Timeserver.exe using 25% of CPU

HickTrick · November 16, 2013

Before I ran dds I had already killed the timeserver.exe process, so it won't show here as running.

Malwarebytes is currently scanning, and has detected 6 objects so far. It'll be some time before it's done.

I read up on timeserver.exe and found that it may be a bitcoin miner so I uploaded the file to https://www.virustotal.com/ and 12/46 results said it was that, or some other trojan/malware.

Let me know what you think I should do next, if I should let mwb finish scanning and let it try and remove whatever it finds, or if we should go down another path. Thanks.

DDS.txt

Attach.txt

.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Professional Boot Device: \Device\HarddiskVolume2Install Date: 4/6/2013 11:17:10 AMSystem Uptime: 11/15/2013 4:27:11 PM (16 hours ago).Motherboard: ASUSTeK COMPUTER INC. |  | P8Z77-VProcessor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz | LGA1155 | 3401/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 238 GiB total, 22.478 GiB free.D: is CDROM ()E: is RemovableF: is CDROM ()G: is CDROM (UDF)H: is FIXED (NTFS) - 1863 GiB total, 372.64 GiB free.M: is FIXED (NTFS) - 1862 GiB total, 417.01 GiB free..==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP226: 11/10/2013 4:16:44 PM - Windows UpdateRP227: 11/10/2013 8:54:35 PM - Device Driver Package Install: Code Laboratories, Inc. Imaging devicesRP228: 11/13/2013 5:36:36 PM - Windows UpdateRP229: 11/13/2013 5:52:41 PM - Windows Update.==== Installed Programs ======================.3DMark 117-Zip 9.20 (x64 edition)abgx360 v1.0.6Adobe Acrobat X Pro - English, Français, DeutschAdobe AIRAdobe Community HelpAdobe Creative Suite 5.5 Web PremiumAdobe Flash Player 11 PluginAdobe Reader XI (11.0.05)Adobe Widget BrowserAI Suite IIAkamai NetSession InterfaceAntichamberApple Application SupportApple Mobile Device SupportApple Software UpdateASIO4ALLAsmedia ASM104x USB 3.0 Host Controller DriverAsmedia ASM106x SATA Host Controller DriverASUS Boot SettingBattlefield 4™Battlelog Web PluginsBioniX WallpaperBonjourBorderlands 2Call of Duty GhostsCapsuleCitrix XenApp Web PluginCL-Eye DriverCL-Eye Platform SDKColemak (Caps Lock unchanged)Contour StorytellerCopyCounter-Strike: Global OffensiveCPUID CPU-Z 1.64.0CPUID HWMonitor Pro 1.16CrystalDiskMark 3.0.2fD3DX10DAEMON Tools LiteDead SpaceDeckadance 2Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionDirectWaveDishonoredDolphinDropboxDrumaxxDX10Dziobas Rar Player 0.009.52EdisonEpson Event ManagerEpson FAX UtilityEpson PC-FAX DriverEPSON ScanEPSON WorkForce 630 Series Printer UninstallEpsonNet Config V4ESN SonarEvernote v. 4.6.4Everything 1.2.1.371Fallout: New VegasFar Cry® 3 Blood DragonFastStone Image Viewer 4.8FiddlerFileZilla Client 3.7.0.2FL Studio 11FlowStone FL 3.0FrapsFull Combat Rebalance 2 version 1.0Futuremark SystemInfoGameFlyGeForce Experience NvStream Client ComponentsGIGABYTE VGA @BIOSGoogle ChromeGoogle DriveGoogle EarthGoogle Update HelperGRIDGroove MachineGuild Wars 2Half-Life 2HardcoreHeaven Benchmark version 4.0Hotline MiamiIL Download ManagerIL DrumSynth LiveIL Gross BeatIL HarmlessIL HarmorIL Juice PackIL MiniHostIL OgunIL Shared LibrariesIL SlicexIL VocodexImgBurnIntel(R) Control CenterIntel(R) Management Engine ComponentsIntel(R) Network Connections DriversIntel(R) Rapid Storage TechnologyIntel(R) USB 3.0 eXtensible Host Controller DriverIntel® Trusted Connect Service ClientIntel® Watchdog Timer Driver (Intel® WDT)iTunesJava 7 Update 17 (64-bit)Java 7 Update 45Java Auto UpdaterJava SE Development Kit 7 Update 17K-Lite Codec Pack 9.8.5 (64-bit)K-Lite Codec Pack 9.8.5 (Full)Left 4 Dead 2Malwarebytes Anti-Malware version 1.75.0.1300Mark of the NinjaMaximusMega Man RevolutionMicrosoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft Application Error ReportingMicrosoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)Microsoft Mathematics (64-bit)Microsoft Mouse and Keyboard CenterMicrosoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Groove MUI (English) 2010Microsoft Office InfoPath MUI (English) 2010Microsoft Office Office 64-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Professional Plus 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Word MUI (English) 2010Microsoft Security ClientMicrosoft Security EssentialsMicrosoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x64 9.0.21022Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610Microsoft Xbox 360 Accessories 1.2Microsoft_VC80_ATL_x86Microsoft_VC80_ATL_x86_x64Microsoft_VC80_CRT_x86Microsoft_VC80_CRT_x86_x64Microsoft_VC80_MFC_x86Microsoft_VC80_MFC_x86_x64Microsoft_VC80_MFCLOC_x86Microsoft_VC80_MFCLOC_x86_x64Microsoft_VC90_ATL_x86Microsoft_VC90_ATL_x86_x64Microsoft_VC90_CRT_x86Microsoft_VC90_CRT_x86_x64Microsoft_VC90_MFC_x86Microsoft_VC90_MFC_x86_x64Microsoft_VC90_MFCLOC_x86Microsoft_VC90_MFCLOC_x86_x64MiniTool Partition Wizard Home Edition 7.8Mirror's EdgeMorphineMovie MakerMozilla Firefox 23.0.1 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMSVCRT110MSVCRT110_amd64Mumble 1.2.3My Game Long NameNewsLeecher v6.3 Beta 1No-IP DUCNotepad++NovacomdNVIDIA 3D Vision Controller Driver 331.65NVIDIA 3D Vision Driver 331.65NVIDIA Control Panel 331.65NVIDIA GeForce Experience 1.7.1NVIDIA Graphics Driver 331.65NVIDIA HD Audio Driver 1.3.26.4NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA PhysXNVIDIA PhysX System Software 9.13.0725NVIDIA ShadowPlay 9.3.21NVIDIA Stereoscopic 3D DriverNVIDIA Update 9.3.21NVIDIA Update ComponentsNVIDIA Virtual Audio 1.2.9OpenALOpenOffice.org 3.4.1OriginOverwolfPaint.NET v3.5.10PDF Settings CS5Photo CommonPhoto GalleryPlex Media ServerPoiZonePortal 2Portal 2 - The Final HoursPunkBuster ServicesQ.U.B.E.Qualcomm Atheros WiFi Driver InstallationQuickPar 0.9QuickTimeRayman OriginsRecuvareFX Slayer Demo 2.6.0RiftCoasterSABnzbd 0.7.16SakuraSawerSecure Download ManagerSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)Security Update for Microsoft Excel 2010 (KB2826033) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553284) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687423) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2760781) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826023) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2826035) 32-Bit EditionSecurity Update for Microsoft Outlook 2010 (KB2837597) 32-Bit EditionService Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit EditionSHIELD StreamingSimSynthSkype™ 6.3Sleeping Dogs™Spec Ops: The LineSteamSuper Meat BoySytrusTeam Fortress 2TeamSpeak 3 ClientTeamViewer 8TechPowerUp GPU-ZTeraCopy 2.27The Elder Scrolls V: SkyrimThe SwapperThe Walking DeadTo the MoonToxic BiohazardTrackMania UnitedTrackMania² CanyonTrials Evolution Gold EditionTriDef 3D 5.10TypeFaster Typing TutorUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)Update for Microsoft .NET Framework 4 Extended (KB2468871)Update for Microsoft .NET Framework 4 Extended (KB2533523)Update for Microsoft .NET Framework 4 Extended (KB2600217)Update for Microsoft .NET Framework 4 Extended (KB2836939)Update for Microsoft .NET Framework 4 Extended (KB2836939v3)Update for Microsoft Access 2010 (KB2553446) 32-Bit EditionUpdate for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2589298) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2589352) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2589375) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2597087) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760598) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2794737) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2825640) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2826026) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2810072) 32-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2553145) 32-Bit EditionUpdate for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit EditionUpdate for Microsoft Word 2010 (KB2827323) 32-Bit EditionUplayVesselVLC media player 2.0.8WaspWinDirStat 1.1.2Windows Driver Package - Palm (WinUSB) Palm Devices  (10/09/2009 1.0.1)Windows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinMerge 2.14.0WizMouse v1.6.0.2.==== Event Viewer Messages From Past Week ========.11/16/2013 8:12:35 AM, Error: volsnap [35]  - The shadow copies of volume H: were aborted because the shadow copy storage failed to grow.11/15/2013 8:24:42 AM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk3\DR3.11/13/2013 6:51:08 PM, Error: volmgr [46]  - Crash dump initialization failed!11/13/2013 5:20:56 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk3\DR7.11/10/2013 4:39:48 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.11/10/2013 4:39:48 PM, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion..==== End Of File ===========================

