Jump to content

Logs for MrC


Recommended Posts

These are the logs for MrC to help me remove ScorpionSaver/AdPeak software from my system.

 

 

First, the AdwCleaner report:

 

# AdwCleaner v3.015 - Report created 20/12/2013 at 23:06:49
# Updated 10/12/2013 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Pamela - PAM
# Running from : C:\Users\Pamela\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : Level Quality Watcher
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Program Files (x86)\Level Quality Watcher
Folder Deleted : C:\Program Files\Level Quality Watcher
Folder Deleted : C:\Program Files\ScorpionSaver Services
File Deleted : C:\WINDOWS\SysWOW64\AdpeakProxy.ini
File Deleted : C:\WINDOWS\SysWOW64\AdpeakProxyOff.ini
File Deleted : C:\WINDOWS\System32\AdpeakProxy.ini
File Deleted : C:\WINDOWS\System32\AdpeakProxyOff.ini
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9DC8FA51-B596-4F77-802C-5B295919C205}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3E28F712-0D6C-4EE3-AC8C-8F060F5D7C33}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6CE321DA-DC11-45C6-A0FC-4E8A7D978ABC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EEBC7FF-67DA-4B90-9251-C2C5696E4B48}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{74137531-80F7-406F-9543-7D11385FA8C8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{832599B2-55BF-4437-8F3E-030CF5AEB262}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9B7B034B-944A-4261-B487-862F642F7615}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE91F9CE-0900-4E2A-B673-F3F6E4FC54D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B1A429DB-FB06-4645-B7C0-0CC405EAD3CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD67706E-819E-4EBD-BF8D-6D6147CC7A49}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F62A4AF9-58B4-4FEC-89CC-D717A547D8E8}
Key Deleted : HKLM\Software\Adpeak, Inc.
Key Deleted : [x64] HKLM\SOFTWARE\Adpeak, Inc.
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6E810AB6-F34E-49A3-A93F-9E503660F718}
Key Deleted : HKLM\Software\Classes\Installer\Features\6BA018E6E43F3A949AF3E90563067F81
Key Deleted : HKLM\Software\Classes\Installer\Products\6BA018E6E43F3A949AF3E90563067F81
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16384
 
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [secondary Start Pages]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [1797 octets] - [22/10/2013 15:56:01]
AdwCleaner[R1].txt - [3050 octets] - [20/12/2013 22:51:37]
AdwCleaner[s0].txt - [1599 octets] - [22/10/2013 15:58:44]
AdwCleaner[s1].txt - [2975 octets] - [20/12/2013 23:06:49]
 
########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [3035 octets] ##########
 
Now, the FRST Log:
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-12-2013 02
Ran by Pamela (administrator) on PAM on 21-12-2013 08:42:16
Running from C:\Users\Pamela\Downloads
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Symantec Corporation) C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\HitmanPro.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [TCrdMain] - C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe [2608040 2012-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] - C:\Program Files\Toshiba\Teco\TecoResident.exe [169896 2012-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\Toshiba\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [TODDMain] - C:\Program Files (x86)\Toshiba\System Setting\TODDMain.exe [213136 2012-08-04] ()
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-16] (Synaptics Incorporated)
HKCU\...\Run: [steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2995904 2012-07-11] (Symantec Corporation)
HKLM-x32\...\Run: [ToshibaAppPlace] - C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe [552960 2010-09-23] (Toshiba)
HKLM-x32\...\Run: [startCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Reader Application Helper] - C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2013-06-25] (Sony Corporation)
HKLM-x32\...\Run: [] - [x]
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com
SearchScopes: HKLM - DefaultScope {00B629F8-BA33-42D5-8F83-05C2332CF3E3} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS
SearchScopes: HKLM - {00B629F8-BA33-42D5-8F83-05C2332CF3E3} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS
SearchScopes: HKLM-x32 - {00B629F8-BA33-42D5-8F83-05C2332CF3E3} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS
SearchScopes: HKCU - {00B629F8-BA33-42D5-8F83-05C2332CF3E3} URL = 
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\CoIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\CoIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.dll (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\CoIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
 
