 19-05-2013 17:41:21

Running from F:\

Windows Vista Home Premium (X86) OS Language: English(US)

Internet Explorer Version 9

Boot Mode: Recovery

The current controlset is ControlSet002

ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)

HKLM\...\Run: [CTxfiHlp] CTXFIHLP.EXE [x]

HKLM\...\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)

HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] fastprox.dll ATTENTION! ====> ZeroAccess

HKU\T1\...\Run: [dc3bc3d74d4] C:\Users\T1\AppData\Roaming\AVS4YOU\AVSVideoEditor\Profiles\control.exe [ 2006-11-02] ()

HKU\T1\...\Winlogon: [shell] explorer.exe

========================== Services (Whitelisted) =================

S2 BITS; C:\Windows\System32\svchost.exe [21504 2008-01-18] (Microsoft Corporation)

S2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [8704 2013-02-11] (Hi-Rez Studios)

S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2012-01-02] ()

S2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2011-08-19] (Logitech Inc.)

S3 msiserver; %systemroot%\system32\msiexec /V [x]

==================== Drivers (Whitelisted) ====================

S3 ErgoDvr; C:\Windows\System32\DRIVERS\ergodvr.sys [25771 2005-02-17] (Ergodex, Inc)

S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [30464 2013-05-17] ()

S3 L6PODHD3; C:\Windows\System32\Drivers\L6PODHD3.sys [583168 2012-07-10] (Line 6)

S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]

S3 IpInIp; system32\DRIVERS\ipinip.sys [x]

S1 MpKsl8289f67b; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4302D936-144D-482B-A5F6-48BECFB41E43}\MpKsl8289f67b.sys [x]

S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]

S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

S1 OMCI; \??\C:\Windows\SYSTEM32\DRIVERS\OMCI.SYS [x]

S0 qbnmn; System32\drivers\ygdwxlft.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-05-19 17:41 - 2013-05-19 17:41 - 00000000 ____D C:\FRST

2013-05-18 07:06 - 2013-05-18 07:06 - 00002858 ____A C:\Users\T1\Desktop\instructions.txt

2013-05-17 21:04 - 2013-05-17 21:04 - 00030464 ____A C:\Windows\System32\Drivers\hitmanpro37.sys

2013-05-17 20:35 - 2013-05-17 20:35 - 00003030 ____A C:\Windows\System32\.crusader

2013-05-17 20:26 - 2013-05-17 20:57 - 00000000 ____D C:\ProgramData\HitmanPro

2013-05-17 07:07 - 2013-05-17 07:07 - 00000000 ____D C:\Users\T1\AppData\Roaming\QuickScan

2013-05-05 10:56 - 2013-05-05 10:56 - 04167680 ____A C:\Program Files\GUTD436.tmp

2013-05-05 10:56 - 2013-05-05 10:56 - 00000000 ____D C:\Program Files\GUMD435.tmp

2013-05-05 10:41 - 2013-05-19 07:46 - 00000878 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-05-05 10:41 - 2013-05-05 10:41 - 04167680 ____A C:\Program Files\GUT7C27.tmp

2013-05-05 10:41 - 2013-05-05 10:41 - 00000000 ____D C:\Program Files\GUM7C26.tmp

2013-05-05 10:35 - 2013-05-19 06:48 - 00000874 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-05-05 10:35 - 2013-05-05 10:56 - 00000000 ____D C:\Program Files\Google

2013-05-05 10:35 - 2013-05-05 10:35 - 04167680 ____A C:\Program Files\GUT4974.tmp

2013-05-05 10:35 - 2013-05-05 10:35 - 00000000 ____D C:\Users\T1\AppData\Local\Google

2013-05-05 10:35 - 2013-05-05 10:35 - 00000000 ____D C:\Program Files\GUM4973.tmp

2013-05-04 16:14 - 2013-05-17 14:26 - 00000000 ____D C:\Users\T1\Downloads\Star Trek (2009)

2013-04-28 20:20 - 2013-04-28 20:32 - 730370048 ____A C:\Users\T1\Downloads\Dragon.Tiger.Gate[2006].avi

2013-04-24 17:17 - 2013-04-24 17:17 - 00000000 ____D C:\Users\T1\Downloads\Superman.Returns[2006]

2013-04-22 13:07 - 2013-05-19 07:37 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-04-22 12:49 - 2013-04-22 12:49 - 00014708 ____A C:\Users\T1\Documents\NOW.reg

2013-04-20 06:35 - 2013-04-20 06:35 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-04-20 05:35 - 2013-04-20 05:45 - 00000028 ____A C:\Users\T1\AppData\Local\avdmjtcw.log

==================== One Month Modified Files and Folders ========

2013-05-19 17:41 - 2013-05-19 17:41 - 00000000 ____D C:\FRST

2013-05-19 08:29 - 2006-11-02 05:01 - 00032716 ____A C:\Windows\Tasks\SCHEDLGU.TXT

2013-05-19 08:29 - 2006-11-02 05:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-05-19 08:26 - 2011-07-12 17:14 - 00082242 ____A C:\Windows\PFRO.log

2013-05-19 08:26 - 2011-07-12 12:27 - 00000000 ____D C:\ProgramData\NVIDIA

2013-05-19 08:26 - 2006-11-02 04:47 - 00003664 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

2013-05-19 08:26 - 2006-11-02 04:47 - 00003664 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

2013-05-19 08:25 - 2006-11-02 04:52 - 01753625 ____A C:\Windows\WindowsUpdate.log

2013-05-19 07:56 - 2011-07-13 01:58 - 00000000 ____D C:\Program Files\Steam

2013-05-19 07:56 - 2011-07-12 17:19 - 00141824 ____A C:\Users\T1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2013-05-19 07:46 - 2013-05-05 10:41 - 00000878 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-05-19 07:38 - 2011-11-13 20:05 - 00000896 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2723283558-4130396630-3678917449-1000UA.job

2013-05-19 07:37 - 2013-04-22 13:07 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-05-19 07:34 - 2006-11-02 02:33 - 00704070 ____A C:\Windows\System32\PerfStringBackup.INI

2013-05-19 06:48 - 2013-05-05 10:35 - 00000874 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-05-18 20:38 - 2011-11-13 20:05 - 00000844 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2723283558-4130396630-3678917449-1000Core.job

2013-05-18 07:06 - 2013-05-18 07:06 - 00002858 ____A C:\Users\T1\Desktop\instructions.txt

2013-05-17 21:04 - 2013-05-17 21:04 - 00030464 ____A C:\Windows\System32\Drivers\hitmanpro37.sys

2013-05-17 20:57 - 2013-05-17 20:26 - 00000000 ____D C:\ProgramData\HitmanPro

2013-05-17 20:35 - 2013-05-17 20:35 - 00003030 ____A C:\Windows\System32\.crusader

2013-05-17 14:26 - 2013-05-04 16:14 - 00000000 ____D C:\Users\T1\Downloads\Star Trek (2009)

2013-05-17 10:28 - 2012-06-28 01:54 - 00000000 ____D C:\Users\T1\Desktop\work

2013-05-17 07:07 - 2013-05-17 07:07 - 00000000 ____D C:\Users\T1\AppData\Roaming\QuickScan

2013-05-16 18:03 - 2011-11-13 20:05 - 00000000 ____D C:\Users\T1\AppData\Local\Deployment

2013-05-16 17:22 - 2012-08-26 11:00 - 00000000 ____D C:\Program Files\Mumble

2013-05-14 22:08 - 2011-07-12 12:18 - 00000000 ____D C:\Program Files\Common Files\Adobe

2013-05-14 19:37 - 2012-04-03 04:06 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe

2013-05-14 19:37 - 2011-07-12 12:18 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl

2013-05-05 10:56 - 2013-05-05 10:56 - 04167680 ____A C:\Program Files\GUTD436.tmp

2013-05-05 10:56 - 2013-05-05 10:56 - 00000000 ____D C:\Program Files\GUMD435.tmp

2013-05-05 10:56 - 2013-05-05 10:35 - 00000000 ____D C:\Program Files\Google

2013-05-05 10:41 - 2013-05-05 10:41 - 04167680 ____A C:\Program Files\GUT7C27.tmp

2013-05-05 10:41 - 2013-05-05 10:41 - 00000000 ____D C:\Program Files\GUM7C26.tmp

2013-05-05 10:35 - 2013-05-05 10:35 - 04167680 ____A C:\Program Files\GUT4974.tmp

2013-05-05 10:35 - 2013-05-05 10:35 - 00000000 ____D C:\Users\T1\AppData\Local\Google

2013-05-05 10:35 - 2013-05-05 10:35 - 00000000 ____D C:\Program Files\GUM4973.tmp

2013-04-28 20:32 - 2013-04-28 20:20 - 730370048 ____A C:\Users\T1\Downloads\Dragon.Tiger.Gate[2006].avi

2013-04-26 19:03 - 2006-11-02 04:37 - 00000000 ____D C:\Windows\DigitalLocker

2013-04-24 17:17 - 2013-04-24 17:17 - 00000000 ____D C:\Users\T1\Downloads\Superman.Returns[2006]

2013-04-22 12:49 - 2013-04-22 12:49 - 00014708 ____A C:\Users\T1\Documents\NOW.reg

2013-04-20 06:35 - 2013-04-20 06:35 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-04-20 05:52 - 2012-06-28 01:56 - 00000000 ____D C:\Users\T1\Desktop\Game shortcuts

2013-04-20 05:49 - 2013-01-16 08:36 - 00000000 ____D C:\Users\T1\Documents\New Folder

2013-04-20 05:49 - 2011-09-28 11:14 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2013-04-20 05:49 - 2011-07-12 17:23 - 00000000 ____D C:\Program Files\CCleaner

2013-04-20 05:49 - 2011-07-12 11:06 - 00000000 ____D C:\users\T1

2013-04-20 05:49 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\spool

2013-04-20 05:49 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\Msdtc

2013-04-20 05:49 - 2006-11-02 02:22 - 37224448 ____A C:\Windows\System32\config\components_previous

2013-04-20 05:49 - 2006-11-02 02:22 - 34603008 ____A C:\Windows\System32\config\software_previous

2013-04-20 05:49 - 2006-11-02 02:22 - 24641536 ____A C:\Windows\System32\config\system_previous

2013-04-20 05:49 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\security_previous

2013-04-20 05:49 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\sam_previous

2013-04-20 05:49 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\default_previous

2013-04-20 05:45 - 2013-04-20 05:35 - 00000028 ____A C:\Users\T1\AppData\Local\avdmjtcw.log

2013-04-20 05:45 - 2013-02-28 11:24 - 00000004 ____A C:\Users\T1\AppData\Local\loudrlvh.log

2013-04-20 05:38 - 2013-02-28 11:24 - 00000000 ____A C:\Users\T1\AppData\Local\vydluqlq.log

2013-04-20 05:37 - 2013-02-28 11:24 - 00018827 ____A C:\Users\T1\AppData\Local\cmwpaxmk.log

2013-04-20 05:01 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\tapi

2013-04-19 16:50 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\Globalization

2013-04-19 14:02 - 2011-11-14 07:51 - 00000000 ____D C:\Users\T1\Desktop\Guitar Music and backing

2013-04-19 14:02 - 2011-07-12 18:39 - 00000000 ____D C:\Windows\Minidump

2013-04-19 13:56 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\nap

2013-04-19 13:36 - 2013-02-28 11:25 - 00700373 ____A C:\Users\T1\AppData\Local\ohukpirn.log

2013-04-19 13:36 - 2013-02-28 11:25 - 00003326 ____A C:\Users\T1\AppData\Local\mobndjnk.log

2013-04-19 13:36 - 2013-02-28 11:25 - 00003247 ____A C:\Users\T1\AppData\Local\svkarrol.log

2013-04-19 13:36 - 2013-02-28 11:22 - 00453200 ____A C:\Users\T1\AppData\Local\bmhacqjt.log

2013-04-19 13:36 - 2013-02-28 11:22 - 00005370 ____A C:\Users\T1\AppData\Local\ffxhlmso.log