HickTrick · November 16, 2013

hmmm I don't see an edit button.. anyway, the DDS.txt didn't show up, so here it is:

HickTrick · November 16, 2013

alright.. so I guess the code button doesn't like as much text as was in the dds.txt file.. apologies.

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16736 BrowserJavaVersion: 10.45.2

Run by Hicken at 8:52:44 on 2013-11-16

Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16331.10044 [GMT -8:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

c:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe

C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe

C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe

C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE

C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Program Files (x86)\No-IP\ducservice.exe

C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe

C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

c:\Program Files\Microsoft Security Client\NisSrv.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe

C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe

C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe

C:\Program Files (x86)\WizMouse\WizMouse.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe

C:\Program Files (x86)\Steam\Steam.exe

C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe

C:\Program Files (x86)\No-IP\DUC40.exe

C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe

C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe

C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe

C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe

C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe

C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe

C:\Users\Hicken\AppData\Roaming\Copy\CopyAgent.exe

C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe

C:\Users\Hicken\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files (x86)\Everything\Everything.exe

C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe

C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe

C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

H:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe

C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe

C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe

C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\S5WOW_App\x64\S5wow_2005.exe

C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe

C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe

C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe

C:\Windows\System32\WUDFHost.exe

C:\Program Files (x86)\NewsLeecher\newsLeecher.exe

C:\Windows\explorer.exe

C:\Program Files (x86)\Notepad++\notepad++.exe

F:\Setup.exe

C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe

C:\ProgramData\Microsoft\Windows\Time\WindowsTime.exe

C:\Windows\explorer.exe

C:\Windows\system32\taskmgr.exe

C:\Windows\explorer.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

c:\Program Files\Microsoft Security Client\MpCmdRun.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\vssvc.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uProxyOverride = <local>

mWinlogon: Userinit = userinit.exe,

BHO: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll

BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

TB: Contribute Toolbar: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll

TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

uRun: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silent

uRun: [Akamai NetSession Interface] "C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe"

uRun: [NoIPDUCv4] "C:\Program Files (x86)\No-IP\DUC40.exe" /minimize

uRun: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"

uRun: [Copy] "C:\Users\Hicken\AppData\Roaming\Copy\CopyAgent.exe"

uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

uRun: [ContourCameraFinder] "C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe"

mRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60

mRun: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe

mRun: [ASUS WiFi GO! FileTransfer Execute] C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe

mRun: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"

mRun: [FUFAXSTM] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun: [Adobe Acrobat Speed Launcher] "H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"

mRun: [Acrobat Assistant 8.0] "H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

StartupFolder: C:\Users\Hicken\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Hicken\AppData\Roaming\Dropbox\bin\Dropbox.exe

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:0

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableLUA = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: PromptOnSecureDesktop = dword:0

IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3

IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1

IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000

IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html

IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{3B3F084A-DFE1-40E2-AD3E-F6D8ED61C3F1} : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{CDA8275D-AF9A-4BBC-83DF-E4E059B5F7BB} : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{CDA8275D-AF9A-4BBC-83DF-E4E059B5F7BB}\E4544574541425 : DHCPNameServer = 192.168.1.1

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL

x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"

x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

x64-IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"

x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Hicken\AppData\Roaming\Mozilla\Firefox\Profiles\hbwo9qbv.default-1377974059808\

FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll

FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll

FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll

FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll

FF - plugin: C:\Windows\SysWOW64\npmproxy.dll

FF - plugin: H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

.

============= SERVICES / DRIVERS ===============

.

R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2012-1-6 49760]

R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-4-6 19264]

R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-9-27 248240]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-4 283064]

R1 ndisrd;WinpkFilter LightWeight Filter;C:\Windows\System32\drivers\ndisrd.sys [2013-4-6 32400]

R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-6-1 920736]

R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-6-1 951936]

R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2013-4-6 149120]

R2 AsusFanControlService;AsusFanControlService;C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe [2013-4-6 324608]

R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2013-4-20 166400]

R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2013-4-20 128512]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-4-6 13592]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-4-6 166720]

R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-1-20 134944]

R2 NoIPDUCService4;NO-IP DUC v4;C:\Program Files (x86)\No-IP\ducservice.exe [2013-1-24 11264]

R2 NovacomD;Palm Novacom;C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe [2011-6-24 72192]

R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-22 15125280]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]

R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-4-6 5087584]

R2 Time;Time;C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe [2013-11-16 10752]

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-4-6 365376]

R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536]

R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752]

R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2013-4-6 160768]

R3 ICCWDT;Intel® Watchdog Timer Driver (Intel® WDT);C:\Windows\System32\drivers\ICCWDT.sys [2012-5-17 26136]

R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-4-6 357184]

R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-4-6 789824]

R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]

R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2013-10-28 39200]

R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]

S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-4-6 137488]

S3 GPCIDrv;GPCIDrv;C:\Program Files (x86)\GIGABYTE\atBIOS\GPCIDrv64.sys [2010-2-4 14376]

S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2009-11-2 33736]

S3 OverwolfUpdaterService;Overwolf Updater Service;C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2013-11-3 18360]

S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2013-4-6 19032]

S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2013-4-6 9584]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-4-7 19456]

S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]

S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-11-13 56832]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-4-7 30208]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-4-7 1255736]

.

=============== File Associations ===============

.

ShellExec: dreamweaver.exe: Open="H:\Program Files\Adobe\Adobe Dreamweaver CS5.5\dreamweaver.exe", "%1"

.

=============== Created Last 30 ================

.

2013-11-16 16:38:42 10280728 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C71761D1-FF4B-4F6D-9E5F-3DCC49D3D8FF}\mpengine.dll

2013-11-16 10:05:11 10280728 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2013-11-13 01:55:24 -------- d-----w- C:\Users\Hicken\AppData\Local\NVIDIA Corporation

2013-11-11 04:54:34 -------- d-----w- C:\Program Files (x86)\Code Laboratories

2013-11-11 01:22:02 -------- d-----w- C:\Program Files\iPod

2013-11-11 01:22:01 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-11-11 01:22:01 -------- d-----w- C:\Program Files\iTunes