Chrome: 
=======
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Reader Application Detector) - C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (Beatlab) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\alnfdikmbdfgkcbdodjcbmedanjinmkk\1.0.1_0
CHR Extension: (Google Docs) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (UJAM - Make your music.) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdiogojbmdncjdpljocafnigiokgmci\1.1_0
CHR Extension: (Desmos Graphing Calculator) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdheahnajobgndecdbggfmcojekgdko\2.0_0
CHR Extension: (YouTube) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Alphabet Training) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccmihpjokijgbcjeikkhjiinihicbnac\1_0
CHR Extension: (Thesaurus.com - Synonyms and Antonyms) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\clljlcapeomdokpgadmegpabakieebci\1.6_0
CHR Extension: (Google Search) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Converter) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\elogiihmdefhdcainoihdcfpnfbimpnd\1.0.6_0
CHR Extension: (DoNotTrackMe: Online Privacy Protection) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd\3.1.1037_0
CHR Extension: (Pandora) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl\1.0_0
CHR Extension: (AdBlock) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (Dictionary Instant) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\hngaklbjlbjhmoilkegninbmpfigheol\2.1.0_0
CHR Extension: (Looper for YouTube) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg\4.10.4_0
CHR Extension: (Little Alchemy) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd\0.0.15.7_0
CHR Extension: (Numerics Calculator & Converter) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe\4.3.4_0
CHR Extension: (AudioSauna) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae\0.404_0
CHR Extension: (Google Maps) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (FlashControl) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe\3.3.16_0
CHR Extension: (Norton Identity Protection) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.6.2.3_0
CHR Extension: (Google Wallet) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (GIFPAL) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\noohoboklgjeccnihfkbdakbchbhjlch\1.2_0
CHR Extension: (Origami Player) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiomepakkenneiifjocbinkmmampfbdn\2.4_0
CHR Extension: (Foreign Exchange) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pececklmodgdkajddebafcapladgilnk\1.0.0.2_0
CHR Extension: (Late Night) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgbdhkpacgdhfabeceekiafonfkipohm\1.0_0
CHR Extension: (Psykopaint) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil\0.0.0.10_0
CHR Extension: (Gmail) - C:\Users\Pamela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\Exts\Chrome.crx
 