2013-04-19 09:01 - 2006-11-02 04:37 - 00000000 ____D C:\Windows\Performance

Other Malware:

===========

C:\ProgramData\g67371S.dat

==================== Known DLLs (Whitelisted) ============

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2013-04-25 07:43:16

Restore point made on: 2013-04-27 07:20:34

Restore point made on: 2013-04-28 08:34:06

Restore point made on: 2013-04-29 07:32:46

Restore point made on: 2013-04-30 07:44:06

Restore point made on: 2013-05-01 07:45:59

Restore point made on: 2013-05-02 07:42:47

Restore point made on: 2013-05-03 07:22:41

Restore point made on: 2013-05-04 08:09:16

Restore point made on: 2013-05-05 07:55:36

Restore point made on: 2013-05-06 11:06:57

Restore point made on: 2013-05-07 07:16:06

Restore point made on: 2013-05-08 08:11:11

Restore point made on: 2013-05-09 06:50:57

Restore point made on: 2013-05-11 09:09:34

Restore point made on: 2013-05-12 07:32:43

Restore point made on: 2013-05-13 07:06:59

Restore point made on: 2013-05-14 06:29:31

Restore point made on: 2013-05-15 08:49:59

Restore point made on: 2013-05-16 17:22:33

Restore point made on: 2013-05-17 08:53:17

Restore point made on: 2013-05-18 08:36:55

==================== Memory info ===========================

Percentage of memory in use: 12%

Total physical RAM: 4092.55 MB

Available physical RAM: 3588.83 MB

Total Pagefile: 3836.6 MB

Available Pagefile: 3637.63 MB

Total Virtual: 2047.88 MB

Available Virtual: 1975.72 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:298.09 GB) (Free:103.81 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

Drive d: (VISTA_32_PREMIUM) (CDROM) (Total:2.84 GB) (Free:0 GB) CDFS

Drive f: (RON) (Removable) (Total:1.86 GB) (Free:1.86 GB) FAT32

Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows Vista) (Size: 298 GB) (Disk ID: 269E3F08)

Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================

Disk: 1 (Size: 2 GB) (Disk ID: 0D1F7478)

Partition 1: (Active) - (Size=2 GB) - (Type=0B)

Last Boot: 2013-05-19 06:55

==================== End Of Log ============================

Link to post
Share on other sites

HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] fastprox.dll ATTENTION! ====> ZeroAccess

I'm afraid I have bad news.

One or more of the identified infections is a rootkit. Rootkits are very dangerous because they use advanced techniques (backdoors) as a means of accessing a computer system that bypasses security mechanisms and steal sensitive information which they send back to the hacker. Many rootkits can hook into the Windows 32-bit kernel, and patch several APIs to hide new registry keys and files they install. Remote attackers use backdoor Trojans and rootkits as part of an exploit to gain unauthorized access to a computer and take control of it without your knowledge.

I suggest you disconnect this computer from the Internet immediately you finish reading this post.

If you do any banking or other financial transactions on the computer, or if it contains any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the trojan has been identified and can be killed, your computer is very likely compromised and there is no way to be sure your computer can ever again be trusted.

Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the Operating System.

Visit the following sites for more information on Internet theft and when to reformat!

Help: I Got Hacked. Now What Do I Do?

Help: I Got Hacked. Now What Do I Do? Part II

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

When Should I Format, How Should I Reinstall

Should you decide not to follow that advice, we will of course do our best to clean the computer of any infections that we can see but, as I already stated, we can in no way guarantee it to be trustworthy.

If you have any questions before making a final decision, please feel free to ask.

Instructions how to format and reinstall Windows can be found here

Link to post
Share on other sites

Hi Maniac, wow.. that's harsh news but thank you for letting me know.

I do have a few questions but before that thank you again, i have disconnect my main computer from the internet and changed a few passwords.

I dont do online banking but i do purchase things online from stores and so on using CC card or DD cards. I also happen to have a scan of the photo page of my passport on there.

I will certainly make sure my CC and DD card providers the situation. As for the scan of 1 page of my passport i doubt very much that it would be useful.

I do have a few questions:

1. Any idea how long this virus has been there?

2. I have an external drive which i saved all my info on in the past and present. Could that be compromised??

3. Could any files that i have saved carry this virus?

4. Is this virus something that takes a long time for the hacker to set up or is this done in one program?

5. If i delete the sensitive information can i surf the net? ( of course not purchasing or loging onto anything that requires a password until i get a copy of windows 7)

6. I am now on this laptop which i dont like to work on, could this also be compromised by the same virus?, seeing as i do use the same external harddrive on this machine too.

I can't think of any other questions at the moment since i am in a little shock but once it sinks in i guess i might have a few more questions if that's ok.

I am thinking of getting myself a full windows 7 copy and use that onto the main comp. Would you recommend win7 and can this trojan also affect windows 7? I presume it can i am just curious as to what you would think.

I will decide how to proceed after i get a reply from you.

Thanks again Maniac.

Link to post
Share on other sites

1. Any idea how long this virus has been there?

There's no way to figure this out.

2. I have an external drive which i saved all my info on in the past and present. Could that be compromised??

Probably not. If you want to use it, I recommend you to immunize it.

http://www.pandasecurity.com/homeusers/downloads/usbvaccine/

3. Could any files that i have saved carry this virus?

There are many options for distribution, so I can not say for sure.

4. Is this virus something that takes a long time for the hacker to set up or is this done in one program?

All-in-one :)

5. If i delete the sensitive information can i surf the net? ( of course not purchasing or loging onto anything that requires a password until i get a copy of windows 7)

Yes, you could, but if you plan to use it until you get a disc, let me help you to clean what we can do.

6. I am now on this laptop which i dont like to work on, could this also be compromised by the same virus?, seeing as i do use the same external harddrive on this machine too.

There is no way to know that. Create a new thread here and someone will be happy to help you.

I am thinking of getting myself a full windows 7 copy and use that onto the main comp. Would you recommend win7 and can this trojan also affect windows 7? I presume it can i am just curious as to what you would think.

It is a excellent choice and yes, strongly recommend it to you. You should know that is nothing impossible and Windows 7 is not a untouchable.

Link to post
Share on other sites

Hi Maniac, thanks for making things a bit clearer.

There is no need to take up your time to clean up the PC just for surfing. I am in the process of heading out to the store right after this to get a copy of win7 and that will hopefully format and do everything as i install it.

I did download USB vaccine, thank you for that and have used it on this laptop and on my external HD and Stick.

This computer does have an antivirus on it and seems to be running great even though it's a little old it comes in handy in situations like mine where the main pc is compromised.

I did want to ask you a few more things before we close this thread.

Do you recomment to always have an antivirus program, an anti spy program and Malwarebytes or just an AV program?

Can you recommend any antivirus and spy programs?

I will be back soon to install win7 and will check your reply.

Thank you sir.

Link to post
Share on other sites

Do you recomment to always have an antivirus program, an anti spy program and Malwarebytes or just an AV program?

You must always have active and updated antivirus program. Malwarebytes' Anti-Malware is additional to your antivirus and I think both of them are enough.

Can you recommend any antivirus and spy programs?

Depends on your resources. I mean do you want free or paid antivirus protection? Some recommendations:

http://users.telenet.be/bluepatchy/miekiemoes/Links.html#AntiVirus%20Scanners

Link to post
Share on other sites

Hi Maniac and sorry for the late reply. I had a bit of a problem getting a copy of Win7 since no stores had it. Most of them had Win8.

I did however order a copy from Amazon and received it this morning. Installed and all running fine after hours of updates.

I have put avast on here as AV and still using the amazing Malwarebytes of course.

Thank you for your links for Antivirus's.

I have a few final questions for you, if i was to get a paid AV.

Which would be your choice personally?

Does paying for an AV really make a big difference than the freeware?

I strongly believe in helping others like other have helped me, so the world can continue a trend that should never stop. Always help when you can, that's my motto.... :D

Lastly is there any other way i can donate to you apart from paypal since i don't have a paypal account?

Thank again.

Ron

Link to post
Share on other sites

Which would be your choice personally?

Personally, I'm using ESET NOD32 Antivirus (or ESET Smart Security is much better).

Does paying for an AV really make a big difference than the freeware?

Absolutely! Even independent testing organizations show that. For example:

http://www.av-comparatives.org/comparatives-reviews/

Lastly is there any other way i can donate to you apart from paypal since i don't have a paypal account?

I'm working only with PayPal. Don't worry! :)

Link to post
Share on other sites

Hi Maniac. Excellent! thank you for replying to that. Had no idea it made such a difference. Well thank you for all your help. Everything seems to be in order on this pc at the moment. If I ever get any problems I will visit this fantastic forum again. I did manage to find a friend of mine who has a paypal account, even though we didn't really do much at all, your kind input was more than valuable. Donation was sent in his name, 'Sohrab'. Thank you again Maniac, sorry about the paragraph here, for some reason pressing enter is not taking me down to the next line, I hope its a bug and not virus. Time to run virus checker and please feel free to close this thread. Have a nice week. Ron

Link to post
Share on other sites

Hi Maniac, just before this thread is closed since I still have your attention, I have had a few interesting things happen in the last 2 days which I am not sure whether it is something to worry about. Firstly I still cannot seem to be able to press enter and goto the next line below. Is this a forum bug or something? Anyway back to my little problem on here now. After installing win7 and of course running an AV and using malwarebytes, while browsing over the last 2 days, I sometimes get a little window pop up from either the AV or Malwarebytes saying blocked IP 204.160.98.253 Port 57030. Now this has happened around maybe 10 times over the last days of surfing. It is something I should worry about or that is just means that its been blocked by the AV/Malwarebytes? Again apologies about the single paragraph, not sure why pressing enter is just not moving me down to the next line.

Link to post
Share on other sites

Firstly I still cannot seem to be able to press enter and goto the next line below. Is this a forum bug or something?

Is this a problem with all of your browsers?

Anyway back to my little problem on here now. After installing win7 and of course running an AV and using malwarebytes, while browsing over the last 2 days, I sometimes get a little window pop up from either the AV or Malwarebytes saying blocked IP 204.160.98.253 Port 57030. Now this has happened around maybe 10 times over the last days of surfing. It is something I should worry about or that is just means that its been blocked by the AV/Malwarebytes? Again apologies about the single paragraph, not sure why pressing enter is just not moving me down to the next line.

Could be a problem. I would like to check. Please generate a DDS log file there and post it here.

Link to post
Share on other sites

Hi Maniac, ok firstly i did not think it would be a browser thing but you were correct.

I can move down by pressing enter with Google chrome but with my current IE10 i can't seem to be able to do that. So it looks like an IE10 browser problem.

More importantly something i found out today from my cousin who is staying with me for a few more days. While i have been at work my cousin has been using my comp to surf and when i asked about a little message popping up, he said that yes he was getting that quite a bit.

To me it hasn't really happened a lot but out of curiosity i went to check the Malwarebytes log and oh my! i'm not sure how he surfs but there are more 200 entries blocked outgoing logs from a few different IPs.

I have asked him to not use my computer while i am away!

I will run the DDS log once i am back from work in a few hours.

I just thought i should mention that since it could be important info while we check this PC again.

Ron

Link to post
Share on other sites

Maniac, i decided to delay my work for now since i am more eager to solve any issues on this PC once and for all.

The joys of being self employed :)

Anyway i have just run the FRST and will post the log below.

Before that i did want to say as i was doing this process, in the boot up options, below most options i saw a line that said.

'Hitmanpro blah blah blah 2012, 2013'

I used hitman pro the day i actually came on here and started this thread. I also am sure that i deleted and uninstalled it. Apart from that when i installed win7 i did pick to format the partition before installing win7. Somehow hitman pro is still here??

Could it be that i didnt format properly or something went wrong? odd...