2013-11-11 01:22:01 -------- d-----w- C:\Program Files (x86)\iTunes

2013-11-11 00:43:21 -------- d-----w- C:\Users\Hicken\AppData\Local\Licenses

2013-11-11 00:42:27 -------- d-----w- C:\ProgramData\TriDef 3D

2013-11-11 00:41:54 -------- d-----w- C:\ProgramData\DDD

2013-11-11 00:41:32 -------- d-----w- C:\Program Files (x86)\TriDef 3D

2013-11-11 00:16:43 -------- d-----w- C:\Users\Hicken\AppData\Roaming\openvr

2013-11-09 20:02:23 -------- d-----w- C:\Users\Hicken\AppData\Local\Oculus

2013-11-09 18:58:56 77656 ----a-w- C:\Windows\System32\XAPOFX1_5.dll

2013-11-09 18:58:56 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll

2013-11-09 18:58:56 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll

2013-11-09 18:58:56 518488 ----a-w- C:\Windows\System32\XAudio2_7.dll

2013-11-09 18:58:55 276832 ----a-w- C:\Windows\System32\d3dx11_43.dll

2013-11-09 18:58:55 2526056 ----a-w- C:\Windows\System32\D3DCompiler_43.dll

2013-11-09 18:58:55 24920 ----a-w- C:\Windows\System32\X3DAudio1_7.dll

2013-11-09 18:58:55 248672 ----a-w- C:\Windows\SysWow64\d3dx11_43.dll

2013-11-09 18:58:55 2401112 ----a-w- C:\Windows\System32\D3DX9_43.dll

2013-11-09 18:58:55 22360 ----a-w- C:\Windows\SysWow64\X3DAudio1_7.dll

2013-11-09 18:58:54 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll

2013-11-09 18:54:08 -------- d-----w- C:\Oculus

2013-11-09 18:17:32 -------- d-----w- C:\Users\Hicken\AppData\Roaming\NVIDIA

2013-11-09 18:17:23 -------- d-----w- C:\Users\Hicken\AppData\Roaming\.minecraft

2013-11-07 15:56:05 965000 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96CA7051-53F5-47D6-A49A-7E9E87F91B7C}\gapaengine.dll

2013-11-05 04:50:19 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

2013-11-05 04:50:16 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite

2013-11-03 23:16:39 -------- d-----w- C:\Users\Hicken\AppData\Local\CrashRpt

2013-11-03 23:16:39 -------- d-----w- C:\Users\Hicken\AppData\Local\CONTOUR

2013-11-03 23:15:04 -------- d-----w- C:\Program Files (x86)\ContourStoryteller

2013-11-03 20:29:45 -------- d-----w- C:\Program Files (x86)\Overwolf

2013-11-03 20:29:45 -------- d-----w- C:\Program Files (x86)\Common Files\Overwolf

2013-11-03 20:29:36 -------- d-----w- C:\Users\Hicken\AppData\Roaming\TS3Client

2013-11-03 20:29:36 -------- d-----w- C:\Users\Hicken\AppData\Local\Overwolf

2013-11-03 20:29:33 -------- d-----w- C:\Program Files\TeamSpeak 3 Client

2013-11-02 16:25:23 -------- d-----w- C:\Program Files\Dolphin

2013-10-29 02:53:16 922912 ----a-w- C:\Windows\System32\nvvsvc.exe

2013-10-29 02:53:16 6669600 ----a-w- C:\Windows\System32\nvcpl.dll

2013-10-29 02:53:16 63776 ----a-w- C:\Windows\System32\nvshext.dll

2013-10-29 02:53:16 3489568 ----a-w- C:\Windows\System32\nvsvc64.dll

2013-10-29 02:53:16 3426956 ----a-w- C:\Windows\System32\nvcoproc.bin

2013-10-29 02:53:16 219424 ----a-w- C:\Windows\System32\nvmctray.dll

2013-10-29 02:53:08 61216 ----a-w- C:\Windows\System32\OpenCL.dll

2013-10-29 02:53:08 53024 ----a-w- C:\Windows\SysWow64\OpenCL.dll

2013-10-29 01:36:08 955168 ----a-w- C:\Windows\SysWow64\nvspcap.dll

2013-10-29 01:36:08 1064224 ----a-w- C:\Windows\System32\nvspcap64.dll

2013-10-29 01:35:53 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys

2013-10-29 01:35:53 28960 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll

2013-10-28 01:33:56 -------- d-----w- C:\Program Files (x86)\Origin Games

2013-10-24 01:57:20 -------- d-----w- C:\Users\Hicken\AppData\Local\Green Man Gaming

2013-10-24 01:57:15 -------- d-----w- C:\Program Files (x86)\Capsule

2013-10-23 10:02:36 589600 ----a-w- C:\Windows\SysWow64\nvStreaming.exe

2013-10-23 05:42:18 5632 ----a-w- C:\Windows\SysWow64\portio64.sys

2013-10-23 05:42:18 3584 ----a-w- C:\Windows\SysWow64\portio32.sys

2013-10-23 04:56:19 43520 ----a-w- C:\Windows\SysWow64\libusb0.dll

2013-10-23 02:19:14 -------- d-----w- C:\Program Files (x86)\abgx360

2013-10-22 20:29:20 -------- d-----w- C:\ProgramData\NVIDIA Corporation

2013-10-22 20:28:57 29984 ----a-w- C:\Windows\System32\nvaudcap64v.dll

2013-10-19 19:25:30 -------- d-----w- C:\Users\Hicken\AppData\Local\Skyrim

2013-10-17 19:26:58 461312 ----a-w- C:\Windows\System32\scavengeui.dll

.

==================== Find3M ====================

.

2013-11-14 02:52:19 1048576 ----a-w- C:\Windows\PE_Rom.dll

2013-11-03 19:30:22 214392 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe

2013-10-28 02:14:36 281872 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0

2013-10-28 02:14:27 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe

2013-10-12 08:45:20 2241536 ----a-w- C:\Windows\System32\wininet.dll

2013-10-12 08:43:37 3959808 ----a-w- C:\Windows\System32\jscript9.dll

2013-10-12 08:43:32 67072 ----a-w- C:\Windows\System32\iesetup.dll

2013-10-12 08:43:32 136704 ----a-w- C:\Windows\System32\iesysprep.dll

2013-10-12 07:03:50 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-10-12 07:02:33 2877952 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-10-12 07:02:29 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll

2013-10-12 07:02:29 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2013-10-12 06:35:26 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-10-12 06:08:58 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2013-10-12 05:44:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-10-12 05:15:39 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe

2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll

2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL

2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll

2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL

2013-10-09 02:27:13 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-10-09 02:27:13 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-10-08 14:50:37 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll

2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll

2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll

2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll

2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll

2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll

2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll

2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll

2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll

2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll

2013-10-02 02:22:20 56832 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys

2013-10-02 02:11:13 13824 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe

2013-10-02 02:08:53 12800 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll

2013-10-02 01:48:59 56832 ----a-w- C:\Windows\System32\MsRdpWebAccess.dll

2013-10-02 01:48:08 18944 ----a-w- C:\Windows\System32\wksprtPS.dll

2013-10-02 01:29:05 62976 ----a-w- C:\Windows\System32\tsgqec.dll

2013-10-02 01:10:56 44544 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll

2013-10-02 00:15:45 1057280 ----a-w- C:\Windows\System32\rdvidcrl.dll

2013-10-02 00:14:58 50176 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll

2013-10-02 00:14:20 17920 ----a-w- C:\Windows\SysWow64\wksprtPS.dll

2013-10-02 00:08:30 83968 ----a-w- C:\Windows\System32\TSWbPrxy.exe

2013-10-02 00:01:16 420864 ----a-w- C:\Windows\System32\wksprt.exe

2013-10-01 23:58:48 53248 ----a-w- C:\Windows\SysWow64\tsgqec.dll

2013-10-01 23:31:09 1147392 ----a-w- C:\Windows\System32\mstsc.exe

2013-10-01 23:08:10 855552 ----a-w- C:\Windows\SysWow64\rdvidcrl.dll

2013-10-01 22:34:12 1068544 ----a-w- C:\Windows\SysWow64\mstsc.exe

2013-10-01 20:57:46 6578176 ----a-w- C:\Windows\System32\mstscax.dll

2013-10-01 20:55:10 5698048 ----a-w- C:\Windows\SysWow64\mstscax.dll

2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-09-27 17:53:06 248240 ----a-w- C:\Windows\System32\drivers\MpFilter.sys

2013-09-27 17:53:06 134944 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys

2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-09-25 02:23:41 1030144 ----a-w- C:\Windows\System32\TSWorkspace.dll

2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll

2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll

2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll

2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll

2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll

2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll

2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll

2013-09-25 01:57:53 792576 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll

2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll

2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll

2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll

2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe

2013-09-17 01:56:32 682266 ----a-w- C:\Program Files (x86)\unins000.exe

2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll

2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll

2013-09-04 12:12:11 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-09-04 12:11:51 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-09-04 12:11:49 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-09-04 12:11:43 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-09-04 12:11:43 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2013-09-04 12:11:42 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-09-04 12:11:40 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll

2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll

2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll

2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll

2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll

2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll

2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll

2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe

2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys

.