==================== Services (Whitelisted) =================
 
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2013-10-22] (SurfRight B.V.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NAT; C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe [232424 2013-10-11] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3939008 2012-07-11] (Symantec Corporation)
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe [132504 2013-09-14] (Symantec Corporation)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe [126392 2012-07-23] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 AdpeakWFP; C:\WINDOWS\system32\Drivers\AdpeakWFP64.sys [41624 2013-09-26] (Adpeak, Inc.)
S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-17] (Advanced Micro Devices)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20131203.001\BHDrvx64.sys [1526488 2013-12-03] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00B\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation)
R1 ccSet_NAT; C:\Windows\system32\drivers\NATx64\010A000.009\ccSetx64.sys [150104 2013-07-29] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-12-03] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-12-03] (Symantec Corporation)
R3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [32512 2013-12-21] ()
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20131220.001\IDSvia64.sys [521944 2013-12-13] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-17] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20131220.008\ENG64.SYS [126040 2013-12-18] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20131220.008\EX64.SYS [2099288 2013-12-18] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-17] (Microsoft Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-26] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1501000.012\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-13] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-25] (Symantec Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows ® Win 7 DDK provider)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-12-21 08:42 - 2013-12-21 08:44 - 00018483 _____ C:\Users\Pamela\Downloads\FRST.txt
2013-12-21 08:42 - 2013-12-21 08:42 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-21 08:42 - 2013-12-21 08:42 - 00000000 ____D C:\FRST
2013-12-21 08:41 - 2013-12-21 08:41 - 02193141 _____ (Farbar) C:\Users\Pamela\Downloads\FRST64.exe
2013-12-20 23:18 - 2013-12-20 23:18 - 00000000 ____D C:\ProgramData\boost_interprocess
2013-12-20 22:50 - 2013-12-20 22:50 - 01226750 _____ C:\Users\Pamela\Downloads\AdwCleaner.exe
2013-12-20 11:05 - 2013-12-20 11:05 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-12-20 11:05 - 2013-12-20 11:05 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-20 11:04 - 2013-12-20 11:05 - 00000000 ____D C:\Program Files\CCleaner
2013-12-20 11:04 - 2013-12-20 11:04 - 04645232 _____ (Piriform Ltd) C:\Users\Pamela\Downloads\ccsetup409.exe
2013-12-20 10:44 - 2013-12-20 10:44 - 01775808 _____ (Glarysoft.com                                               ) C:\Users\Pamela\Downloads\ausetup (1).exe
2013-12-20 10:43 - 2013-12-20 10:56 - 00000000 ____D C:\Users\Pamela\AppData\Roaming\GlarySoft
2013-12-20 10:43 - 2013-12-20 10:43 - 00001133 _____ C:\Users\Pamela\Desktop\Absolute Uninstaller.lnk
2013-12-20 10:43 - 2013-12-20 10:43 - 00000168 _____ C:\Users\Pamela\Desktop\Glarysoft Freeware.url
2013-12-20 10:41 - 2013-12-20 10:41 - 01775808 _____ (Glarysoft.com                                               ) C:\Users\Pamela\Downloads\ausetup.exe
2013-12-20 10:18 - 2013-12-20 10:18 - 00000000 ____D C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-12-20 10:18 - 2013-12-20 10:18 - 00000000 ____D C:\Program Files\Unlocker
2013-12-20 09:17 - 2013-12-20 09:17 - 00540831 _____ C:\Users\Pamela\Downloads\bookmarks_12_20_13.html
2013-12-20 09:16 - 2013-12-20 09:16 - 00540831 _____ C:\Users\Pamela\Documents\bookmarks_12_20_13.html
2013-12-19 23:27 - 2013-09-26 09:50 - 00041624 _____ (Adpeak, Inc.) C:\WINDOWS\system32\Drivers\AdpeakWFP64.sys
2013-12-19 11:25 - 2013-12-19 11:25 - 00001938 _____ C:\Users\Public\Desktop\Theme Hospital.lnk
2013-12-19 11:24 - 2013-12-19 11:24 - 00000000 ____D C:\GOG Games
2013-12-19 10:58 - 2013-12-19 11:06 - 167653008 _____ (GOG.com                                                     ) C:\Users\Pamela\Downloads\setup_theme_hospital_2.0.0.5.exe
2013-12-17 15:02 - 2013-12-17 15:02 - 00000000 __SHD C:\Recovery
2013-12-17 15:02 - 2013-12-17 12:38 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-17 15:01 - 2013-12-17 15:01 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-17 15:01 - 2013-12-17 15:01 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-17 15:00 - 2013-12-17 15:00 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-17 14:59 - 2013-12-17 14:59 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-17 14:59 - 2013-12-17 14:59 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-17 14:59 - 2013-12-17 14:59 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-17 14:59 - 2013-12-17 14:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-17 14:58 - 2013-12-17 14:58 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-17 14:58 - 2013-12-17 14:58 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-17 14:58 - 2013-12-17 14:58 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-17 14:56 - 2013-12-17 14:56 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files\MSBuild
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-17 14:52 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-17 14:52 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-17 14:52 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-17 14:52 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-12-17 14:52 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-17 14:52 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-12-17 12:42 - 2013-12-21 08:41 - 00000000 __RDO C:\Users\Pamela\SkyDrive
2013-12-17 12:42 - 2013-12-17 12:42 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2013-12-17 12:37 - 2013-12-17 12:37 - 00001457 _____ C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-17 12:36 - 2013-12-17 12:36 - 00000020 ___SH C:\Users\Pamela\ntuser.ini
2013-12-17 12:31 - 2013-12-21 07:05 - 01375591 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-17 12:30 - 2013-12-17 12:30 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-17 12:15 - 2013-12-17 12:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-17 12:13 - 2013-12-20 09:52 - 00000000 ____D C:\Users\Pamela
2013-12-17 12:13 - 2013-12-17 12:30 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2013-12-17 12:13 - 2013-12-17 12:30 - 00020958 _____ C:\WINDOWS\diagerr.xml
2013-12-17 12:13 - 2013-12-17 12:15 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-17 12:13 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-17 12:13 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-17 12:13 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-17 12:06 - 2013-12-17 12:06 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____D C:\Program Files\Realtek
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 ____D C:\Program Files\Synaptics
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 ____D C:\Program Files\AMD
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-17 10:49 - 2013-12-17 12:30 - 00007034 _____ C:\WINDOWS\comsetup.log
2013-12-05 12:26 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2013-12-05 12:26 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2013-12-05 12:26 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2013-12-05 12:26 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2013-12-05 12:25 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2013-12-05 12:25 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2013-12-05 12:25 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2013-12-05 12:25 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2013-12-05 12:25 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2013-12-05 12:25 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2013-12-05 12:25 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2013-12-05 12:25 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2013-12-05 12:25 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2013-12-05 12:25 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2013-12-05 12:25 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2013-12-05 12:25 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2013-12-05 12:25 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2013-12-05 12:25 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2013-12-05 12:25 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2013-12-05 12:25 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2013-12-05 12:25 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2013-12-05 12:25 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2013-12-05 12:25 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2013-12-05 12:25 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2013-12-05 12:25 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2013-12-05 12:25 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2013-12-05 12:25 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2013-12-05 12:25 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2013-12-05 12:25 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2013-12-05 12:25 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2013-12-05 12:25 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2013-12-05 12:25 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2013-12-05 12:25 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2013-12-05 12:25 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2013-12-05 12:25 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2013-12-05 12:25 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2013-12-05 12:25 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2013-12-05 12:25 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2013-12-05 12:25 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2013-12-05 12:25 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2013-12-05 12:25 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2013-12-05 12:25 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2013-12-05 12:25 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2013-12-05 12:25 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2013-12-05 12:25 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2013-12-05 12:25 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2013-12-05 12:25 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2013-12-05 12:25 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2013-12-05 12:25 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2013-12-05 12:25 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2013-12-05 12:25 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2013-12-05 12:25 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2013-12-05 12:25 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2013-12-05 12:25 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2013-12-05 12:25 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2013-12-05 12:25 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2013-12-05 12:25 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2013-12-05 12:25 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2013-12-05 12:25 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2013-12-05 12:25 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2013-12-05 12:25 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2013-12-05 12:25 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2013-12-05 12:25 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2013-12-05 12:25 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2013-12-05 12:25 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2013-12-05 12:25 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2013-12-05 12:25 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2013-12-05 12:25 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2013-12-05 12:25 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2013-12-05 12:25 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2013-12-05 12:25 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2013-12-05 12:25 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2013-12-05 12:25 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2013-12-05 12:25 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2013-12-05 12:25 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2013-12-05 12:25 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2013-12-05 12:24 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2013-12-05 12:24 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2013-12-05 12:24 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2013-12-05 12:24 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2013-12-05 12:24 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2013-12-05 12:24 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2013-12-05 12:24 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2013-12-05 12:24 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2013-12-05 12:24 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2013-12-05 12:24 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2013-12-05 12:24 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2013-12-05 12:24 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2013-12-05 12:24 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2013-12-05 12:24 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2013-12-05 12:24 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2013-12-05 12:24 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2013-12-05 12:24 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2013-12-05 12:24 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2013-12-05 12:24 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2013-12-05 12:24 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2013-12-05 12:24 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2013-12-05 12:24 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2013-12-05 12:24 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2013-12-05 12:24 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2013-12-05 12:24 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2013-12-05 12:24 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2013-12-05 12:24 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2013-12-05 12:24 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2013-12-05 12:24 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2013-12-05 12:24 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2013-12-05 12:24 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2013-12-05 12:24 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2013-12-05 12:24 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2013-12-05 12:24 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2013-12-05 12:24 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2013-12-05 12:24 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2013-12-05 12:24 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2013-12-05 12:24 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2013-12-05 12:24 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2013-12-05 12:24 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2013-12-05 10:05 - 2013-12-05 10:48 - 555425336 _____ C:\Users\Pamela\Downloads\Starbound_Soundtrack.zip
2013-12-01 22:24 - 2013-12-01 22:29 - 25485100 _____ C:\Users\Pamela\Downloads\UndertaleDemo.zip
2013-12-01 04:49 - 2013-12-01 04:51 - 00000000 ____D C:\ProgramData\Package Cache
 