DDS Log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-05-2013 01

Ran by SYSTEM on 23-05-2013 16:04:15

Running from F:\

Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 9

Boot Mode: Recovery

The current controlset is ControlSet001

ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)

HKLM-x32\...\Run: [CTxfiHlp] CTXFIHLP.EXE [25600 2010-05-05] (Creative Technology Ltd)

HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-05-11] (Adobe Systems Incorporated)

HKU\UpdatusUser\...\RunOnce: [CTAutoUpdate] "C:\Program Files (x86)\Creative\Shared Files\Software Update\AutoUpdate.exe" /RunFromInstaller [430968 2009-01-15] (Creative Technology Ltd)

==================== Services (Whitelisted) =================

S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)

S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

==================== Drivers (Whitelisted) ====================

S2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)

S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)

S1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)

S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()

S1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-05-09] (AVAST Software)

S1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378432 2013-05-09] (AVAST Software)

S1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)

S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-05-09] ()

S3 L6PODHD3; C:\Windows\System32\Drivers\L6PODHD364.sys [772224 2012-03-26] (Line 6)

S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-05-23 16:04 - 2013-05-23 16:04 - 00000000 ____D C:\FRST

2013-05-23 06:51 - 2013-05-20 06:30 - 00047040 ____A C:\Users\Rony\Desktop\bookmark.htm

2013-05-23 06:48 - 2013-05-23 06:49 - 01878472 ____A (Farbar) C:\Users\Rony\Desktop\FRST64.exe

2013-05-23 04:25 - 2013-05-23 04:25 - 00000000 ____D C:\Users\Rony\AppData\Local\Microsoft Games

2013-05-21 20:59 - 2013-05-22 18:15 - 00000358 ____A C:\Users\Rony\Desktop\Files.txt

2013-05-21 18:44 - 2013-05-21 18:44 - 00001080 ____A C:\Windows\System32\settingsbkup.sfm

2013-05-21 18:44 - 2013-05-21 18:44 - 00001080 ____A C:\Windows\System32\settings.sfm

2013-05-21 18:40 - 2013-05-21 18:40 - 00001109 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Malwarebytes

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-05-21 18:40 - 2013-04-04 05:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys

2013-05-21 18:39 - 2013-05-21 18:39 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Rony\Downloads\mbam-setup-1.75.0.1300.exe

2013-05-21 17:44 - 2013-05-21 17:44 - 00000983 ____A C:\Users\Public\Desktop\Easy FLV Player.lnk

2013-05-21 17:44 - 2013-05-21 17:44 - 00000000 ____D C:\Program Files (x86)\Easy FLV Player

2013-05-21 17:43 - 2013-05-21 17:43 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Mozilla

2013-05-21 17:25 - 2013-05-21 17:25 - 00000000 ____D C:\Users\Rony\AppData\Roaming\vlc

2013-05-21 17:24 - 2013-05-21 17:24 - 00000000 ____D C:\Program Files (x86)\VideoLAN

2013-05-21 16:59 - 2013-05-21 17:04 - 00000000 ____D C:\Users\Rony\Desktop\work

2013-05-21 16:56 - 2011-04-20 03:28 - 00000009 ____A C:\Users\Rony\Desktop\FEDEX.txt

2013-05-21 16:50 - 2013-05-21 16:51 - 00000000 ____D C:\Users\Rony\Desktop\kostas

2013-05-21 16:48 - 2013-05-21 16:48 - 00000000 ____D C:\Users\Rony\Desktop\Backtracks

2013-05-21 16:41 - 2013-05-21 16:41 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Leadertech

2013-05-21 16:29 - 2013-05-23 06:06 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-05-21 16:29 - 2013-05-21 16:29 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-05-21 16:29 - 2013-05-21 16:29 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Windows\SysWOW64\Macromed

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Windows\System32\Macromed

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Macromedia

2013-05-21 16:26 - 2013-05-21 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-05-21 16:25 - 2013-05-21 16:29 - 00000000 ____D C:\ProgramData\Adobe

2013-05-21 16:01 - 2013-05-23 06:53 - 00000000 ____D C:\Program Files (x86)\Steam

2013-05-21 16:01 - 2013-05-21 16:01 - 00000917 ____A C:\Users\Public\Desktop\Steam.lnk

2013-05-21 16:00 - 2013-05-21 16:00 - 00000000 ____D C:\Users\Rony\Desktop\New backing tracks Kostas

2013-05-21 15:58 - 2013-05-21 15:58 - 01669632 ____A C:\Users\Rony\Downloads\SteamInstall.msi

2013-05-21 15:37 - 2013-05-21 15:37 - 00008192 _RASH C:\BOOTSECT.BAK

2013-05-21 15:37 - 2013-05-21 07:23 - 00000000 ____D C:\Windows\Panther

2013-05-21 15:37 - 2010-11-20 19:23 - 00383786 _RASH C:\bootmgr

2013-05-21 12:17 - 2013-05-21 12:17 - 05845720 ____A C:\Users\Rony\Downloads\Produce.wmv

2013-05-21 11:38 - 2013-05-21 11:38 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Line 6

2013-05-21 11:32 - 2013-05-21 11:32 - 00002109 ____A C:\Users\Rony\Desktop\POD HD300 Edit.lnk

2013-05-21 11:32 - 2013-05-21 11:32 - 00000000 ____D C:\Users\Rony\Documents\Line 6

2013-05-21 11:31 - 2013-05-21 11:32 - 00000000 ____D C:\ProgramData\Line 6

2013-05-21 11:30 - 2013-05-21 11:31 - 00004608 ____A C:\Windows\DPINST.LOG

2013-05-21 11:29 - 2013-05-21 11:32 - 00000000 ____D C:\Program Files (x86)\Line6

2013-05-21 11:29 - 2013-05-21 11:29 - 00002201 ____A C:\Users\Rony\Desktop\Line 6 Monkey.lnk

2013-05-21 11:28 - 2013-05-21 11:30 - 29175696 ____A C:\Users\Rony\Downloads\POD HD300 Edit v2.01.0 Installer.exe

2013-05-21 11:28 - 2013-05-21 11:30 - 09672864 ____A C:\Users\Rony\Downloads\Line 6 Drivers v4.2.5.4 Installer.exe

2013-05-21 11:27 - 2013-05-21 11:28 - 05049008 ____A C:\Users\Rony\Downloads\Line 6 Monkey v1.62 Installer.exe

2013-05-21 10:05 - 2011-03-24 19:29 - 00343040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys

2013-05-21 10:05 - 2011-03-24 19:29 - 00325120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys

2013-05-21 10:05 - 2011-03-24 19:29 - 00098816 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys

2013-05-21 10:05 - 2011-03-24 19:29 - 00052736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys

2013-05-21 10:05 - 2011-03-24 19:29 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys

2013-05-21 10:05 - 2011-03-24 19:29 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys

2013-05-21 10:05 - 2011-03-24 19:28 - 00007936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00410496 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00189824 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00166272 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00148352 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00107904 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys

2013-05-21 10:05 - 2011-03-10 22:41 - 00027008 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys

2013-05-21 10:05 - 2011-03-10 22:33 - 02565632 ____A (Microsoft Corporation) C:\Windows\System32\esent.dll

2013-05-21 10:05 - 2011-03-10 22:30 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\fsutil.exe

2013-05-21 10:05 - 2011-03-10 21:33 - 01699328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll

2013-05-21 10:05 - 2011-03-10 21:31 - 00074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe

2013-05-21 10:05 - 2011-03-10 20:37 - 00091648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS

2013-05-21 09:53 - 2013-05-21 09:53 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Adobe

2013-05-21 09:46 - 2013-05-21 09:46 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-05-21 09:46 - 2013-05-21 09:46 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-05-21 09:46 - 2013-05-21 09:46 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl

2013-05-21 09:46 - 2013-05-21 09:46 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-05-21 09:46 - 2013-05-21 09:46 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-05-21 09:46 - 2013-05-21 09:46 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat

2013-05-21 09:46 - 2013-05-21 09:46 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec

2013-05-21 09:46 - 2013-05-21 09:46 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-05-21 09:46 - 2013-05-21 09:46 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx

2013-05-21 09:46 - 2013-05-21 09:46 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-05-21 09:46 - 2013-05-21 09:46 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-05-21 09:44 - 2013-05-21 09:48 - 00006895 ____A C:\Windows\IE10_main.log

2013-05-21 09:35 - 2012-07-25 20:55 - 00785512 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys

2013-05-21 09:35 - 2012-07-25 20:55 - 00054376 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys

2013-05-21 09:35 - 2012-07-25 18:36 - 00009728 ____A (Microsoft Corporation) C:\Windows\System32\Wdfres.dll

2013-05-21 09:35 - 2012-06-02 06:35 - 00000003 ____A C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2013-05-21 09:34 - 2012-08-23 06:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll

2013-05-21 09:34 - 2012-08-23 06:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys

2013-05-21 09:34 - 2012-08-23 06:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys

2013-05-21 09:34 - 2012-08-23 06:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys

2013-05-21 09:34 - 2012-08-23 05:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll

2013-05-21 09:34 - 2012-08-23 05:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll

2013-05-21 09:34 - 2012-08-23 05:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe

2013-05-21 09:34 - 2012-08-23 05:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll

2013-05-21 09:34 - 2012-08-23 05:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll

2013-05-21 09:34 - 2012-08-23 05:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll

2013-05-21 09:34 - 2012-08-23 05:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll

2013-05-21 09:34 - 2012-08-23 05:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll

2013-05-21 09:34 - 2012-08-23 05:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll

2013-05-21 09:34 - 2012-08-23 04:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll

2013-05-21 09:34 - 2012-08-23 03:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe

2013-05-21 09:34 - 2012-08-23 03:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll

2013-05-21 09:34 - 2012-08-23 03:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe

2013-05-21 09:34 - 2012-08-23 03:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll

2013-05-21 09:34 - 2012-08-23 02:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll

2013-05-21 09:34 - 2012-08-23 02:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll

2013-05-21 09:34 - 2012-08-23 02:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe

2013-05-21 09:34 - 2012-08-23 02:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe

2013-05-21 09:34 - 2012-08-23 01:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll

2013-05-21 09:34 - 2012-08-23 00:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2013-05-21 09:34 - 2012-08-23 00:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll

2013-05-21 09:33 - 2013-05-21 09:33 - 00000000 ____D C:\32fd94ad14a0037b895203

2013-05-21 09:32 - 2012-07-25 19:08 - 00744448 ____A (Microsoft Corporation) C:\Windows\System32\WUDFx.dll

2013-05-21 09:32 - 2012-07-25 19:08 - 00229888 ____A (Microsoft Corporation) C:\Windows\System32\WUDFHost.exe

2013-05-21 09:32 - 2012-07-25 19:08 - 00194048 ____A (Microsoft Corporation) C:\Windows\System32\WUDFPlatform.dll

2013-05-21 09:32 - 2012-07-25 19:08 - 00084992 ____A (Microsoft Corporation) C:\Windows\System32\WUDFSvc.dll

2013-05-21 09:32 - 2012-07-25 19:08 - 00045056 ____A (Microsoft Corporation) C:\Windows\System32\WUDFCoinstaller.dll

2013-05-21 09:32 - 2012-07-25 18:26 - 00198656 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys

2013-05-21 09:32 - 2012-07-25 18:26 - 00087040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys

2013-05-21 09:32 - 2012-06-02 06:57 - 00000003 ____A C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2013-05-21 09:29 - 2013-01-13 13:17 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:17 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:16 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:12 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:11 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:11 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:11 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:11 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 13:11 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:35 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:35 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:35 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:32 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:31 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-21 09:29 - 2013-01-13 12:22 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2013-05-21 09:29 - 2013-01-13 12:20 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2013-05-21 09:29 - 2013-01-13 12:09 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll

2013-05-21 09:29 - 2013-01-13 12:08 - 01504768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2013-05-21 09:29 - 2013-01-13 12:08 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll

2013-05-21 09:29 - 2013-01-13 11:59 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll

2013-05-21 09:29 - 2013-01-13 11:58 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll

2013-05-21 09:29 - 2013-01-13 11:54 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2013-05-21 09:29 - 2013-01-13 11:53 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll

2013-05-21 09:29 - 2013-01-13 11:53 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll

2013-05-21 09:29 - 2013-01-13 11:51 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll

2013-05-21 09:29 - 2013-01-13 11:49 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll

2013-05-21 09:29 - 2013-01-13 11:48 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll

2013-05-21 09:29 - 2013-01-13 11:46 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll

2013-05-21 09:29 - 2013-01-13 11:43 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2013-05-21 09:29 - 2013-01-13 11:38 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll

2013-05-21 09:29 - 2013-01-13 11:38 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll

2013-05-21 09:29 - 2013-01-13 11:38 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll

2013-05-21 09:29 - 2013-01-13 11:37 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2013-05-21 09:29 - 2013-01-13 11:25 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll

2013-05-21 09:29 - 2013-01-13 11:24 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll

2013-05-21 09:29 - 2013-01-13 11:24 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll

2013-05-21 09:29 - 2013-01-13 11:20 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll

2013-05-21 09:29 - 2013-01-13 11:20 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll

2013-05-21 09:29 - 2013-01-13 11:15 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll

2013-05-21 09:29 - 2013-01-13 11:10 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll

2013-05-21 09:29 - 2013-01-13 11:02 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2013-05-21 09:29 - 2013-01-13 10:34 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll

2013-05-21 09:29 - 2013-01-13 10:32 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll

2013-05-21 09:29 - 2013-01-13 10:09 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll

2013-05-21 09:29 - 2013-01-13 09:26 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll

2013-05-21 09:29 - 2013-01-13 09:05 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll

2013-05-21 09:29 - 2013-01-03 22:11 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll

2013-05-21 09:29 - 2013-01-03 22:11 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2013-05-21 09:28 - 2012-12-07 05:20 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\Wpc.dll

2013-05-21 09:28 - 2012-12-07 05:15 - 02746368 ____A (Microsoft Corporation) C:\Windows\System32\gameux.dll

2013-05-21 09:28 - 2012-12-07 04:26 - 00308736 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll

2013-05-21 09:28 - 2012-12-07 04:20 - 02576384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll

2013-05-21 09:28 - 2012-12-07 03:20 - 00045568 ____A (Microsoft) C:\Windows\System32\oflc-nz.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00044544 ____A (Microsoft) C:\Windows\System32\pegibbfc.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00043520 ____A (Microsoft) C:\Windows\System32\csrr.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00030720 ____A (Microsoft) C:\Windows\System32\usk.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00023552 ____A (Microsoft) C:\Windows\System32\oflc.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00020480 ____A (Microsoft) C:\Windows\System32\pegi-pt.rs

2013-05-21 09:28 - 2012-12-07 03:20 - 00020480 ____A (Microsoft) C:\Windows\System32\pegi-fi.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00055296 ____A (Microsoft) C:\Windows\System32\cero.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00051712 ____A (Microsoft) C:\Windows\System32\esrb.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00046592 ____A (Microsoft) C:\Windows\System32\fpb.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00040960 ____A (Microsoft) C:\Windows\System32\cob-au.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00021504 ____A (Microsoft) C:\Windows\System32\grb.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00020480 ____A (Microsoft) C:\Windows\System32\pegi.rs

2013-05-21 09:28 - 2012-12-07 03:19 - 00015360 ____A (Microsoft) C:\Windows\System32\djctq.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00055296 ____A (Microsoft) C:\Windows\SysWOW64\cero.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00051712 ____A (Microsoft) C:\Windows\SysWOW64\esrb.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00046592 ____A (Microsoft) C:\Windows\SysWOW64\fpb.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00045568 ____A (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00044544 ____A (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00043520 ____A (Microsoft) C:\Windows\SysWOW64\csrr.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00040960 ____A (Microsoft) C:\Windows\SysWOW64\cob-au.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00030720 ____A (Microsoft) C:\Windows\SysWOW64\usk.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00023552 ____A (Microsoft) C:\Windows\SysWOW64\oflc.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00021504 ____A (Microsoft) C:\Windows\SysWOW64\grb.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00020480 ____A (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00020480 ____A (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00020480 ____A (Microsoft) C:\Windows\SysWOW64\pegi.rs

2013-05-21 09:28 - 2012-12-07 02:46 - 00015360 ____A (Microsoft) C:\Windows\SysWOW64\djctq.rs

2013-05-21 09:28 - 2012-11-29 21:45 - 00362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll

2013-05-21 09:28 - 2012-11-29 21:41 - 01161216 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll

2013-05-21 09:28 - 2012-11-29 21:41 - 00424448 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll

2013-05-21 09:28 - 2012-11-29 20:53 - 00274944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2013-05-21 09:28 - 2012-11-29 19:23 - 00338432 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe

2013-05-21 09:28 - 2012-11-29 15:17 - 00420064 ____A C:\Windows\SysWOW64\locale.nls

2013-05-21 09:28 - 2012-11-29 15:15 - 00420064 ____A C:\Windows\System32\locale.nls

2013-05-21 09:28 - 2012-10-09 10:17 - 00226816 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore6.dll

2013-05-21 09:28 - 2012-10-09 10:17 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc6.dll

2013-05-21 09:28 - 2012-10-09 09:40 - 00193536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll

2013-05-21 09:28 - 2012-10-09 09:40 - 00044032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll

2013-05-21 09:28 - 2012-04-07 04:31 - 03216384 ____A (Microsoft Corporation) C:\Windows\System32\msi.dll

2013-05-21 09:28 - 2012-04-07 03:26 - 02342400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2013-05-21 09:27 - 2013-03-18 21:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll

2013-05-21 09:27 - 2013-03-18 21:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll

2013-05-21 09:27 - 2013-01-23 22:01 - 00223752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys

2013-05-21 09:27 - 2012-11-29 21:45 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll

2013-05-21 09:27 - 2012-11-29 21:45 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll

2013-05-21 09:27 - 2012-11-29 21:43 - 00016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 21:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:53 - 01114112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 20:45 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 18:38 - 00006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 18:38 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 18:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2013-05-21 09:27 - 2012-11-29 18:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2013-05-21 09:27 - 2012-11-21 21:44 - 00800768 ____A (Microsoft Corporation) C:\Windows\System32\usp10.dll

2013-05-21 09:27 - 2012-11-21 20:45 - 00626688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2013-05-21 09:27 - 2012-10-03 09:44 - 00303104 ____A (Microsoft Corporation) C:\Windows\System32\nlasvc.dll

2013-05-21 09:27 - 2012-10-03 09:44 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\netcorehc.dll

2013-05-21 09:27 - 2012-10-03 09:44 - 00216576 ____A (Microsoft Corporation) C:\Windows\System32\ncsi.dll

2013-05-21 09:27 - 2012-10-03 09:44 - 00070656 ____A (Microsoft Corporation) C:\Windows\System32\nlaapi.dll

2013-05-21 09:27 - 2012-10-03 09:44 - 00018944 ____A (Microsoft Corporation) C:\Windows\System32\netevent.dll

2013-05-21 09:27 - 2012-10-03 09:42 - 00569344 ____A (Microsoft Corporation) C:\Windows\System32\iphlpsvc.dll

2013-05-21 09:27 - 2012-10-03 08:42 - 00175104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll

2013-05-21 09:27 - 2012-10-03 08:42 - 00156672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll

2013-05-21 09:27 - 2012-10-03 08:42 - 00018944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll

2013-05-21 09:27 - 2012-10-03 08:07 - 00045568 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys

2013-05-21 09:27 - 2012-08-24 10:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys

2013-05-21 09:27 - 2012-08-24 10:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys

2013-05-21 09:27 - 2012-08-24 10:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll

2013-05-21 09:27 - 2012-08-24 10:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll

2013-05-21 09:27 - 2012-08-24 08:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-05-21 09:27 - 2012-08-24 08:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-05-21 09:27 - 2012-08-24 08:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-05-21 09:27 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys

2013-05-21 09:27 - 2012-08-21 13:01 - 00245760 ____A (Microsoft Corporation) C:\Windows\System32\OxpsConverter.exe

2013-05-21 09:27 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys

2013-05-21 09:27 - 2012-05-05 00:36 - 00503808 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll

2013-05-21 09:27 - 2012-05-04 23:46 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2013-05-21 09:27 - 2012-05-04 03:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll

2013-05-21 09:27 - 2012-05-04 01:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2013-05-21 09:27 - 2012-04-30 21:40 - 00209920 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll

2013-05-21 09:27 - 2012-01-12 23:12 - 00052224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll

2013-05-21 09:27 - 2012-01-04 02:44 - 00509952 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll

2013-05-21 09:27 - 2012-01-04 00:58 - 00442880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll

2013-05-21 09:27 - 2011-12-29 22:26 - 00515584 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl

2013-05-21 09:27 - 2011-12-29 21:27 - 00478720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl

2013-05-21 09:27 - 2011-06-15 21:49 - 00199680 ____A (Microsoft Corporation) C:\Windows\System32\xmllite.dll

2013-05-21 09:27 - 2011-06-15 20:33 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll

2013-05-21 09:27 - 2011-05-03 21:25 - 02315776 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll

2013-05-21 09:27 - 2011-05-03 21:22 - 02223616 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll

2013-05-21 09:27 - 2011-05-03 21:22 - 00778752 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll

2013-05-21 09:27 - 2011-05-03 21:22 - 00491520 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll

2013-05-21 09:27 - 2011-05-03 21:22 - 00288256 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll

2013-05-21 09:27 - 2011-05-03 21:22 - 00075264 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll

2013-05-21 09:27 - 2011-05-03 21:19 - 00591872 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe

2013-05-21 09:27 - 2011-05-03 21:19 - 00249856 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe

2013-05-21 09:27 - 2011-05-03 21:19 - 00113664 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe

2013-05-21 09:27 - 2011-05-03 20:34 - 01549312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll

2013-05-21 09:27 - 2011-05-03 20:32 - 01401344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll

2013-05-21 09:27 - 2011-05-03 20:32 - 00666624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll

2013-05-21 09:27 - 2011-05-03 20:32 - 00337408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll

2013-05-21 09:27 - 2011-05-03 20:32 - 00197120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll

2013-05-21 09:27 - 2011-05-03 20:32 - 00059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll

2013-05-21 09:27 - 2011-05-03 20:28 - 00427520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe

2013-05-21 09:27 - 2011-05-03 20:28 - 00164352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe

2013-05-21 09:27 - 2011-05-03 20:28 - 00086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe

2013-05-21 09:27 - 2011-04-22 14:15 - 00027520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys

2013-05-21 09:27 - 2011-02-24 22:19 - 02871808 ____A (Microsoft Corporation) C:\Windows\explorer.exe

2013-05-21 09:27 - 2011-02-24 21:30 - 02616320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe

2013-05-21 09:27 - 2011-02-18 02:51 - 00031232 ____A (Microsoft Corporation) C:\Windows\System32\prevhost.exe

2013-05-21 09:27 - 2011-02-17 21:39 - 00031232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe

2013-05-21 09:23 - 2012-02-10 22:36 - 00559104 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe

2013-05-21 09:23 - 2012-02-10 22:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\splwow64.exe

2013-05-21 08:56 - 2010-02-23 00:16 - 00294912 ____A (Microsoft Corporation) C:\Windows\System32\browserchoice.exe

2013-05-21 08:54 - 2013-05-21 08:55 - 00003249 ____A C:\Windows\IE9_main.log

2013-05-21 08:51 - 2013-05-21 08:51 - 00000000 ___HD C:\Program Files (x86)\Creative Installation Information

2013-05-21 08:51 - 2013-05-03 07:15 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-05-21 08:51 - 2003-06-12 14:25 - 00007062 ____A C:\Windows\SysWOW64\audiopid.vxd