============= FINISH: 8:52:50.68 ===============

MrCharlie · November 16, 2013

Please download Farbar Recovery Scan Tool and save it to a folder. (use correct version for your system.....Which system am I using?)

Please make sure you click download buttons that look like this, not "sponsored ad links":

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

MrC

HickTrick · November 16, 2013

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-11-2013

Ran by Hicken (administrator) on HICKEN-PC on 16-11-2013 09:33:40

Running from C:\Users\Hicken\Downloads\farbar

Windows 7 Professional Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 10

Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe

() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe

() C:\Program Files (x86)\WizMouse\WizMouse.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE

(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE

(Akamai Technologies, Inc.) C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe

() C:\Program Files (x86)\No-IP\DUC40.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe

(Akamai Technologies, Inc.) C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe

(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe

(Barracuda Networks, Inc.) C:\Users\Hicken\AppData\Roaming\Copy\CopyAgent.exe

() C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe

(Dropbox, Inc.) C:\Users\Hicken\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

() C:\Program Files (x86)\Everything\Everything.exe

(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe

(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe

(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

() C:\Program Files (x86)\No-IP\ducservice.exe

(Palm) C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

(Adobe Systems Inc.) H:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe

() C:\Windows\SysWOW64\PnkBstrA.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(Microsoft) C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

() C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe

(Microsoft) C:\ProgramData\Microsoft\Windows\Time\WindowsTime.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe

(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

() C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\S5WOW_App\x64\S5wow_2005.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

(Microsoft Corporation) C:\Windows\system32\taskmgr.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

() C:\ProgramData\Microsoft\Windows\Time\TimeServer.exe

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)

HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)

HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [444904 2012-09-20] (Adobe Systems Incorporated)

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKCU\...\Run: [steam] - C:\Program Files (x86)\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)

HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Hicken\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)

HKCU\...\Run: [NoIPDUCv4] - C:\Program Files (x86)\No-IP\DUC40.exe [270336 2013-01-24] ()

HKCU\...\Run: [Plex Media Server] - C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [3997832 2013-06-03] (Plex, Inc.)

HKCU\...\Run: [Copy] - C:\Users\Hicken\AppData\Roaming\Copy\CopyAgent.exe [15640720 2013-09-20] (Barracuda Networks, Inc.)

HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)

HKCU\...\Run: [ContourCameraFinder] - C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe [233112 2013-05-06] ()

MountPoints2: G - "G:\WD SmartWare.exe" autoplay=true

MountPoints2: {82e058e1-9eeb-11e2-8118-08606e67bd66} - "G:\WD SmartWare.exe" autoplay=true

MountPoints2: {c300be54-9f64-11e2-b48d-806e6f6e6963} - D:\.\Bin\ASSETUP.exe

HKLM-x32\...\Run: [uSB3MON] - C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)

HKLM-x32\...\Run: [iAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)

HKLM-x32\...\Run: [Everything] - C:\Program Files (x86)\Everything\Everything.exe [602624 2009-03-12] ()

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)

HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] - C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2012-08-20] (ASUSTek Computer Inc.)

HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe [1384608 2012-07-12] (ASUSTeK Computer Inc.)

HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)

HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [847872 2009-12-02] (SEIKO EPSON CORPORATION)

HKLM-x32\...\Run: [switchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [] - [x]

HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - H:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe [41336 2013-09-03] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [Acrobat Assistant 8.0] - H:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe [840568 2013-09-03] (Adobe Systems Inc.)

HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)

HKLM-x32\...\Run: [bCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)

HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)

Startup: C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\Hicken\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD38AE56BF532CE01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us

BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)

BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)

Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com/select/asusTek_sys_ctrl3.cab

DPF: HKLM-x32 {747B28E6-FBD9-4AE9-B298-E395F00C68BA} https://auth.excelleris.com/cabs/,DanaInfo=.a184C78F8H--+PNRepPE.cab

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:

========

FF ProfilePath: C:\Users\Hicken\AppData\Roaming\Mozilla\Firefox\Profiles\hbwo9qbv.default-1377974059808

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()

FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)

FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Acrobat - H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}

FF Extension: Adobe Contribute Toolbar - H:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}

FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn

FF Extension: Adobe Acrobat - Create PDF - H:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn

FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook

FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook

Chrome:

=======

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()

CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()

CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File

CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

CHR Plugin: (Java Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File

CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll No File

CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File

CHR Extension: (Entanglement) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\2.7.9_0

CHR Extension: (myPlex Queue Extension) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\agmheakklldmclgmkfnncddgkiibboil\1.2_0

CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0

CHR Extension: (Angry Birds) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0

CHR Extension: (Google Docs) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0

CHR Extension: (Google Drive) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0

CHR Extension: (YouTube) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0

CHR Extension: (Username: ) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfkohgkpafhkpdcnfadadcibfboapggi\1.5.6.18_0

CHR Extension: (AddThis - Share & Bookmark (new)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbogdmdefihhljhfeiklfiedefalcde\3.0.0_0

CHR Extension: (Image Downloader) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj\1.3_0

CHR Extension: (Google Search) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0

CHR Extension: (MightyText - Send/Receive SMS Text Messages) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkfhfaphfkopdgpbfkebjfcblcafcmpi\10.0_0

CHR Extension: (Google+) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm\1.2.0.418_0

CHR Extension: (Google Calendar) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0

CHR Extension: (Full Screen Weather) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0

CHR Extension: (AdBlock) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0

CHR Extension: (Cut the Rope) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\15_0

CHR Extension: (TweetDeck) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl\3.1.4_0

CHR Extension: (Crackle) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic\7.1.7_0

CHR Extension: (Cloud Reader) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd\1.4.0_0

CHR Extension: (GText from MightyText - SMS from Gmail) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\iffdacemhfpnchinokehhnppllonacfj\3.72_0

CHR Extension: (Downloads) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb\1_0

CHR Extension: (Shareaholic for Google Chrome\u2122) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmipnjdeifmobkhgogdnomkihhgojep\5.7.0_0

CHR Extension: (StumbleUpon) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcahibnffhnnjcedflmchmokndkjnhpg\5.7.11.1_0

CHR Extension: (Google Play) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0

CHR Extension: (Google Maps) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0

CHR Extension: (Google Mail Checker) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0

CHR Extension: (Google Play Books) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmimngoggfoobjdlefbcabngfnmieonb\1.1.8_0

CHR Extension: (Cloud9) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbdmccoknlfggadpfkmcpnamfnbkmkcp\1.9.9_0

CHR Extension: (Pocket (formerly Read It Later)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj\1.5.5_0

CHR Extension: (Chrome In-App Payments service) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0

CHR Extension: (Docs PDF/PowerPoint Viewer (by Google)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn\3.10_0

CHR Extension: (Auto Refresh Plus) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\1.8.9.21_0

CHR Extension: (Google Calendar Checker (by Google)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookhcbgokankfmjafalglpofmolfopek\1.4.0_0

CHR Extension: (Send from Gmail (by Google)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc\1.16_0

CHR Extension: (BackStop) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\pidcjgldchekcoolelhbjfbnccjkckfj\2.0.1_0

CHR Extension: (Evernote Web Clipper) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\5.9.19_0

CHR Extension: (Gmail) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

CHR Extension: (Google Similar Pages beta (by Google)) - C:\Users\Hicken\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjnfggphgdjblhfjaphkjhfpiiekbbej\0.5.5.1_0

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()

R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)

R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-16] (ASUSTeK Computer Inc.)

R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe [324608 2012-05-18] (ASUSTeK Computer Inc.)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)

R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)

R2 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [11264 2013-01-24] ()

R2 NovacomD; C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe [72192 2011-06-24] (Palm)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)

S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-10-23] (Overwolf Ltd)

R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-27] ()

R2 Time; C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe [10752 2013-11-16] (Microsoft)

==================== Drivers (Whitelisted) ====================

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2012-04-19] (ASUSTek Computer Inc.)