==================== One Month Modified Files and Folders =======
 
2013-12-21 08:44 - 2013-12-21 08:42 - 00018483 _____ C:\Users\Pamela\Downloads\FRST.txt
2013-12-21 08:44 - 2013-03-26 19:51 - 00000906 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-21 08:44 - 2013-02-20 20:25 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4237269840-4221288166-1492861609-1001
2013-12-21 08:42 - 2013-12-21 08:42 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-21 08:42 - 2013-12-21 08:42 - 00000000 ____D C:\FRST
2013-12-21 08:41 - 2013-12-21 08:41 - 02193141 _____ (Farbar) C:\Users\Pamela\Downloads\FRST64.exe
2013-12-21 08:41 - 2013-12-17 12:42 - 00000000 __RDO C:\Users\Pamela\SkyDrive
2013-12-21 08:41 - 2013-03-26 19:52 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-21 08:41 - 2013-03-26 19:51 - 00000902 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-21 08:40 - 2013-10-21 16:24 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-21 08:39 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-21 08:38 - 2013-11-14 02:20 - 00013114 _____ C:\WINDOWS\PFRO.log
2013-12-21 08:38 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-12-21 08:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-21 07:05 - 2013-12-17 12:31 - 01375591 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-21 06:54 - 2013-08-26 13:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-21 06:52 - 2013-03-27 18:51 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-21 01:50 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-20 23:25 - 2013-11-14 02:28 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-20 23:18 - 2013-12-20 23:18 - 00000000 ____D C:\ProgramData\boost_interprocess
2013-12-20 23:07 - 2013-10-22 15:53 - 00000000 ____D C:\AdwCleaner
2013-12-20 22:50 - 2013-12-20 22:50 - 01226750 _____ C:\Users\Pamela\Downloads\AdwCleaner.exe
2013-12-20 12:29 - 2013-05-18 00:54 - 00000000 ____D C:\Program Files (x86)\PC Checkup
2013-12-20 11:05 - 2013-12-20 11:05 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-12-20 11:05 - 2013-12-20 11:05 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-20 11:05 - 2013-12-20 11:04 - 00000000 ____D C:\Program Files\CCleaner
2013-12-20 11:04 - 2013-12-20 11:04 - 04645232 _____ (Piriform Ltd) C:\Users\Pamela\Downloads\ccsetup409.exe
2013-12-20 10:56 - 2013-12-20 10:43 - 00000000 ____D C:\Users\Pamela\AppData\Roaming\GlarySoft
2013-12-20 10:44 - 2013-12-20 10:44 - 01775808 _____ (Glarysoft.com                                               ) C:\Users\Pamela\Downloads\ausetup (1).exe
2013-12-20 10:43 - 2013-12-20 10:43 - 00001133 _____ C:\Users\Pamela\Desktop\Absolute Uninstaller.lnk
2013-12-20 10:43 - 2013-12-20 10:43 - 00000168 _____ C:\Users\Pamela\Desktop\Glarysoft Freeware.url
2013-12-20 10:41 - 2013-12-20 10:41 - 01775808 _____ (Glarysoft.com                                               ) C:\Users\Pamela\Downloads\ausetup.exe
2013-12-20 10:18 - 2013-12-20 10:18 - 00000000 ____D C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-12-20 10:18 - 2013-12-20 10:18 - 00000000 ____D C:\Program Files\Unlocker
2013-12-20 09:52 - 2013-12-17 12:13 - 00000000 ____D C:\Users\Pamela
2013-12-20 09:48 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2013-12-20 09:48 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2013-12-20 09:48 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-12-20 09:48 - 2013-03-26 19:51 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-20 09:48 - 2012-09-06 23:50 - 00000000 ____D C:\ProgramData\Norton
2013-12-20 09:39 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\registration
2013-12-20 09:17 - 2013-12-20 09:17 - 00540831 _____ C:\Users\Pamela\Downloads\bookmarks_12_20_13.html
2013-12-20 09:16 - 2013-12-20 09:16 - 00540831 _____ C:\Users\Pamela\Documents\bookmarks_12_20_13.html
2013-12-20 08:50 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-12-19 11:25 - 2013-12-19 11:25 - 00001938 _____ C:\Users\Public\Desktop\Theme Hospital.lnk
2013-12-19 11:24 - 2013-12-19 11:24 - 00000000 ____D C:\GOG Games
2013-12-19 11:06 - 2013-12-19 10:58 - 167653008 _____ (GOG.com                                                     ) C:\Users\Pamela\Downloads\setup_theme_hospital_2.0.0.5.exe
2013-12-18 18:02 - 2012-07-26 03:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-12-17 15:02 - 2013-12-17 15:02 - 00000000 __SHD C:\Recovery
2013-12-17 15:01 - 2013-12-17 15:01 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-17 15:01 - 2013-12-17 15:01 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-17 15:01 - 2013-08-22 10:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-17 15:00 - 2013-12-17 15:00 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-17 15:00 - 2013-12-17 15:00 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-17 15:00 - 2013-12-17 15:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-17 14:59 - 2013-12-17 14:59 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-17 14:59 - 2013-12-17 14:59 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-17 14:59 - 2013-12-17 14:59 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-17 14:59 - 2013-12-17 14:59 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-17 14:59 - 2013-12-17 14:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-17 14:58 - 2013-12-17 14:58 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-17 14:58 - 2013-12-17 14:58 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-17 14:58 - 2013-12-17 14:58 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-17 14:58 - 2013-12-17 14:58 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-17 14:58 - 2013-12-17 14:58 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-17 14:58 - 2013-12-17 14:58 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-17 14:58 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-17 14:58 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-17 14:58 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-17 14:58 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-17 14:58 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Camera