2013-05-21 08:50 - 2013-05-21 09:19 - 00000000 ____D C:\ProgramData\Creative

2013-05-21 08:50 - 2013-05-21 08:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-05-21 08:50 - 2013-05-21 08:51 - 00000000 ____D C:\Program Files\Creative

2013-05-21 08:50 - 2013-05-21 08:50 - 00466520 ____A (Creative Labs) C:\Windows\System32\wrap_oal.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00445016 ____A (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00123480 ____A (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\System32\OpenAL32.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00109144 ____A (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00000159 __RAH C:\Windows\ctfile.rfc

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Windows\SysWOW64\data

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Windows\System32\data

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Program Files (x86)\OpenAL

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Program Files (x86)\Creative

2013-05-21 08:50 - 2009-03-26 05:48 - 00190976 ____A C:\Windows\System32\APOMgr64.DLL

2013-05-21 08:50 - 2009-03-26 05:46 - 00148480 ____A C:\Windows\SysWOW64\APOMngr.DLL

2013-05-21 08:50 - 2009-02-06 09:53 - 00089088 ____A C:\Windows\System32\CmdRtr64.DLL

2013-05-21 08:50 - 2009-02-06 09:52 - 00073728 ____A C:\Windows\SysWOW64\CmdRtr.DLL

2013-05-21 08:50 - 2008-02-03 17:28 - 00107008 ____A (Creative Technology Ltd) C:\Windows\System32\cttele64.dll

2013-05-21 08:50 - 2008-02-03 17:27 - 00102400 ____A (Creative Technology Ltd) C:\Windows\SysWOW64\cttele32.dll

2013-05-21 08:48 - 2012-12-16 09:11 - 00046080 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll

2013-05-21 08:48 - 2012-12-16 06:45 - 00367616 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll

2013-05-21 08:48 - 2012-12-16 06:13 - 00295424 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2013-05-21 08:48 - 2012-12-16 06:13 - 00034304 ____A (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2013-05-21 08:48 - 2010-09-30 02:41 - 00100864 ____A (Microsoft Corporation) C:\Windows\System32\fontsub.dll

2013-05-21 08:48 - 2010-09-29 22:47 - 00070656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2013-05-21 08:47 - 2012-02-29 22:46 - 00023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys

2013-05-21 08:47 - 2012-02-29 22:33 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll

2013-05-21 08:47 - 2012-02-29 22:28 - 00005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll

2013-05-21 08:47 - 2012-02-29 21:33 - 00159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll

2013-05-21 08:47 - 2012-02-29 21:29 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll

2013-05-21 08:45 - 2011-11-16 22:35 - 00395776 ____A (Microsoft Corporation) C:\Windows\System32\webio.dll

2013-05-21 08:45 - 2011-11-16 21:35 - 00314880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll

2013-05-21 08:44 - 2013-02-26 22:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe

2013-05-21 08:44 - 2013-02-26 21:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll

2013-05-21 08:44 - 2013-02-26 21:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll

2013-05-21 08:44 - 2013-02-26 21:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll

2013-05-21 08:44 - 2013-02-26 21:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll

2013-05-21 08:44 - 2013-02-26 20:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2013-05-21 08:44 - 2013-02-26 20:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll

2013-05-21 08:44 - 2013-02-26 20:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-05-21 08:44 - 2012-06-01 21:41 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll

2013-05-21 08:44 - 2012-06-01 21:41 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll

2013-05-21 08:44 - 2012-06-01 21:41 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll

2013-05-21 08:44 - 2012-06-01 20:36 - 01159680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-05-21 08:44 - 2012-06-01 20:36 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2013-05-21 08:44 - 2012-06-01 20:36 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2013-05-21 08:43 - 2012-11-08 21:45 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll

2013-05-21 08:43 - 2012-11-08 20:42 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

2013-05-21 08:42 - 2013-03-18 22:04 - 05550424 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe

2013-05-21 08:42 - 2013-03-18 21:46 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll

2013-05-21 08:42 - 2013-03-18 21:04 - 03968856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2013-05-21 08:42 - 2013-03-18 21:04 - 03913560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2013-05-21 08:42 - 2013-03-18 20:47 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2013-05-21 08:42 - 2013-03-18 19:06 - 00112640 ____A (Microsoft Corporation) C:\Windows\System32\smss.exe

2013-05-21 08:42 - 2013-02-11 20:12 - 00019968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys

2013-05-21 08:42 - 2013-01-03 21:46 - 00215040 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll

2013-05-21 08:42 - 2013-01-03 20:51 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2013-05-21 08:42 - 2013-01-03 18:47 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2013-05-21 08:42 - 2013-01-03 18:47 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2013-05-21 08:42 - 2013-01-03 18:47 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2013-05-21 08:42 - 2013-01-03 18:47 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2013-05-21 08:42 - 2012-10-31 21:43 - 02002432 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll

2013-05-21 08:42 - 2012-10-31 21:43 - 01882624 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll

2013-05-21 08:42 - 2012-10-31 20:47 - 01389568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2013-05-21 08:42 - 2012-10-31 20:47 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2013-05-21 08:42 - 2012-07-04 14:16 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll

2013-05-21 08:42 - 2012-07-04 14:13 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll

2013-05-21 08:42 - 2012-07-04 14:13 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll

2013-05-21 08:42 - 2012-07-04 13:16 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll

2013-05-21 08:42 - 2012-07-04 13:14 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll

2013-05-21 08:42 - 2012-06-05 22:02 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll

2013-05-21 08:42 - 2012-06-05 21:03 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll

2013-05-21 08:42 - 2012-06-01 21:48 - 00095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys

2013-05-21 08:42 - 2012-05-13 21:26 - 00956928 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll

2013-05-21 08:42 - 2011-12-27 19:59 - 00498688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys

2013-05-21 08:42 - 2011-11-16 22:41 - 01731920 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll

2013-05-21 08:42 - 2011-11-16 22:35 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\sspicli.dll

2013-05-21 08:42 - 2011-11-16 22:35 - 00029184 ____A (Microsoft Corporation) C:\Windows\System32\sspisrv.dll

2013-05-21 08:42 - 2011-11-16 22:35 - 00028160 ____A (Microsoft Corporation) C:\Windows\System32\secur32.dll

2013-05-21 08:42 - 2011-11-16 22:33 - 00031232 ____A (Microsoft Corporation) C:\Windows\System32\lsass.exe

2013-05-21 08:42 - 2011-11-16 21:38 - 01292080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2013-05-21 08:42 - 2011-08-26 21:37 - 00861696 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll

2013-05-21 08:42 - 2011-08-26 21:37 - 00331776 ____A (Microsoft Corporation) C:\Windows\System32\oleacc.dll

2013-05-21 08:42 - 2011-08-26 20:26 - 00571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2013-05-21 08:42 - 2011-08-26 20:26 - 00233472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll

2013-05-21 08:42 - 2011-05-24 03:42 - 00404480 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll

2013-05-21 08:42 - 2011-05-24 02:40 - 00064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll

2013-05-21 08:42 - 2011-05-24 02:40 - 00044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll

2013-05-21 08:42 - 2011-05-24 02:39 - 00145920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll

2013-05-21 08:42 - 2011-05-24 02:37 - 00252928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe

2013-05-21 08:42 - 2011-05-02 21:29 - 00976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll

2013-05-21 08:42 - 2011-05-02 20:30 - 00741376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2013-05-21 08:42 - 2011-03-10 22:34 - 01395712 ____A (Microsoft Corporation) C:\Windows\System32\mfc42.dll

2013-05-21 08:42 - 2011-03-10 22:34 - 01359872 ____A (Microsoft Corporation) C:\Windows\System32\mfc42u.dll

2013-05-21 08:42 - 2011-03-10 21:33 - 01164288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll

2013-05-21 08:42 - 2011-03-10 21:33 - 01137664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll

2013-05-21 08:42 - 2011-03-02 22:24 - 00357888 ____A (Microsoft Corporation) C:\Windows\System32\dnsapi.dll

2013-05-21 08:42 - 2011-03-02 22:24 - 00183296 ____A (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll

2013-05-21 08:42 - 2011-03-02 22:21 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe

2013-05-21 08:42 - 2011-03-02 21:38 - 00270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll

2013-05-21 08:42 - 2011-03-02 21:36 - 00028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe

2013-05-21 08:42 - 2010-12-23 02:42 - 01118720 ____A (Microsoft Corporation) C:\Windows\System32\sbe.dll

2013-05-21 08:42 - 2010-12-23 02:42 - 00961024 ____A (Microsoft Corporation) C:\Windows\System32\CPFilters.dll

2013-05-21 08:42 - 2010-12-23 02:36 - 00259072 ____A (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax

2013-05-21 08:42 - 2010-12-22 21:54 - 00850944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll

2013-05-21 08:42 - 2010-12-22 21:54 - 00642048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll

2013-05-21 08:42 - 2010-12-22 21:50 - 00199680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax

2013-05-21 08:42 - 2010-06-25 19:55 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\msxml3r.dll

2013-05-21 08:42 - 2010-06-25 19:24 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2013-05-21 08:41 - 2013-04-12 06:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys

2013-05-21 08:41 - 2013-04-09 22:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys

2013-05-21 08:41 - 2013-04-09 22:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys

2013-05-21 08:41 - 2013-04-09 19:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys

2013-05-21 08:41 - 2013-01-02 22:00 - 01913192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2013-05-21 08:41 - 2013-01-02 22:00 - 00288088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS

2013-05-21 08:41 - 2012-11-22 19:13 - 00068608 ____A (Microsoft Corporation) C:\Windows\System32\taskhost.exe

2013-05-21 08:41 - 2012-11-19 21:48 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll

2013-05-21 08:41 - 2012-11-19 20:51 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-05-21 08:41 - 2012-11-08 21:45 - 00750592 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll

2013-05-21 08:41 - 2012-11-08 20:43 - 00492032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2013-05-21 08:41 - 2012-11-01 21:59 - 00478208 ____A (Microsoft Corporation) C:\Windows\System32\dpnet.dll

2013-05-21 08:41 - 2012-11-01 21:11 - 00376832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll

2013-05-21 08:41 - 2012-09-25 14:47 - 00078336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll

2013-05-21 08:41 - 2012-09-25 14:46 - 00095744 ____A (Microsoft Corporation) C:\Windows\System32\synceng.dll

2013-05-21 08:41 - 2012-08-24 10:05 - 00220160 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll

2013-05-21 08:41 - 2012-08-24 08:57 - 00172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2013-05-21 08:41 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys

2013-05-21 08:41 - 2012-08-10 16:56 - 00715776 ____A (Microsoft Corporation) C:\Windows\System32\kerberos.dll

2013-05-21 08:41 - 2012-08-10 15:56 - 00542208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2013-05-21 08:41 - 2012-04-27 19:55 - 00210944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys

2013-05-21 08:41 - 2012-04-25 21:41 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll

2013-05-21 08:41 - 2012-04-25 21:41 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll

2013-05-21 08:41 - 2012-04-25 21:34 - 00009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe

2013-05-21 08:41 - 2012-03-16 23:58 - 00075120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys

2013-05-21 08:41 - 2011-12-16 00:46 - 00634880 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll

2013-05-21 08:41 - 2011-12-15 23:52 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll

2013-05-21 08:41 - 2011-10-25 21:25 - 01572864 ____A (Microsoft Corporation) C:\Windows\System32\quartz.dll

2013-05-21 08:41 - 2011-10-25 20:32 - 01328128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll

2013-05-21 08:41 - 2011-10-14 22:31 - 00723456 ____A (Microsoft Corporation) C:\Windows\System32\EncDec.dll

2013-05-21 08:41 - 2011-10-14 21:38 - 00534528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll

2013-05-21 08:41 - 2011-08-16 21:26 - 00613888 ____A (Microsoft Corporation) C:\Windows\System32\psisdecd.dll

2013-05-21 08:41 - 2011-08-16 21:25 - 00108032 ____A (Microsoft Corporation) C:\Windows\System32\psisrndr.ax

2013-05-21 08:41 - 2011-08-16 20:24 - 00465408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll

2013-05-21 08:41 - 2011-08-16 20:19 - 00075776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax

2013-05-21 08:41 - 2011-07-08 18:46 - 00288768 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys

2013-05-21 08:41 - 2011-06-15 02:02 - 00212992 ____A (Microsoft Corporation) C:\Windows\System32\odbctrac.dll

2013-05-21 08:41 - 2011-06-15 02:02 - 00163840 ____A (Microsoft Corporation) C:\Windows\System32\odbccp32.dll

2013-05-21 08:41 - 2011-06-15 02:02 - 00106496 ____A (Microsoft Corporation) C:\Windows\System32\odbccu32.dll

2013-05-21 08:41 - 2011-06-15 02:02 - 00106496 ____A (Microsoft Corporation) C:\Windows\System32\odbccr32.dll

2013-05-21 08:41 - 2011-06-15 00:55 - 00319488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll

2013-05-21 08:41 - 2011-06-15 00:55 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll

2013-05-21 08:41 - 2011-06-15 00:55 - 00122880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll

2013-05-21 08:41 - 2011-06-15 00:55 - 00086016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll

2013-05-21 08:41 - 2011-06-15 00:55 - 00081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll

2013-05-21 08:41 - 2011-04-28 19:06 - 00467456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys

2013-05-21 08:41 - 2011-04-28 19:05 - 00410112 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys

2013-05-21 08:41 - 2011-04-28 19:05 - 00168448 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys

2013-05-21 08:41 - 2011-04-26 18:40 - 00158208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys

2013-05-21 08:41 - 2011-04-26 18:39 - 00128000 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys

2013-05-21 08:41 - 2011-04-08 22:58 - 00142336 ____A (Microsoft Corporation) C:\Windows\System32\poqexec.exe

2013-05-21 08:41 - 2011-04-08 21:56 - 00123904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2013-05-21 08:41 - 2011-02-22 20:55 - 00090624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys

2013-05-21 08:41 - 2011-02-12 03:34 - 00267776 ____A (Microsoft Corporation) C:\Windows\System32\FXSCOVER.exe

2013-05-21 08:41 - 2011-02-05 09:10 - 00642944 ____A (Microsoft Corporation) C:\Windows\System32\winload.efi

2013-05-21 08:41 - 2011-02-05 09:10 - 00020352 ____A (Microsoft Corporation) C:\Windows\System32\kdusb.dll

2013-05-21 08:41 - 2011-02-05 09:10 - 00019328 ____A (Microsoft Corporation) C:\Windows\System32\kd1394.dll

2013-05-21 08:41 - 2011-02-05 09:10 - 00017792 ____A (Microsoft Corporation) C:\Windows\System32\kdcom.dll

2013-05-21 08:41 - 2011-02-05 09:06 - 00605552 ____A (Microsoft Corporation) C:\Windows\System32\winload.exe

2013-05-21 08:41 - 2011-02-05 09:06 - 00566208 ____A (Microsoft Corporation) C:\Windows\System32\winresume.efi

2013-05-21 08:41 - 2011-02-05 09:06 - 00518672 ____A (Microsoft Corporation) C:\Windows\System32\winresume.exe

2013-05-21 08:41 - 2011-02-03 03:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll

2013-05-21 08:32 - 2011-11-19 06:58 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\packager.dll

2013-05-21 08:32 - 2011-11-19 06:01 - 00067072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2013-05-21 08:02 - 2013-05-21 18:44 - 00000000 ____D C:\Program Files\Google

2013-05-21 08:00 - 2013-05-23 06:10 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-05-21 08:00 - 2013-05-23 04:17 - 00000890 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-05-21 08:00 - 2013-05-21 18:44 - 00000000 ____D C:\Program Files (x86)\Google

2013-05-21 08:00 - 2013-05-21 16:17 - 00000000 ____D C:\Users\Rony\AppData\Local\Google

2013-05-21 08:00 - 2013-05-21 08:00 - 00001922 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk

2013-05-21 08:00 - 2013-05-21 08:00 - 00000000 ____A C:\Windows\SysWOW64\config.nt

2013-05-21 08:00 - 2013-05-09 00:59 - 01025808 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00378432 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00080816 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00072016 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00065336 ____A C:\Windows\System32\Drivers\aswRvrt.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00064288 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys

2013-05-21 08:00 - 2013-05-09 00:59 - 00033400 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys

2013-05-21 08:00 - 2013-05-09 00:58 - 00287840 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe

2013-05-21 07:59 - 2013-05-21 07:59 - 00000000 ____D C:\Program Files\AVAST Software

2013-05-21 07:59 - 2013-05-09 00:58 - 00041664 ____A (AVAST Software) C:\Windows\avastSS.scr

2013-05-21 07:56 - 2013-05-21 07:59 - 00000000 ____D C:\ProgramData\AVAST Software

2013-05-21 07:49 - 2013-05-21 11:38 - 00058016 ____A C:\Users\Rony\AppData\Local\GDIPFONTCACHEV1.DAT

2013-05-21 07:37 - 2013-05-23 04:16 - 00000000 ____D C:\ProgramData\NVIDIA

2013-05-21 07:37 - 2013-05-21 07:37 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini

2013-05-21 07:36 - 2013-05-21 07:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2013-05-21 07:36 - 2013-05-21 07:37 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2013-05-21 07:36 - 2013-05-21 07:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2013-05-21 07:36 - 2013-02-25 15:32 - 00061216 ____A (Khronos Group) C:\Windows\System32\OpenCL.dll

2013-05-21 07:36 - 2013-02-25 15:32 - 00053024 ____A (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2013-05-21 07:36 - 2013-01-18 07:00 - 06390048 ____A (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll

2013-05-21 07:36 - 2013-01-18 07:00 - 03460896 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll

2013-05-21 07:36 - 2013-01-18 07:00 - 02953448 ____A C:\Windows\System32\nvcoproc.bin

2013-05-21 07:36 - 2013-01-18 07:00 - 02558240 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll

2013-05-21 07:36 - 2013-01-18 07:00 - 00884512 ____A (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

2013-05-21 07:36 - 2013-01-18 07:00 - 00118560 ____A (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll

2013-05-21 07:36 - 2013-01-18 07:00 - 00063776 ____A (NVIDIA Corporation) C:\Windows\System32\nvshext.dll

2013-05-21 07:32 - 2012-02-16 22:38 - 01031680 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll

2013-05-21 07:32 - 2012-02-16 21:34 - 00826880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll

2013-05-21 07:32 - 2012-02-16 20:57 - 00023552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys

2013-05-21 07:28 - 2012-06-02 14:19 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll

2013-05-21 07:28 - 2012-06-02 14:19 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll

2013-05-21 07:28 - 2012-06-02 14:19 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe

2013-05-21 07:28 - 2012-06-02 14:19 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll

2013-05-21 07:28 - 2012-06-02 14:19 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll

2013-05-21 07:28 - 2012-06-02 14:15 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll

2013-05-21 07:28 - 2012-06-02 14:15 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll

2013-05-21 07:28 - 2012-06-02 06:19 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll

2013-05-21 07:28 - 2012-06-02 06:15 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe

2013-05-21 07:23 - 2013-05-21 16:01 - 00000000 ____D C:\users\Rony

2013-05-21 07:23 - 2013-05-21 07:23 - 00000020 ___SH C:\Users\Rony\ntuser.ini

2013-05-21 07:23 - 2013-05-21 07:23 - 00000000 __SHD C:\Recovery

2013-05-21 07:23 - 2013-05-21 07:23 - 00000000 ____D C:\Users\Rony\AppData\Local\VirtualStore

2013-05-21 06:41 - 2013-05-23 06:53 - 01442970 ____A C:\Windows\WindowsUpdate.log

2013-05-21 06:41 - 2013-05-21 06:41 - 00001355 ____A C:\Windows\TSSysprep.log

2013-05-21 06:40 - 2013-05-21 06:40 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

Link to post
Share on other sites

Post was too long.

DDS Cont.

==================== One Month Modified Files and Folders =======

2013-05-23 16:04 - 2013-05-23 16:04 - 00000000 ____D C:\FRST

2013-05-23 06:53 - 2013-05-21 16:01 - 00000000 ____D C:\Program Files (x86)\Steam

2013-05-23 06:53 - 2013-05-21 06:41 - 01442970 ____A C:\Windows\WindowsUpdate.log

2013-05-23 06:53 - 2009-07-13 21:13 - 00726316 ____A C:\Windows\System32\PerfStringBackup.INI

2013-05-23 06:53 - 2009-07-13 20:45 - 00019264 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-05-23 06:53 - 2009-07-13 20:45 - 00019264 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-05-23 06:50 - 2009-07-13 20:51 - 00029407 ____A C:\Windows\setupact.log

2013-05-23 06:49 - 2013-05-23 06:48 - 01878472 ____A (Farbar) C:\Users\Rony\Desktop\FRST64.exe

2013-05-23 06:10 - 2013-05-21 08:00 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-05-23 06:06 - 2013-05-21 16:29 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-05-23 04:25 - 2013-05-23 04:25 - 00000000 ____D C:\Users\Rony\AppData\Local\Microsoft Games

2013-05-23 04:17 - 2013-05-21 08:00 - 00000890 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-05-23 04:16 - 2013-05-21 07:37 - 00000000 ____D C:\ProgramData\NVIDIA

2013-05-23 04:16 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-05-22 18:15 - 2013-05-21 20:59 - 00000358 ____A C:\Users\Rony\Desktop\Files.txt

2013-05-21 18:44 - 2013-05-21 18:44 - 00001080 ____A C:\Windows\System32\settingsbkup.sfm

2013-05-21 18:44 - 2013-05-21 18:44 - 00001080 ____A C:\Windows\System32\settings.sfm

2013-05-21 18:44 - 2013-05-21 08:02 - 00000000 ____D C:\Program Files\Google

2013-05-21 18:44 - 2013-05-21 08:00 - 00000000 ____D C:\Program Files (x86)\Google

2013-05-21 18:44 - 2010-11-20 19:47 - 00013360 ____A C:\Windows\PFRO.log

2013-05-21 18:40 - 2013-05-21 18:40 - 00001109 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Malwarebytes

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-05-21 18:40 - 2013-05-21 18:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-05-21 18:39 - 2013-05-21 18:39 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Rony\Downloads\mbam-setup-1.75.0.1300.exe

2013-05-21 17:44 - 2013-05-21 17:44 - 00000983 ____A C:\Users\Public\Desktop\Easy FLV Player.lnk

2013-05-21 17:44 - 2013-05-21 17:44 - 00000000 ____D C:\Program Files (x86)\Easy FLV Player

2013-05-21 17:43 - 2013-05-21 17:43 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Mozilla

2013-05-21 17:29 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\Resources

2013-05-21 17:25 - 2013-05-21 17:25 - 00000000 ____D C:\Users\Rony\AppData\Roaming\vlc

2013-05-21 17:24 - 2013-05-21 17:24 - 00000000 ____D C:\Program Files (x86)\VideoLAN

2013-05-21 17:04 - 2013-05-21 16:59 - 00000000 ____D C:\Users\Rony\Desktop\work

2013-05-21 16:51 - 2013-05-21 16:50 - 00000000 ____D C:\Users\Rony\Desktop\kostas

2013-05-21 16:48 - 2013-05-21 16:48 - 00000000 ____D C:\Users\Rony\Desktop\Backtracks

2013-05-21 16:41 - 2013-05-21 16:41 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Leadertech

2013-05-21 16:29 - 2013-05-21 16:29 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-05-21 16:29 - 2013-05-21 16:29 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Windows\SysWOW64\Macromed