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2012-01-06] (Asmedia Technology)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-10-12] ()

R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-02] ()

R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-04] (Disc Soft Ltd)

S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\atBIOS\GPCIDrv64.sys [14376 2010-02-04] ()

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)

R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-27] (NVIDIA Corporation)

S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-03-07] ()

S3 pwdspio; C:\Windows\system32\pwdspio.sys [9584 2013-03-07] ()

R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)

S3 cpuz136; \??\C:\Users\Hicken\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]

U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [61088 2012-03-15] (SEIKO EPSON CORPORATION)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-11-16 09:33 - 2013-11-16 09:33 - 00000000 ____D C:\Users\Hicken\Downloads\farbar

2013-11-16 09:33 - 2013-11-16 09:33 - 00000000 ____D C:\FRST

2013-11-16 08:52 - 2013-11-16 08:52 - 00036901 _____ C:\Users\Hicken\Desktop\dds.txt

2013-11-16 08:52 - 2013-11-16 08:52 - 00012451 _____ C:\Users\Hicken\Desktop\attach.txt

2013-11-16 08:50 - 2013-11-16 08:50 - 00688992 ____R (Swearware) C:\Users\Hicken\Desktop\dds.com

2013-11-16 08:22 - 2013-11-16 08:22 - 00000758 _____ C:\Users\Hicken\Desktop\AC4BF.lnk

2013-11-13 17:55 - 2013-10-12 00:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-13 17:55 - 2013-10-12 00:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-13 17:55 - 2013-10-12 00:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-13 17:55 - 2013-10-12 00:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-13 17:55 - 2013-10-12 00:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-13 17:55 - 2013-10-11 23:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-13 17:55 - 2013-10-11 23:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-13 17:55 - 2013-10-11 23:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-13 17:55 - 2013-10-11 22:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-13 17:55 - 2013-10-11 22:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-13 17:55 - 2013-10-11 21:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-13 17:55 - 2013-10-11 21:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-13 17:55 - 2013-10-01 18:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys

2013-11-13 17:55 - 2013-10-01 18:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2013-11-13 17:55 - 2013-10-01 18:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-11-13 17:55 - 2013-10-01 17:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll

2013-11-13 17:55 - 2013-10-01 17:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll

2013-11-13 17:55 - 2013-10-01 17:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll

2013-11-13 17:55 - 2013-10-01 17:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll

2013-11-13 17:55 - 2013-10-01 16:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll

2013-11-13 17:55 - 2013-10-01 16:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll

2013-11-13 17:55 - 2013-10-01 16:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll

2013-11-13 17:55 - 2013-10-01 16:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe

2013-11-13 17:55 - 2013-10-01 16:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe

2013-11-13 17:55 - 2013-10-01 15:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll

2013-11-13 17:55 - 2013-10-01 15:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe

2013-11-13 17:55 - 2013-10-01 15:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll

2013-11-13 17:55 - 2013-10-01 14:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe

2013-11-13 17:55 - 2013-10-01 12:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2013-11-13 17:55 - 2013-10-01 12:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2013-11-13 17:52 - 2013-10-11 18:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2013-11-13 17:52 - 2013-10-11 18:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-13 17:52 - 2013-10-11 18:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 17:52 - 2013-10-11 18:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll

2013-11-13 17:52 - 2013-10-11 18:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-13 17:52 - 2013-10-05 12:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-13 17:52 - 2013-10-05 11:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-11-13 17:52 - 2013-10-03 18:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 17:52 - 2013-10-03 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2013-11-13 17:52 - 2013-10-03 18:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-13 17:52 - 2013-10-03 17:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2013-11-13 17:52 - 2013-10-03 17:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-13 17:52 - 2013-10-03 17:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2013-11-13 17:52 - 2013-10-02 18:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-13 17:52 - 2013-10-02 18:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-13 17:52 - 2013-09-27 17:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2013-11-13 17:52 - 2013-09-24 18:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2013-11-13 17:52 - 2013-09-24 18:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2013-11-13 17:52 - 2013-09-24 18:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll

2013-11-13 17:52 - 2013-09-24 18:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2013-11-13 17:52 - 2013-09-24 18:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2013-11-13 17:52 - 2013-09-24 18:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2013-11-13 17:52 - 2013-09-24 18:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2013-11-13 17:52 - 2013-09-24 18:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2013-11-13 17:52 - 2013-09-24 18:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2013-11-13 17:52 - 2013-09-24 17:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-11-13 17:52 - 2013-09-24 17:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll

2013-11-13 17:52 - 2013-09-24 17:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-11-13 17:52 - 2013-09-24 17:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-11-13 17:52 - 2013-09-24 17:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-11-13 17:52 - 2013-09-24 17:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2013-11-13 17:52 - 2013-07-04 04:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2013-11-12 18:06 - 2013-11-12 18:07 - 182013514 _____ C:\Users\Hicken\Downloads\cm-10.2-20131112-NIGHTLY-d2att.zip

2013-11-12 18:06 - 2013-11-12 18:07 - 175188152 _____ C:\Users\Hicken\Downloads\cm-10.1.3-d2att.zip

2013-11-12 18:06 - 2013-11-12 18:06 - 06633472 _____ C:\Users\Hicken\Downloads\recovery-clockwork-touch-6.0.4.3-d2att.img

2013-11-12 17:55 - 2013-11-12 17:55 - 00000000 ____D C:\Users\Hicken\AppData\Local\NVIDIA Corporation

2013-11-11 15:51 - 2013-09-29 08:10 - 01594037 _____ C:\Users\Hicken\Downloads\2013-08-21 23.16.38.jpeg

2013-11-10 21:13 - 2013-11-10 21:13 - 00001313 _____ C:\Users\Hicken\Desktop\CL-Eye Device Manager.lnk

2013-11-10 21:13 - 2013-11-10 21:13 - 00000928 _____ C:\Users\Hicken\Desktop\CL-Eye Multicam Code Samples.lnk

2013-11-10 21:13 - 2013-11-10 21:13 - 00000000 ____D C:\Users\Hicken\Documents\CL-Eye Platform SDK

2013-11-10 21:13 - 2013-11-10 21:13 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CL-Eye Platform SDK

2013-11-10 21:12 - 2013-11-10 21:12 - 12215952 _____ (Code Laboratories, Inc.) C:\Users\Hicken\Downloads\CL-Eye-Platform-SDK-1.6.4.0028.exe

2013-11-10 20:57 - 2013-11-10 20:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf

2013-11-10 20:54 - 2013-11-10 21:13 - 00000000 ____D C:\Program Files (x86)\Code Laboratories

2013-11-10 20:54 - 2013-11-10 20:54 - 00001246 _____ C:\Users\Public\Desktop\CL-Eye Test.lnk

2013-11-10 20:53 - 2013-11-10 20:53 - 05410368 _____ (Code Laboratories, Inc.) C:\Users\Hicken\Downloads\CL-Eye-Driver-5.3.0.0341.exe

2013-11-10 20:52 - 2013-11-10 20:52 - 05413552 _____ (Code Laboratories, Inc.) C:\Users\Hicken\Downloads\CL-Eye-Driver-5.1.1.0177.exe

2013-11-10 17:22 - 2013-11-10 17:22 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk

2013-11-10 17:22 - 2013-11-10 17:22 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-11-10 17:22 - 2013-11-10 17:22 - 00000000 ____D C:\Program Files\iTunes

2013-11-10 17:22 - 2013-11-10 17:22 - 00000000 ____D C:\Program Files\iPod

2013-11-10 17:22 - 2013-11-10 17:22 - 00000000 ____D C:\Program Files (x86)\iTunes

2013-11-10 16:43 - 2013-11-10 16:43 - 00000000 ____D C:\Users\Hicken\AppData\Local\Licenses

2013-11-10 16:42 - 2013-11-10 16:50 - 00002413 _____ C:\Users\Public\Desktop\TriDef 3D.lnk

2013-11-10 16:42 - 2013-11-10 16:50 - 00002306 _____ C:\Users\Public\Desktop\Yabazam 3D Movies.lnk