2013-12-17 14:56 - 2013-12-17 14:56 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files\MSBuild
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-17 14:53 - 2013-12-17 14:53 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-17 12:42 - 2013-12-17 12:42 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2013-12-17 12:42 - 2013-04-12 22:27 - 00000000 ___RD C:\Users\Pamela\SkyDrive.old
2013-12-17 12:42 - 2013-02-17 16:07 - 00000000 ____D C:\Users\Pamela\AppData\Local\Packages
2013-12-17 12:38 - 2013-12-17 15:02 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-17 12:37 - 2013-12-17 12:37 - 00001457 _____ C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-17 12:37 - 2013-03-27 18:35 - 00003206 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2013-12-17 12:37 - 2013-02-17 16:10 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-17 12:37 - 2013-02-17 16:10 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-17 12:36 - 2013-12-17 12:36 - 00000020 ___SH C:\Users\Pamela\ntuser.ini
2013-12-17 12:32 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-17 12:30 - 2013-12-17 12:30 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-17 12:30 - 2013-12-17 12:13 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2013-12-17 12:30 - 2013-12-17 12:13 - 00020958 _____ C:\WINDOWS\diagerr.xml
2013-12-17 12:30 - 2013-12-17 10:49 - 00007034 _____ C:\WINDOWS\comsetup.log
2013-12-17 12:30 - 2013-08-22 09:46 - 00285667 _____ C:\WINDOWS\setupact.log
2013-12-17 12:26 - 2013-08-22 10:36 - 00000000 __RSD C:\WINDOWS\Media
2013-12-17 12:26 - 2013-08-22 10:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-17 12:23 - 2013-08-22 09:44 - 00476376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-17 12:21 - 2013-11-14 02:14 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-12-17 12:21 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2013-12-17 12:21 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\tr
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\sv
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\sk
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\ru
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\pl
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\no
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\nl
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\it
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\hu
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\fr
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\fi
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\es
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\el
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\de
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\da
2013-12-17 12:21 - 2012-09-19 23:19 - 00000000 ____D C:\WINDOWS\system32\cs
2013-12-17 12:21 - 2012-09-07 00:15 - 00000000 ____D C:\WINDOWS\en
2013-12-17 12:19 - 2013-11-14 02:14 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-12-17 12:19 - 2013-11-14 02:14 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-17 12:19 - 2013-08-22 10:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-17 12:19 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-17 12:19 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-12-17 12:19 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-12-17 12:19 - 2012-09-19 23:10 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2013-12-17 12:19 - 2012-07-26 00:37 - 00000000 ____D C:\Users\Default.migrated
2013-12-17 12:17 - 2013-08-22 10:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-12-17 12:17 - 2013-08-22 10:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-17 12:17 - 2013-08-22 10:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-12-17 12:17 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-17 12:17 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-17 12:17 - 2012-09-19 23:04 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-12-17 12:17 - 2012-09-06 23:44 - 00000000 ____D C:\ProgramData\PRICache
2013-12-17 12:15 - 2013-12-17 12:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-17 12:15 - 2013-12-17 12:13 - 00000000 ___RD C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-17 12:15 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-17 12:06 - 2013-12-17 12:06 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-12-17 12:06 - 2013-12-17 12:06 - 00000000 ____D C:\Program Files\Realtek
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 ____D C:\Program Files\Synaptics
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 ____D C:\Program Files\AMD
2013-12-17 12:05 - 2013-12-17 12:05 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-17 12:03 - 2013-08-22 08:36 - 00000000 __RHD C:\Users\Default
2013-12-17 11:31 - 2013-02-17 16:06 - 01886330 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-17 09:23 - 2012-07-26 03:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-12-17 08:15 - 2013-10-14 08:08 - 03626496 ___SH C:\Users\Pamela\Downloads\Thumbs.db
2013-12-05 16:33 - 2013-03-27 18:19 - 00044544 ___SH C:\Users\Pamela\Desktop\Thumbs.db
2013-12-05 12:25 - 2012-09-07 00:13 - 00010430 _____ C:\WINDOWS\DirectX.log
2013-12-05 10:48 - 2013-12-05 10:05 - 555425336 _____ C:\Users\Pamela\Downloads\Starbound_Soundtrack.zip
2013-12-04 09:39 - 2013-03-26 19:51 - 00003878 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-04 09:39 - 2013-03-26 19:51 - 00003642 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-04 02:29 - 2013-03-27 18:35 - 00002290 _____ C:\Users\Public\Desktop\Norton 360.lnk
2013-12-04 02:29 - 2013-03-27 18:33 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64
2013-12-03 19:05 - 2013-08-22 10:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-03 19:05 - 2013-08-22 10:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-01 22:29 - 2013-12-01 22:24 - 25485100 _____ C:\Users\Pamela\Downloads\UndertaleDemo.zip
2013-12-01 04:51 - 2013-12-01 04:49 - 00000000 ____D C:\ProgramData\Package Cache
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2013-12-17 12:03
 