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Windows\System32\Macromed

2013-05-21 16:29 - 2013-05-21 16:29 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Macromedia

2013-05-21 16:29 - 2013-05-21 16:25 - 00000000 ____D C:\ProgramData\Adobe

2013-05-21 16:26 - 2013-05-21 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-05-21 16:17 - 2013-05-21 08:00 - 00000000 ____D C:\Users\Rony\AppData\Local\Google

2013-05-21 16:01 - 2013-05-21 16:01 - 00000917 ____A C:\Users\Public\Desktop\Steam.lnk

2013-05-21 16:01 - 2013-05-21 07:23 - 00000000 ____D C:\users\Rony

2013-05-21 16:00 - 2013-05-21 16:00 - 00000000 ____D C:\Users\Rony\Desktop\New backing tracks Kostas

2013-05-21 15:58 - 2013-05-21 15:58 - 01669632 ____A C:\Users\Rony\Downloads\SteamInstall.msi

2013-05-21 15:37 - 2013-05-21 15:37 - 00008192 _RASH C:\BOOTSECT.BAK

2013-05-21 15:37 - 2009-07-13 21:38 - 00025600 __ASH C:\Windows\System32\config\BCD-Template.LOG

2013-05-21 15:37 - 2009-07-13 21:32 - 00028672 ____A C:\Windows\System32\config\BCD-Template

2013-05-21 13:21 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache

2013-05-21 12:17 - 2013-05-21 12:17 - 05845720 ____A C:\Users\Rony\Downloads\Produce.wmv

2013-05-21 11:38 - 2013-05-21 11:38 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Line 6

2013-05-21 11:38 - 2013-05-21 07:49 - 00058016 ____A C:\Users\Rony\AppData\Local\GDIPFONTCACHEV1.DAT

2013-05-21 11:32 - 2013-05-21 11:32 - 00002109 ____A C:\Users\Rony\Desktop\POD HD300 Edit.lnk

2013-05-21 11:32 - 2013-05-21 11:32 - 00000000 ____D C:\Users\Rony\Documents\Line 6

2013-05-21 11:32 - 2013-05-21 11:31 - 00000000 ____D C:\ProgramData\Line 6

2013-05-21 11:32 - 2013-05-21 11:29 - 00000000 ____D C:\Program Files (x86)\Line6

2013-05-21 11:31 - 2013-05-21 11:30 - 00004608 ____A C:\Windows\DPINST.LOG

2013-05-21 11:30 - 2013-05-21 11:28 - 29175696 ____A C:\Users\Rony\Downloads\POD HD300 Edit v2.01.0 Installer.exe

2013-05-21 11:30 - 2013-05-21 11:28 - 09672864 ____A C:\Users\Rony\Downloads\Line 6 Drivers v4.2.5.4 Installer.exe

2013-05-21 11:29 - 2013-05-21 11:29 - 00002201 ____A C:\Users\Rony\Desktop\Line 6 Monkey.lnk

2013-05-21 11:28 - 2013-05-21 11:27 - 05049008 ____A C:\Users\Rony\Downloads\Line 6 Monkey v1.62 Installer.exe

2013-05-21 09:53 - 2013-05-21 09:53 - 00000000 ____D C:\Users\Rony\AppData\Roaming\Adobe

2013-05-21 09:49 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-05-21 09:48 - 2013-05-21 09:44 - 00006895 ____A C:\Windows\IE10_main.log

2013-05-21 09:46 - 2013-05-21 09:46 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-05-21 09:46 - 2013-05-21 09:46 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-05-21 09:46 - 2013-05-21 09:46 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl

2013-05-21 09:46 - 2013-05-21 09:46 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-05-21 09:46 - 2013-05-21 09:46 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-05-21 09:46 - 2013-05-21 09:46 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat

2013-05-21 09:46 - 2013-05-21 09:46 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec

2013-05-21 09:46 - 2013-05-21 09:46 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-05-21 09:46 - 2013-05-21 09:46 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx

2013-05-21 09:46 - 2013-05-21 09:46 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-05-21 09:46 - 2013-05-21 09:46 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-05-21 09:46 - 2013-05-21 09:46 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe

2013-05-21 09:46 - 2013-05-21 09:46 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-05-21 09:40 - 2009-07-13 20:45 - 00275712 ____A C:\Windows\System32\FNTCACHE.DAT

2013-05-21 09:37 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK

2013-05-21 09:37 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR

2013-05-21 09:37 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\zh-HK

2013-05-21 09:37 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\tr-TR

2013-05-21 09:33 - 2013-05-21 09:33 - 00000000 ____D C:\32fd94ad14a0037b895203

2013-05-21 09:19 - 2013-05-21 08:50 - 00000000 ____D C:\ProgramData\Creative

2013-05-21 09:15 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\System

2013-05-21 09:14 - 2011-04-12 00:28 - 00000000 ____D C:\Program Files\Windows Journal

2013-05-21 08:55 - 2013-05-21 08:54 - 00003249 ____A C:\Windows\IE9_main.log

2013-05-21 08:51 - 2013-05-21 08:51 - 00000000 ___HD C:\Program Files (x86)\Creative Installation Information

2013-05-21 08:51 - 2013-05-21 08:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-05-21 08:51 - 2013-05-21 08:50 - 00000000 ____D C:\Program Files\Creative

2013-05-21 08:50 - 2013-05-21 08:50 - 00466520 ____A (Creative Labs) C:\Windows\System32\wrap_oal.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00445016 ____A (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00123480 ____A (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\System32\OpenAL32.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00109144 ____A (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll

2013-05-21 08:50 - 2013-05-21 08:50 - 00000159 __RAH C:\Windows\ctfile.rfc

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Windows\SysWOW64\data

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Windows\System32\data

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Program Files (x86)\OpenAL

2013-05-21 08:50 - 2013-05-21 08:50 - 00000000 ____D C:\Program Files (x86)\Creative

2013-05-21 08:00 - 2013-05-21 08:00 - 00001922 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk

2013-05-21 08:00 - 2013-05-21 08:00 - 00000000 ____A C:\Windows\SysWOW64\config.nt

2013-05-21 07:59 - 2013-05-21 07:59 - 00000000 ____D C:\Program Files\AVAST Software

2013-05-21 07:59 - 2013-05-21 07:56 - 00000000 ____D C:\ProgramData\AVAST Software

2013-05-21 07:37 - 2013-05-21 07:37 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini

2013-05-21 07:37 - 2013-05-21 07:36 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2013-05-21 07:37 - 2013-05-21 07:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2013-05-21 07:36 - 2013-05-21 07:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2013-05-21 07:36 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\Help

2013-05-21 07:29 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Public\Libraries

2013-05-21 07:28 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\System32\restore

2013-05-21 07:23 - 2013-05-21 15:37 - 00000000 ____D C:\Windows\Panther

2013-05-21 07:23 - 2013-05-21 07:23 - 00000020 ___SH C:\Users\Rony\ntuser.ini

2013-05-21 07:23 - 2013-05-21 07:23 - 00000000 __SHD C:\Recovery

2013-05-21 07:23 - 2013-05-21 07:23 - 00000000 ____D C:\Users\Rony\AppData\Local\VirtualStore

2013-05-21 06:41 - 2013-05-21 06:41 - 00001355 ____A C:\Windows\TSSysprep.log

2013-05-21 06:41 - 2009-07-13 20:46 - 00002790 ____A C:\Windows\DtcInstall.log

2013-05-21 06:41 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\sysprep

2013-05-21 06:40 - 2013-05-21 06:40 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

2013-05-20 06:30 - 2013-05-23 06:51 - 00047040 ____A C:\Users\Rony\Desktop\bookmark.htm

2013-05-09 00:59 - 2013-05-21 08:00 - 01025808 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00378432 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00080816 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00072016 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00065336 ____A C:\Windows\System32\Drivers\aswRvrt.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00064288 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys

2013-05-09 00:59 - 2013-05-21 08:00 - 00033400 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys

2013-05-09 00:58 - 2013-05-21 08:00 - 00287840 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe

2013-05-09 00:58 - 2013-05-21 07:59 - 00041664 ____A (AVAST Software) C:\Windows\avastSS.scr

2013-05-03 07:15 - 2013-05-21 08:51 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-05-01 17:06 - 2010-11-20 19:27 - 00278800 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe

==================== Known DLLs (Whitelisted) ================

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2013-05-21 07:28:31

Restore point made on: 2013-05-21 07:35:23

Restore point made on: 2013-05-21 07:59:05

Restore point made on: 2013-05-21 08:45:53

Restore point made on: 2013-05-21 09:28:37

Restore point made on: 2013-05-21 09:37:05

Restore point made on: 2013-05-21 09:44:01

Restore point made on: 2013-05-21 09:57:27

Restore point made on: 2013-05-21 10:06:57

Restore point made on: 2013-05-21 11:31:11

Restore point made on: 2013-05-21 16:01:05

==================== Memory info ===========================

Percentage of memory in use: 11%

Total physical RAM: 6141.34 MB

Available physical RAM: 5441.86 MB

Total Pagefile: 6139.54 MB

Available Pagefile: 5434.42 MB

Total Virtual: 8192 MB

Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:298.09 GB) (Free:243.76 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)]

Drive d: (GSP1RMCHPXFRER_EN_DVD) (CDROM) (Total:3.09 GB) (Free:0 GB) UDF

Drive f: (RON) (Removable) (Total:1.86 GB) (Free:1.86 GB) FAT32 (Disk=1 Partition=1)

Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 269E3F08)

Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================

Disk: 1 (Size: 2 GB) (Disk ID: 0D1F7478)

Partition 1: (Active) - (Size=2 GB) - (Type=0B)

Last Boot: 2013-05-21 13:11

==================== End Of Log ============================

Link to post
Share on other sites

Oops sorry about that Maniac. Goes to show i was a little too eager :blush:

DDS:

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16576

Run by Rony at 18:54:48 on 2013-05-23

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.6141.4560 [GMT 1:00]

.

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Windows\SysWOW64\Ctxfihlp.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\SysWOW64\CTXFISPI.EXE

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files (x86)\Steam\Steam.exe

C:\Program Files (x86)\Common Files\Steam\SteamService.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\ctfmon.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://google.com/

mWinlogon: Userinit = userinit.exe,

BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [CTxfiHlp] CTXFIHLP.EXE

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

TCP: NameServer = 192.168.1.254

TCP: Interfaces\{099A0AEC-B401-4892-89E8-3138DFA3D03E} : DHCPNameServer = 192.168.1.254

SSODL: WebCheck - <orphaned>

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-SSODL: WebCheck - <orphaned>

.

============= SERVICES / DRIVERS ===============

.

R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-5-21 65336]

R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-5-21 189936]

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-5-21 1025808]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-5-21 378432]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-5-21 33400]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-5-21 80816]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-5-21 46808]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-1-18 383264]

R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\drivers\CT20XUT.sys [2010-5-5 202840]

R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-5-5 1417304]

R3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\drivers\CTHWIUT.sys [2010-5-5 94808]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-5-22 418376]

S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-5-22 701512]

S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-5-21 79360]

S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XUT.sys [2010-5-5 202840]

S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-5-5 1417304]

S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIUT.sys [2010-5-5 94808]

S3 L6PODHD3;Service - Line 6 POD HD300;C:\Windows\System32\drivers\L6PODHD364.sys [2012-3-26 772224]

S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-5-22 25928]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-21 19456]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-21 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-5-21 30208]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-5-21 1255736]

.

=============== Created Last 30 ================

.