2013-11-10 16:42 - 2013-11-10 16:42 - 00000000 ____D C:\ProgramData\TriDef 3D

2013-11-10 16:41 - 2013-11-10 16:50 - 00000000 ____D C:\Program Files (x86)\TriDef 3D

2013-11-10 16:41 - 2013-11-10 16:41 - 00000000 ____D C:\ProgramData\DDD

2013-11-10 16:36 - 2013-11-10 16:40 - 00000021 _____ C:\D3D9Proxy.log

2013-11-10 16:33 - 2013-11-10 16:33 - 00386096 _____ C:\Users\Hicken\Downloads\Perception_D3D_proxy.zip

2013-11-10 16:31 - 2013-11-10 16:31 - 00488088 _____ C:\Users\Hicken\Downloads\Perception_1.1.0.zip

2013-11-10 16:16 - 2013-11-10 16:16 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\openvr

2013-11-10 11:10 - 2013-11-10 11:11 - 363880938 _____ (Epic Games, Inc.) C:\Users\Hicken\Downloads\Undercurrent α0.5.exe

2013-11-09 12:02 - 2013-11-09 12:02 - 00000000 ____D C:\Users\Hicken\AppData\Local\Oculus

2013-11-09 11:50 - 2013-11-09 11:53 - 232309261 _____ C:\Users\Hicken\Downloads\TitansOfSpaceV1.37-Windows.zip

2013-11-09 11:49 - 2013-11-09 11:49 - 00000219 _____ C:\Users\Hicken\Desktop\Half-Life 2.url

2013-11-09 11:35 - 2013-11-09 11:35 - 38045476 _____ C:\Users\Hicken\Downloads\AloneInTheRift_1.00_win.zip

2013-11-09 11:24 - 2013-11-09 11:24 - 95437474 _____ C:\Users\Hicken\Downloads\gallery_test_v01_02b.zip

2013-11-09 10:58 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll

2013-11-09 10:58 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll

2013-11-09 10:58 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll

2013-11-09 10:58 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll

2013-11-09 10:58 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll

2013-11-09 10:58 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll

2013-11-09 10:58 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll

2013-11-09 10:58 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll

2013-11-09 10:58 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll

2013-11-09 10:58 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll

2013-11-09 10:58 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll

2013-11-09 10:56 - 2013-11-09 10:57 - 450951785 _____ (Epic Games, Inc.) C:\Users\Hicken\Downloads\UDKInstall-RiftCoaster.exe

2013-11-09 10:54 - 2013-11-10 16:34 - 00000000 ____D C:\Oculus

2013-11-09 10:22 - 2013-11-09 10:35 - 1629631416 _____ (Epic Games, Inc.) C:\Users\Hicken\Downloads\Oculus-UDKInstall-2013-09.exe

2013-11-09 10:22 - 2013-11-09 10:23 - 98098605 _____ C:\Users\Hicken\Downloads\ovr_unity_0.2.5_demo_win.zip

2013-11-09 10:22 - 2013-11-09 10:23 - 84289200 _____ C:\Users\Hicken\Downloads\ovr_sdk_win_0.2.5.zip

2013-11-09 10:19 - 2013-11-09 10:19 - 31965788 _____ C:\Users\Hicken\Downloads\OceanRift_v1.01.zip

2013-11-09 10:19 - 2013-11-09 10:19 - 120956925 _____ C:\Users\Hicken\Downloads\BlueMarble_Windows_102.rar

2013-11-09 10:17 - 2013-11-16 08:13 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\NVIDIA

2013-11-09 10:17 - 2013-11-09 10:18 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\.minecraft

2013-11-09 10:11 - 2013-11-09 10:12 - 72388421 _____ C:\Users\Hicken\Downloads\TriDef-3D-5.10.zip

2013-11-07 11:51 - 2013-11-07 11:51 - 00000235 _____ C:\Users\Hicken\Desktop\Excelleris Launchpad 3.0 - Login.url

2013-11-07 11:48 - 2013-11-07 11:48 - 00004300 _____ C:\Users\Hicken\Downloads\Cook Street Midwives 1 051210 (1).pfx

2013-11-07 11:21 - 2013-11-07 11:21 - 22576346 _____ C:\Users\Hicken\Downloads\new web office pictures.zip

2013-11-07 11:07 - 2013-11-07 11:07 - 00004300 _____ C:\Users\Hicken\Downloads\Cook Street Midwives 1 051210.pfx

2013-11-05 08:25 - 2013-11-05 17:55 - 00000000 ____D C:\Users\Hicken\Desktop\Contour

2013-11-04 21:27 - 2013-11-04 21:24 - 67381780 _____ C:\Users\Hicken\Downloads\FILE0008.MP4

2013-11-04 21:18 - 2013-11-04 21:18 - 00000531 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk

2013-11-04 20:50 - 2013-11-04 20:50 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys

2013-11-04 20:50 - 2013-11-04 20:50 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk

2013-11-04 20:50 - 2013-11-04 20:50 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite

2013-11-03 15:16 - 2013-11-03 15:18 - 00000000 ____D C:\Users\Hicken\AppData\Local\CrashRpt

2013-11-03 15:16 - 2013-11-03 15:16 - 00000000 ____D C:\Users\Hicken\AppData\Local\CONTOUR

2013-11-03 15:15 - 2013-11-03 15:15 - 00391310 _____ C:\Users\Hicken\Downloads\rimd500558.zip

2013-11-03 15:15 - 2013-11-03 15:15 - 00001195 _____ C:\Users\Public\Desktop\Contour Storyteller.lnk

2013-11-03 15:15 - 2013-11-03 15:15 - 00000000 ____D C:\Program Files (x86)\ContourStoryteller

2013-11-03 15:08 - 2013-11-03 15:08 - 09840640 _____ C:\Users\Hicken\Downloads\ContourRoam2 (1).bin

2013-11-03 15:06 - 2013-11-03 15:06 - 44001496 _____ (Contour) C:\Users\Hicken\Downloads\Contour-Storyteller-Installer.exe

2013-11-03 15:06 - 2013-11-03 15:06 - 09840640 _____ C:\Users\Hicken\Downloads\ContourRoam2.bin

2013-11-03 15:06 - 2013-11-03 15:06 - 09832448 _____ C:\Users\Hicken\Downloads\ContourRoam _orig.bin

2013-11-03 12:29 - 2013-11-03 13:00 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\TS3Client

2013-11-03 12:29 - 2013-11-03 12:49 - 00000000 ____D C:\Users\Hicken\AppData\Local\Overwolf

2013-11-03 12:29 - 2013-11-03 12:29 - 00001971 _____ C:\Users\Public\Desktop\Overwolf.lnk

2013-11-03 12:29 - 2013-11-03 12:29 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk

2013-11-03 12:29 - 2013-11-03 12:29 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf

2013-11-03 12:29 - 2013-11-03 12:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client

2013-11-03 12:29 - 2013-11-03 12:29 - 00000000 ____D C:\Program Files (x86)\Overwolf

2013-11-03 12:28 - 2013-11-03 12:28 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\Hicken\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe

2013-11-02 08:41 - 2013-11-02 08:41 - 03590800 _____ ( ) C:\Users\Hicken\Downloads\nl_setup_beta (1).exe

2013-11-02 08:34 - 2013-11-02 09:19 - 00000000 ____D C:\Users\Hicken\Documents\Dolphin Emulator

2013-11-02 08:25 - 2013-11-02 08:25 - 00000796 _____ C:\Users\Public\Desktop\Dolphin.lnk

2013-11-02 08:25 - 2013-11-02 08:25 - 00000000 ____D C:\Program Files\Dolphin

2013-11-02 08:21 - 2013-11-02 08:21 - 10147624 _____ C:\Users\Hicken\Downloads\dolphin-x64-4.0.1.exe

2013-10-31 14:18 - 2013-10-31 14:18 - 00029871 _____ C:\Users\Hicken\Desktop\CHP_7017.f.jpeg

2013-10-29 09:28 - 2013-10-29 09:28 - 00009970 _____ C:\Users\Hicken\Documents\Birthways Client List.xlsx