==================== End Of Log ============================

 

Rest of the logs to follow.

Link to post
Share on other sites

The FRST addition.txt file:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-12-2013 02

Ran by Pamela at 2013-12-21 08:46:25

Running from C:\Users\Pamela\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}

FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

 

==================== Installed Programs ======================

 

Absolute Uninstaller 2.9.0.722 (x32)

Adobe Reader X (10.1.3) (x32 Version: 10.1.3)

AMD Accelerated Video Transcoding (Version: 12.5.100.20808)

AMD APP SDK Runtime (Version: 10.0.938.2)

AMD Catalyst Install Manager (Version: 8.0.881.0)

AMD Quick Stream (Version: 3.3.26.0)

AMD VISION Engine Control Center (x32 Version: 2012.0808.1024.16666)

Catalyst Control Center - Branding (x32 Version: 1.00.0000)

Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0808.1024.16666)

Catalyst Control Center Localization All (x32 Version: 2012.0808.1024.16666)

CCC Help Chinese Standard (x32 Version: 2012.0808.1023.16666)

CCC Help Chinese Traditional (x32 Version: 2012.0808.1023.16666)

CCC Help Czech (x32 Version: 2012.0808.1023.16666)

CCC Help Danish (x32 Version: 2012.0808.1023.16666)

CCC Help Dutch (x32 Version: 2012.0808.1023.16666)

CCC Help English (x32 Version: 2012.0808.1023.16666)

CCC Help Finnish (x32 Version: 2012.0808.1023.16666)

CCC Help French (x32 Version: 2012.0808.1023.16666)

CCC Help German (x32 Version: 2012.0808.1023.16666)

CCC Help Greek (x32 Version: 2012.0808.1023.16666)

CCC Help Hungarian (x32 Version: 2012.0808.1023.16666)

CCC Help Italian (x32 Version: 2012.0808.1023.16666)

CCC Help Japanese (x32 Version: 2012.0808.1023.16666)

CCC Help Korean (x32 Version: 2012.0808.1023.16666)

CCC Help Norwegian (x32 Version: 2012.0808.1023.16666)

CCC Help Polish (x32 Version: 2012.0808.1023.16666)

CCC Help Portuguese (x32 Version: 2012.0808.1023.16666)

CCC Help Russian (x32 Version: 2012.0808.1023.16666)

CCC Help Spanish (x32 Version: 2012.0808.1023.16666)

CCC Help Swedish (x32 Version: 2012.0808.1023.16666)

CCC Help Thai (x32 Version: 2012.0808.1023.16666)

CCC Help Turkish (x32 Version: 2012.0808.1023.16666)

ccc-utility64 (Version: 2012.0808.1024.16666)