2013-05-24 00:04:11 -------- d-----w- C:\FRST

2013-05-23 12:25:26 -------- d-----w- C:\Users\Rony\AppData\Local\Microsoft Games

2013-05-22 02:40:24 -------- d-----w- C:\Users\Rony\AppData\Roaming\Malwarebytes

2013-05-22 02:40:14 -------- d-----w- C:\ProgramData\Malwarebytes

2013-05-22 02:40:12 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-05-22 02:40:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-05-22 02:40:01 -------- d-----w- C:\Users\Rony\AppData\Local\Programs

2013-05-22 01:44:18 -------- d-----w- C:\Program Files (x86)\Easy FLV Player

2013-05-22 01:24:39 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-05-22 00:29:27 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-22 00:29:27 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-05-22 00:01:24 -------- d-----w- C:\Program Files (x86)\Common Files\Steam

2013-05-22 00:01:22 -------- d-----w- C:\Program Files (x86)\Steam

2013-05-21 23:37:37 -------- d-----w- C:\Windows\Panther

2013-05-21 23:37:23 -------- d-sh--w- C:\Boot

2013-05-21 19:38:45 -------- d-----w- C:\Users\Rony\AppData\Roaming\Line 6

2013-05-21 19:31:17 -------- d-----w- C:\ProgramData\Line 6

2013-05-21 19:29:43 -------- d-----w- C:\Program Files (x86)\Line6

2013-05-21 17:38:05 -------- d-----w- C:\Windows\SysWow64\Wat

2013-05-21 17:38:05 -------- d-----w- C:\Windows\System32\Wat

2013-05-21 17:35:12 9728 ----a-w- C:\Windows\System32\Wdfres.dll

2013-05-21 17:35:12 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys

2013-05-21 17:35:12 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys

2013-05-21 17:35:12 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui

2013-05-21 17:33:57 -------- d-----w- C:\32fd94ad14a0037b895203

2013-05-21 17:32:27 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys

2013-05-21 17:32:27 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll

2013-05-21 17:32:27 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys

2013-05-21 17:32:26 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll

2013-05-21 17:32:26 229888 ----a-w- C:\Windows\System32\WUDFHost.exe

2013-05-21 17:32:26 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll

2013-05-21 17:32:25 744448 ----a-w- C:\Windows\System32\WUDFx.dll

2013-05-21 17:28:20 46592 ----a-w- C:\Windows\SysWow64\fpb.rs

2013-05-21 17:27:59 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll

2013-05-21 17:23:45 67072 ----a-w- C:\Windows\splwow64.exe

2013-05-21 17:23:45 559104 ----a-w- C:\Windows\System32\spoolsv.exe

2013-05-21 16:56:25 294912 ----a-w- C:\Windows\System32\browserchoice.exe

2013-05-21 16:51:47 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll

2013-05-21 16:51:42 9460464 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FFC3229-814B-458E-9A38-3A9287A6E41C}\mpengine.dll

2013-05-21 16:51:20 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd

2013-05-21 16:51:01 -------- d--h--w- C:\Program Files (x86)\Creative Installation Information

2013-05-21 16:51:01 -------- d-----w- C:\Program Files (x86)\Common Files\Creative

2013-05-21 16:48:57 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll

2013-05-21 16:48:57 46080 ----a-w- C:\Windows\System32\atmlib.dll

2013-05-21 16:48:57 367616 ----a-w- C:\Windows\System32\atmfd.dll

2013-05-21 16:48:57 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

2013-05-21 16:48:57 100864 ----a-w- C:\Windows\System32\fontsub.dll

2013-05-21 16:48:56 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll

2013-05-21 16:47:48 81408 ----a-w- C:\Windows\System32\imagehlp.dll

2013-05-21 16:47:48 5120 ----a-w- C:\Windows\SysWow64\wmi.dll

2013-05-21 16:47:48 5120 ----a-w- C:\Windows\System32\wmi.dll

2013-05-21 16:47:48 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2013-05-21 16:47:48 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2013-05-21 16:45:00 395776 ----a-w- C:\Windows\System32\webio.dll

2013-05-21 16:45:00 314880 ----a-w- C:\Windows\SysWow64\webio.dll

2013-05-21 16:43:43 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2013-05-21 16:43:43 2048 ----a-w- C:\Windows\System32\tzres.dll

2013-05-21 16:41:57 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2013-05-21 16:32:48 77312 ----a-w- C:\Windows\System32\packager.dll

2013-05-21 16:32:48 67072 ----a-w- C:\Windows\SysWow64\packager.dll

2013-05-21 16:00:16 -------- d-----w- C:\Users\Rony\AppData\Local\Google

2013-05-21 16:00:13 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2013-05-21 16:00:12 1025808 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2013-05-21 16:00:11 189936 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2013-05-21 16:00:10 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2013-05-21 16:00:08 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2013-05-21 15:59:41 -------- d-sh--w- C:\Windows\Installer

2013-05-21 15:59:23 41664 ----a-w- C:\Windows\avastSS.scr

2013-05-21 15:59:09 -------- d-----w- C:\Program Files\AVAST Software

2013-05-21 15:56:17 -------- d-----w- C:\ProgramData\AVAST Software

2013-05-21 15:36:37 884512 ----a-w- C:\Windows\System32\nvvsvc.exe

2013-05-21 15:36:37 6390048 ----a-w- C:\Windows\System32\nvcpl.dll

2013-05-21 15:36:37 63776 ----a-w- C:\Windows\System32\nvshext.dll

2013-05-21 15:36:37 3460896 ----a-w- C:\Windows\System32\nvsvc64.dll

2013-05-21 15:36:37 2953448 ----a-w- C:\Windows\System32\nvcoproc.bin

2013-05-21 15:36:37 2558240 ----a-w- C:\Windows\System32\nvsvcr.dll

2013-05-21 15:36:37 118560 ----a-w- C:\Windows\System32\nvmctray.dll

2013-05-21 15:36:21 61216 ----a-w- C:\Windows\System32\OpenCL.dll

2013-05-21 15:36:21 53024 ----a-w- C:\Windows\SysWow64\OpenCL.dll

2013-05-21 15:36:04 -------- d-----w- C:\ProgramData\NVIDIA Corporation

2013-05-21 15:36:01 -------- d-----w- C:\Program Files\NVIDIA Corporation

2013-05-21 15:36:01 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation

2013-05-21 15:32:10 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll

2013-05-21 15:32:10 1031680 ----a-w- C:\Windows\System32\rdpcore.dll

2013-05-21 15:32:09 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2013-05-21 15:28:50 2622464 ----a-w- C:\Windows\System32\wucltux.dll

2013-05-21 15:28:44 99840 ----a-w- C:\Windows\System32\wudriver.dll

2013-05-21 15:28:37 36864 ----a-w- C:\Windows\System32\wuapp.exe

2013-05-21 15:28:37 186752 ----a-w- C:\Windows\System32\wuwebv.dll

.

==================== Find3M ====================

.

2013-05-21 16:50:22 466520 ----a-w- C:\Windows\System32\wrap_oal.dll

2013-05-21 16:50:22 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll

2013-05-21 16:50:22 123480 ----a-w- C:\Windows\System32\OpenAL32.dll

2013-05-21 16:50:22 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll

2013-05-02 01:06:08 278800 ------w- C:\Windows\System32\MpSigStub.exe

2013-04-13 05:49:23 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll

2013-04-13 05:49:19 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll

2013-04-13 05:49:19 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll

2013-04-13 05:49:19 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll

2013-04-13 04:45:16 474624 ----a-w- C:\Windows\apppatch\AcSpecfc.dll

2013-04-13 04:45:15 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll

2013-04-10 06:01:54 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-04-10 06:01:53 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-04-10 03:30:50 3153920 ----a-w- C:\Windows\System32\win32k.sys

2013-03-19 06:04:06 5550424 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-03-19 05:53:58 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll

2013-03-19 05:53:58 230400 ----a-w- C:\Windows\System32\wwansvc.dll

2013-03-19 05:46:56 43520 ----a-w- C:\Windows\System32\csrsrv.dll

2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2013-03-19 04:47:50 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll

2013-03-19 03:06:33 112640 ----a-w- C:\Windows\System32\smss.exe

2013-02-27 06:02:44 111448 ----a-w- C:\Windows\System32\consent.exe

2013-02-27 05:48:00 1930752 ----a-w- C:\Windows\System32\authui.dll

2013-02-27 05:47:10 70144 ----a-w- C:\Windows\System32\appinfo.dll

2013-02-27 04:49:24 1796096 ----a-w- C:\Windows\SysWow64\authui.dll

.

============= FINISH: 18:55:11.43 ===============

Link to post
Share on other sites

Cont.

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 21/05/2013 16:23:47

System Uptime: 23/05/2013 16:06:08 (2 hours ago)

.

Motherboard: Dell Inc. | | 0YU822

Processor: Intel® Core2 Quad CPU Q6600 @ 2.40GHz | Microprocessor | 2400/1066mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 298 GiB total, 243.515 GiB free.

D: is CDROM ()

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP3: 21/05/2013 16:28:25 - Windows Update

RP4: 21/05/2013 16:35:19 - Windows Update

RP5: 21/05/2013 16:58:59 - avast! Free Antivirus Setup

RP6: 21/05/2013 17:45:46 - Windows Update

RP7: 21/05/2013 18:28:28 - Windows Update

RP8: 21/05/2013 18:37:01 - Windows Update

RP9: 21/05/2013 18:43:51 - Windows Update

RP10: 21/05/2013 18:57:18 - Windows Update

RP11: 21/05/2013 19:06:52 - Windows Update

RP12: 21/05/2013 20:31:04 - Device Driver Package Install: Line 6 Sound, video and game controllers

RP13: 22/05/2013 01:01:00 - Installed Steam

.

==== Installed Programs ======================

.

Adobe Flash Player 11 ActiveX

Adobe Reader XI (11.0.03)

avast! Free Antivirus

Creative Audio Control Panel

Creative Software AutoUpdate

Creative Sound Blaster Properties x64 Edition

Easy FLV Player 2.0

Google Chrome

Google Update Helper

Line 6 Uninstaller

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft .NET Framework 4 Client Profile

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

NVIDIA 3D Vision Driver 311.06

NVIDIA Control Panel 311.06

NVIDIA Graphics Driver 311.06

NVIDIA Install Application

NVIDIA Stereoscopic 3D Driver

NVIDIA Update 1.11.3

NVIDIA Update Components

OpenAL

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

Steam

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

VideoLAN VLC media player 0.8.6d

.

==== Event Viewer Messages From Past Week ========

.

22/05/2013 01:04:18, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

22/05/2013 01:04:18, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

21/05/2013 18:57:56, Error: VDS Basic Provider [1] - Unexpected failure. Error code: 490@01010004

21/05/2013 18:20:56, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2847204).

21/05/2013 18:18:39, Error: Service Control Manager [7023] -

21/05/2013 18:16:01, Error: Service Control Manager [7038] - The avast! Antivirus service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

21/05/2013 18:16:01, Error: Service Control Manager [7000] - The avast! Antivirus service failed to start due to the following error: The service did not start due to a logon failure.

21/05/2013 18:15:57, Error: Service Control Manager [7034] - The Creative Audio Service service terminated unexpectedly. It has done this 1 time(s).

21/05/2013 18:15:56, Error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

21/05/2013 18:15:53, Error: Service Control Manager [7034] - The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).

21/05/2013 18:15:52, Error: Service Control Manager [7034] - The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly. It has done this 1 time(s).

.

==== End Of File ===========================

Link to post
Share on other sites

RogueKiller:

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Started in : Normal mode

User : Rony [Admin rights]

Mode : Scan -- Date : 05/23/2013 22:37:01

| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤

[HJ SMENU] HKCU\[...]\Advanced : Start_TrackProgs (0) -> FOUND

[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\Windows\system32\drivers\etc\hosts

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: NVIDIA MIRROR 298.09G +++++

--- User ---

[MBR] da9d8ed39d308ddbce0c1a28eca691fc

[bSP] cd704dbeedc5a28cf98fea816d3195ee : Windows 7/8 MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305243 Mo

User = LL1 ... OK!

Error reading LL2 MBR!

Finished : << RKreport[1]_S_05232013_02d2237.txt >>

RKreport[1]_S_05232013_02d2237.txt

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.