2013-10-28 18:53 - 2013-10-23 02:30 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2013-10-28 18:53 - 2013-10-23 02:30 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2013-10-28 18:53 - 2013-10-23 00:20 - 06669600 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2013-10-28 18:53 - 2013-10-23 00:20 - 03489568 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2013-10-28 18:53 - 2013-10-23 00:20 - 03426956 _____ C:\Windows\system32\nvcoproc.bin

2013-10-28 18:53 - 2013-10-23 00:20 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2013-10-28 18:53 - 2013-10-23 00:20 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2013-10-28 18:53 - 2013-10-23 00:20 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 30344480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 22933792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 18286416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 18199872 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 15855568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 15212336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 12572960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2013-10-28 18:52 - 2013-10-23 02:30 - 11426568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 11374520 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 09524088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 09480328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 03131680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 03124512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 03067560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 02946848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 02747168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 02695200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 01435504 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 01241376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00696096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00655136 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00560416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2013-10-28 18:52 - 2013-10-23 02:30 - 00023287 _____ C:\Windows\system32\nvinfo.pb

2013-10-28 18:52 - 2013-06-16 04:38 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2013-10-28 18:52 - 2013-06-16 04:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2013-10-28 18:52 - 2013-01-29 00:35 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll

2013-10-28 17:36 - 2013-11-08 12:47 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2013-10-28 17:36 - 2013-11-08 12:47 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2013-10-28 17:35 - 2013-09-27 15:01 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2013-10-28 17:35 - 2013-09-27 15:01 - 00028960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2013-10-27 18:14 - 2013-10-27 18:14 - 00001194 _____ C:\Users\Public\Desktop\Battlefield 4.lnk

2013-10-27 18:14 - 2013-10-27 18:14 - 00001170 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk

2013-10-27 17:33 - 2013-10-27 17:42 - 00000000 ____D C:\Program Files (x86)\Origin Games

2013-10-24 09:16 - 2013-10-24 09:16 - 00009148 _____ C:\Users\Hicken\Documents\CookStNumbers.xlsx

2013-10-24 08:16 - 2013-10-24 09:14 - 00009609 _____ C:\Users\Hicken\Documents\Wheeler Christmas Draw Spreadsheet.xlsx

2013-10-24 08:16 - 2013-10-24 08:16 - 00009529 _____ C:\Users\Hicken\Downloads\Wheeler Christmas Draw Spreadsheet.xlsx

2013-10-23 17:57 - 2013-10-23 17:57 - 13092824 _____ (Green Man Gaming Limited) C:\Users\Hicken\Downloads\capsulesetup-v2.33.exe

2013-10-23 17:57 - 2013-10-23 17:57 - 00001181 _____ C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Capsule.lnk

2013-10-23 17:57 - 2013-10-23 17:57 - 00001081 _____ C:\Users\Hicken\Desktop\Capsule.lnk

2013-10-23 17:57 - 2013-10-23 17:57 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Capsule Utilities

2013-10-23 17:57 - 2013-10-23 17:57 - 00000000 ____D C:\Users\Hicken\AppData\Local\Green Man Gaming

2013-10-23 17:57 - 2013-10-23 17:57 - 00000000 ____D C:\Program Files (x86)\Capsule

2013-10-23 02:02 - 2013-10-23 02:02 - 00589600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

2013-10-22 21:42 - 2013-10-22 21:38 - 00005632 _____ C:\Windows\SysWOW64\portio64.sys

2013-10-22 21:42 - 2013-10-22 21:38 - 00003584 _____ C:\Windows\SysWOW64\portio32.sys

2013-10-22 21:30 - 2013-10-22 21:30 - 08883889 _____ C:\Users\Hicken\Downloads\JungleFlasher.0.1.96.Beta(323) (1).rar

2013-10-22 21:12 - 2013-10-22 21:12 - 08796291 _____ C:\Users\Hicken\Downloads\JungleFlasher.0.1.95.Beta(321).rar

2013-10-22 20:56 - 2007-03-20 10:33 - 00043520 _____ (http://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll

2013-10-22 20:45 - 2013-10-22 20:45 - 00000543 _____ C:\Windows\NGO.cer

2013-10-22 20:42 - 2013-10-22 20:42 - 00722414 _____ C:\Users\Hicken\Downloads\dseo13b.exe

2013-10-22 19:45 - 2013-10-22 19:45 - 00000681 _____ C:\Users\Hicken\Downloads\geR2627141.kml

2013-10-22 18:19 - 2013-10-22 18:19 - 00000000 ____D C:\Program Files (x86)\abgx360

2013-10-22 18:14 - 2013-10-22 18:15 - 09053331 _____ C:\Users\Hicken\Downloads\abgx360_v1.0.6_setup.exe

2013-10-22 18:10 - 2013-10-22 18:11 - 113152227 _____ C:\Users\Hicken\Downloads\SystemUpdate_16537_USB.zip

2013-10-22 16:28 - 2013-10-22 16:28 - 00000681 _____ C:\Users\Hicken\Downloads\geR2627106.kml

2013-10-22 15:53 - 2013-10-22 15:53 - 08883889 _____ C:\Users\Hicken\Downloads\JungleFlasher.0.1.96.Beta(323).rar

2013-10-22 15:52 - 2013-10-22 15:52 - 00171551 _____ C:\Users\Hicken\Downloads\ltplus-hitachi7879-3.0.rar

2013-10-22 15:12 - 2013-10-22 16:01 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\ImgBurn

2013-10-22 14:51 - 2012-12-19 22:34 - 00000000 ____D C:\Users\Hicken\Downloads\BurnerMAX v0.15

2013-10-22 14:48 - 2013-10-22 14:48 - 00370256 _____ (Afterdawn.com) C:\Users\Hicken\Downloads\BurnerMAX_v015rar.exe

2013-10-22 14:40 - 2013-10-22 14:40 - 00001865 _____ C:\Users\Public\Desktop\ImgBurn.lnk

2013-10-22 12:40 - 2013-10-22 12:40 - 00001347 _____ C:\Users\Public\Desktop\GeForce Experience.lnk

2013-10-22 12:29 - 2013-10-28 18:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2013-10-22 12:29 - 2013-10-22 12:29 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini

2013-10-22 12:29 - 2013-04-30 17:07 - 00000000 ____D C:\Users\UpdatusUser\AppData\LocalGoogle

2013-10-22 12:29 - 2013-04-30 17:07 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Google

2013-10-22 12:29 - 2013-04-28 08:30 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Macromedia

2013-10-22 12:29 - 2009-07-13 20:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-10-22 12:29 - 2009-07-13 20:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2013-10-22 12:28 - 2013-09-27 15:01 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll

2013-10-22 10:25 - 2013-10-22 10:25 - 209610296 _____ (NVIDIA Corporation) C:\Users\Hicken\Downloads\331.58-desktop-win8-win7-winvista-64bit-english-whql.exe

2013-10-21 17:06 - 2013-10-21 17:06 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Hicken\Downloads\mbam-setup-1.75.0.1300.exe

2013-10-19 11:29 - 2013-10-19 11:29 - 00266051 _____ C:\Users\Hicken\Downloads\skse_1_06_16_installer.exe

2013-10-19 11:29 - 2013-10-19 11:29 - 00001048 _____ C:\Users\Hicken\Desktop\Skyrim (SKSE).lnk

2013-10-19 11:25 - 2013-10-19 11:27 - 00000000 ____D C:\Users\Hicken\AppData\Local\Skyrim

2013-10-17 11:27 - 2013-09-07 18:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2013-10-17 11:27 - 2013-09-07 18:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll

2013-10-17 11:27 - 2013-09-07 18:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll

2013-10-17 11:27 - 2013-08-28 18:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2013-10-17 11:27 - 2013-08-28 18:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2013-10-17 11:27 - 2013-08-28 18:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll

2013-10-17 11:27 - 2013-08-28 18:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2013-10-17 11:27 - 2013-08-28 18:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2013-10-17 11:27 - 2013-08-28 17:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2013-10-17 11:27 - 2013-08-28 17:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2013-10-17 11:27 - 2013-08-28 17:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2013-10-17 11:27 - 2013-08-28 17:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll

2013-10-17 11:27 - 2013-08-28 17:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2013-10-17 11:27 - 2013-08-28 17:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll

2013-10-17 11:27 - 2013-08-28 16:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2013-10-17 11:27 - 2013-08-28 16:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2013-10-17 11:27 - 2013-08-28 16:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2013-10-17 11:27 - 2013-08-28 16:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2013-10-17 11:27 - 2013-08-27 17:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2013-10-17 11:27 - 2013-07-12 02:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys

2013-10-17 11:27 - 2013-07-12 02:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys

2013-10-17 11:27 - 2013-07-04 04:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll

2013-10-17 11:27 - 2013-07-04 04:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll

2013-10-17 11:27 - 2013-07-04 04:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll

2013-10-17 11:27 - 2013-07-04 03:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll

2013-10-17 11:27 - 2013-07-04 03:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll

2013-10-17 11:27 - 2013-07-04 03:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll

2013-10-17 11:27 - 2013-07-04 02:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

2013-10-17 11:27 - 2013-07-02 20:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys

2013-10-17 11:27 - 2013-07-02 20:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys

2013-10-17 11:27 - 2013-07-02 20:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys

2013-10-17 11:27 - 2013-06-25 14:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2013-10-17 11:27 - 2013-06-05 21:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2013-10-17 11:27 - 2013-06-05 21:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2013-10-17 11:27 - 2013-06-05 21:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2013-10-17 11:27 - 2013-06-05 21:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2013-10-17 11:27 - 2013-06-05 20:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2013-10-17 11:27 - 2013-06-05 20:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2013-10-17 11:27 - 2013-06-05 20:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2013-10-17 11:27 - 2013-06-05 19:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2013-10-17 11:27 - 2013-06-05 19:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2013-10-17 11:27 - 2013-06-05 19:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2013-10-17 11:26 - 2013-10-17 11:26 - 00004746 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log

2013-10-17 11:26 - 2013-10-17 11:26 - 00000000 ____D C:\ProgramData\Oracle

2013-10-17 11:26 - 2013-10-08 06:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-10-17 11:26 - 2013-09-04 04:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2013-10-17 11:26 - 2013-09-04 04:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2013-10-17 11:26 - 2013-08-27 17:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

2013-10-17 11:26 - 2013-08-01 04:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2013-10-17 11:26 - 2013-07-20 02:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-17 11:26 - 2013-07-20 02:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

==================== One Month Modified Files and Folders =======

2014-08-21 23:25 - 2013-08-21 20:33 - 412294232 _____ C:\Users\Hicken\Desktop\CongratsPart2.AVI

2014-08-21 23:19 - 2013-08-21 20:32 - 308024600 _____ C:\Users\Hicken\Desktop\CongratsPart1.AVI

2013-11-16 09:33 - 2013-11-16 09:33 - 00000000 ____D C:\Users\Hicken\Downloads\farbar

2013-11-16 09:33 - 2013-11-16 09:33 - 00000000 ____D C:\FRST

2013-11-16 09:31 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\tracing

2013-11-16 09:30 - 2013-04-06 10:49 - 00000000 ____D C:\Program Files (x86)\Everything

2013-11-16 09:28 - 2009-07-13 20:45 - 00022224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-16 09:28 - 2009-07-13 20:45 - 00022224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-16 09:27 - 2013-09-22 10:01 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-11-16 09:27 - 2013-04-06 17:51 - 00000000 _____ C:\Windows\Path.idx

2013-11-16 09:27 - 2009-07-13 21:13 - 00778834 _____ C:\Windows\system32\PerfStringBackup.INI

2013-11-16 09:24 - 2013-04-06 10:17 - 02022428 _____ C:\Windows\WindowsUpdate.log

2013-11-16 09:23 - 2013-04-06 14:21 - 00007609 _____ C:\Users\Hicken\AppData\Local\Resmon.ResmonCfg

2013-11-16 09:23 - 2013-04-06 10:48 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-11-16 09:22 - 2013-08-04 11:28 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Copy

2013-11-16 09:22 - 2013-04-06 17:46 - 01048576 _____ C:\Windows\PE_Rom.dll

2013-11-16 09:21 - 2013-09-19 12:34 - 00065536 _____ C:\Windows\system32\Ikeext.etl

2013-11-16 09:21 - 2013-07-18 07:24 - 00000000 ____D C:\ProgramData\NVIDIA

2013-11-16 09:21 - 2013-07-03 20:35 - 00003304 _____ C:\Windows\System32\Tasks\WizMouse

2013-11-16 09:21 - 2013-06-30 16:15 - 00046374 _____ C:\Windows\setupact.log

2013-11-16 09:21 - 2013-04-06 11:18 - 00000000 ____D C:\ProgramData\boost_interprocess

2013-11-16 09:21 - 2013-04-06 10:51 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Dropbox

2013-11-16 09:21 - 2013-04-06 10:49 - 00000000 ____D C:\Program Files (x86)\Steam

2013-11-16 09:21 - 2013-04-06 10:48 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-11-16 09:21 - 2010-11-20 19:47 - 00069592 _____ C:\Windows\PFRO.log

2013-11-16 09:21 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-11-16 08:52 - 2013-11-16 08:52 - 00036901 _____ C:\Users\Hicken\Desktop\dds.txt

2013-11-16 08:52 - 2013-11-16 08:52 - 00012451 _____ C:\Users\Hicken\Desktop\attach.txt

2013-11-16 08:52 - 2013-04-06 10:49 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\uTorrent

2013-11-16 08:50 - 2013-11-16 08:50 - 00688992 ____R (Swearware) C:\Users\Hicken\Desktop\dds.com

2013-11-16 08:22 - 2013-11-16 08:22 - 00000758 _____ C:\Users\Hicken\Desktop\AC4BF.lnk

2013-11-16 08:13 - 2013-11-09 10:17 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\NVIDIA

2013-11-16 02:00 - 2013-04-06 12:09 - 00000000 ____D C:\Users\Hicken\AppData\Local\Adobe

2013-11-15 23:32 - 2013-09-29 08:07 - 00000000 ____D C:\NewsLeecher

2013-11-14 23:14 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache

2013-11-13 21:24 - 2013-04-06 11:48 - 00000000 ____D C:\Users\Hicken\Downloads\imported

2013-11-13 17:55 - 2013-04-17 21:31 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-13 17:54 - 2013-07-11 22:02 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 17:54 - 2013-04-06 10:54 - 00002155 _____ C:\Windows\epplauncher.mif

2013-11-13 17:54 - 2013-04-06 10:53 - 00000000 ____D C:\Program Files\Microsoft Security Client

2013-11-13 17:54 - 2013-04-06 10:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client

2013-11-13 17:53 - 2013-04-07 14:01 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-12 18:07 - 2013-11-12 18:06 - 182013514 _____ C:\Users\Hicken\Downloads\cm-10.2-20131112-NIGHTLY-d2att.zip

2013-11-12 18:07 - 2013-11-12 18:06 - 175188152 _____ C:\Users\Hicken\Downloads\cm-10.1.3-d2att.zip

2013-11-12 18:06 - 2013-11-12 18:06 - 06633472 _____ C:\Users\Hicken\Downloads\recovery-clockwork-touch-6.0.4.3-d2att.img

2013-11-12 17:55 - 2013-11-12 17:55 - 00000000 ____D C:\Users\Hicken\AppData\Local\NVIDIA Corporation

2013-11-10 22:51 - 2013-04-06 10:57 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Skype

2013-11-10 21:17 - 2013-08-11 20:42 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\vlc

2013-11-10 21:13 - 2013-11-10 21:13 - 00001313 _____ C:\Users\Hicken\Desktop\CL-Eye Device Manager.lnk

2013-11-10 21:13 - 2013-11-10 21:13 - 00000928 _____ C:\Users\Hicken\Desktop\CL-Eye Multicam Code Samples.lnk

2013-11-10 21:13 - 2013-11-10 21:13 - 00000000 ____D C:\Users\Hicken\Documents\CL-Eye Platform SDK

2013-11-10 21:13 - 2013-11-10 21:13 - 00000000 ____D C:\Users\Hicken\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CL-Eye Platform SDK

2013-11-10 21:13 - 2013-11-10 20:54 - 00000000 ____D C:\Program Files (x86)\Code Laboratories