CCleaner (Version: 4.09)

D3DX10 (x32 Version: 15.4.2368.0902)

Google Chrome (x32 Version: 31.0.1650.63)

Google Update Helper (x32 Version: 1.3.22.3)

HitmanPro 3.7 (Version: 3.7.8.208)

Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft SkyDrive (HKCU Version: 17.0.2003.1112)

Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610)

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610)

Movie Maker (x32 Version: 16.4.3503.0728)

MSVCRT (x32 Version: 15.4.2862.0708)

MSVCRT110 (x32 Version: 16.4.1108.0727)

MSVCRT110_amd64 (Version: 16.4.1108.0727)

Norton 360 (x32 Version: 21.1.0.18)

Norton Anti-Theft (x32 Version: 1.10.0.9)

Norton Online Backup (x32 Version: 2.2.3.45)

Norton Online Backup ARA (x32 Version: 4.1.0.11)

Norton PC Checkup (x32 Version: 2.0.18.15)

Norton PC Checkup (x32 Version: 3.0.5.38.0)

Norton Security Dashboard (x32 Version: 1.1.1.9)

Origin (x32 Version: 8.6.3.49)

Photo Common (x32 Version: 16.4.3503.0728)

Photo Gallery (x32 Version: 16.4.3503.0728)

PlayReady PC Runtime amd64 (Version: 1.3.0)

Reader for PC (x32 Version: 2.1.00.06250)

Realtek Ethernet Controller Driver (x32 Version: 8.2.612.2012)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6690)

Realtek USB 2.0 Card Reader (x32 Version: 6.1.8400.39030)

Realtek WLAN Driver (x32 Version: 2.00.0020)

Risk of Rain (x32)

Starbound (x32)

Steam (x32 Version: 1.0.0.0)

Synaptics Pointing Device Driver (Version: 16.2.10.5)

Theme Hospital (x32 Version: 2.0.0.5)

Toshiba App Place (x32 Version: 1.0.6.3)

TOSHIBA Application Installer (x32 Version: 9.0.1.4)

TOSHIBA Audio Enhancement (Version: 1.0.2.8)

Toshiba Book Place (x32 Version: 3.1.9534)

TOSHIBA Desktop Assist (Version: 1.00.0007.00002)

TOSHIBA eco Utility (Version: 2.0.0.6414)

TOSHIBA Function Key (Version: 1.00.6425)

TOSHIBA Password Utility (x32 Version: v1.0.0.8)

TOSHIBA PC Health Monitor (Version: 1.8.17.640104)

TOSHIBA Quality Application (x32 Version: 1.0.8)

TOSHIBA Recovery Media Creator (x32 Version: 2.2.0.54043005)

TOSHIBA Service Station (Version: 2.4.4)

TOSHIBA System Driver (x32 Version: 1.00.0013)

TOSHIBA System Settings (x32 Version: 1.00.0002.32002)

TOSHIBA User's Guide (x32 Version: 1.00.02)

TOSHIBA VIDEO PLAYER (Version: 5.1.0.12-A)

TOSHIBARegistration (x32 Version: 1.1.6)

Unlocker 1.9.2 (Version: 1.9.2)

Windows Live Communications Platform (x32 Version: 16.4.3503.0728)

Windows Live Essentials (x32 Version: 16.4.3503.0728)

Windows Live Installer (x32 Version: 16.4.3503.0728)

Windows Live Photo Common (x32 Version: 16.4.3503.0728)

Windows Live PIMT Platform (x32 Version: 16.4.3503.0728)

Windows Live SOXE (x32 Version: 16.4.3503.0728)

Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728)

Windows Live UX Platform (x32 Version: 16.4.3503.0728)

Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728)

 

==================== Restore Points  =========================

 

20-12-2013 13:50:58 Removed ScorpionSaver

20-12-2013 14:35:04 Restore Operation

 

==================== Hosts content: ==========================

 

2013-08-22 08:25 - 2013-08-22 08:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {00D743EB-897A-4BFC-9235-5EAC212D28C4} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\symerr.exe [2013-08-01] (Symantec Corporation)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask

Task: {0AAA36EE-F642-4527-94A6-03FB8D72E921} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\symerr.exe [2013-08-01] (Symantec Corporation)

Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList

Task: {11D5409E-747E-4AAA-B0AC-594B351D1E30} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)

Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate

Task: {3301F2FD-C357-4DFE-B9BF-5751597A92C6} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)

Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)

Task: {38D864C1-D2A4-4EDB-913C-DAEE8580AB6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-26] (Google Inc.)

Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)

Task: {464112E3-433F-4942-9E18-600FE7D1AAF2} - System32\Tasks\PC Checkup 3 Weekly Scan => C:\Program Files (x86)\PC Checkup\NLAppLauncher.exe [2013-09-14] (Symantec Corporation)

Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance

Task: {68F2C25E-A82A-4722-A424-0CA05D92B30F} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-16] (Synaptics Incorporated)

Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup

Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task

Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {784068B5-4A4C-43E3-AA84-D646C0653C93} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\System32\MRT.exe [2013-12-21] (Microsoft Corporation)

Task: {86E52734-F6AE-4EA8-AE02-3804CB04143A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)

Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task

Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask

Task: {9411CB4B-A377-41D6-B43E-8DFA85939C09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-26] (Google Inc.)

Task: {94BB84BE-92C8-416E-9D91-4ED23693A574} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe [2012-07-27] (TOSHIBA Corporation)

Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work

Task: {B114D2BE-263B-4A0B-A42F-806E0B059DEC} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\symerr.exe [2013-08-01] (Symantec Corporation)

Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask

Task: {D711C553-6598-4E29-8C48-3B80FB0F7C03} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\symerr.exe [2013-08-01] (Symantec Corporation)

Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing

Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization

Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

 

==================== Loaded Modules (whitelisted) =============

 

2012-07-18 20:38 - 2012-07-18 20:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll

2012-07-18 20:38 - 2012-07-18 20:38 - 00049064 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnZ.dll

2012-08-13 21:13 - 2012-08-13 21:13 - 00018344 _____ () C:\Program Files\Toshiba\Teco\TecoMUI.dll

2013-12-20 10:06 - 2013-12-03 21:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll

2013-12-20 10:06 - 2013-12-03 21:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll

2013-12-20 10:06 - 2013-12-03 21:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll

2013-12-20 10:06 - 2013-12-03 21:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll

2013-12-20 10:06 - 2013-12-03 21:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll

2013-08-21 13:18 - 2013-11-06 16:48 - 00691200 _____ () C:\Program Files (x86)\Steam\SDL2.dll

2013-10-08 17:19 - 2013-12-11 14:40 - 01135016 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL

2013-09-10 13:20 - 2013-11-06 16:48 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

2013-06-14 14:49 - 2013-06-14 18:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll

2013-06-14 14:49 - 2013-06-14 18:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll

2013-06-14 14:49 - 2013-06-14 18:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll

2013-06-25 17:23 - 2013-06-25 17:23 - 00880640 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\fsk.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00040264 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00239944 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\Fskin.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00026952 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskinLocalize.dll

2013-05-23 18:54 - 2013-05-23 18:54 - 00798720 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskSecurity.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00125256 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00016200 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskPower.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00024904 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskNetInterface.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00017224 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00015176 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00034632 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ticket.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00018760 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00092488 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookUsb.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00149832 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\readerAppHelper.dll

2013-06-25 17:24 - 2013-06-25 17:24 - 00178504 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\USBDetector.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\Users\Pamela\SkyDrive:ms-properties

 

==================== Safe Mode (whitelisted) ===================

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AdpeakWFP => ""="Driver"

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (12/21/2013 08:41:09 AM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 11:21:06 PM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 10:24:05 AM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 10:20:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: PAM)

Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (12/20/2013 10:20:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: PAM)

Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (12/20/2013 09:54:35 AM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 09:13:11 AM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/19/2013 09:50:25 AM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20315 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 19f0

 

Start Time: 01cefcc8e24b08bb

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: dc2148c0-68bc-11e3-be8c-00266c2ee194

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (12/19/2013 07:56:29 AM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20315 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 13a4

 

Start Time: 01cefcb81ebd686f

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: 1891850f-68ac-11e3-be8c-00266c2ee194

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (12/18/2013 06:05:06 PM) (Source: Toshiba App Place) (User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

 

System errors:

=============

Error: (12/21/2013 08:47:18 AM) (Source: DCOM) (User: NT AUTHORITY)

Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

 

Error: (12/21/2013 08:39:05 AM) (Source: Service Control Manager) (User: )

Description: The AppEx Networks Accelerator LWF service failed to start due to the following error: 

%%31

 

Error: (12/21/2013 08:39:05 AM) (Source: APXACC) (User: )

Description: The NDIS6 LWF initialization has failed. (0xC0000001)

 

Error: (12/20/2013 11:26:20 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

 

Error: (12/20/2013 11:18:53 PM) (Source: Service Control Manager) (User: )

Description: The AdpeakProxy service failed to start due to the following error: 

%%2

 

Error: (12/20/2013 11:18:52 PM) (Source: APXACC) (User: )

Description: The NDIS6 LWF initialization has failed. (0xC0000001)

 

Error: (12/20/2013 11:18:52 PM) (Source: Service Control Manager) (User: )

Description: The AppEx Networks Accelerator LWF service failed to start due to the following error: 

%%31

 

Error: (12/20/2013 10:28:03 AM) (Source: DCOM) (User: NT AUTHORITY)

Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

 

Error: (12/20/2013 10:21:43 AM) (Source: Service Control Manager) (User: )

Description: The AdpeakProxy service failed to start due to the following error: 

%%2

 

Error: (12/20/2013 10:21:35 AM) (Source: Service Control Manager) (User: )

Description: The AppEx Networks Accelerator LWF service failed to start due to the following error: 

%%31

 

 

Microsoft Office Sessions:

=========================

Error: (12/21/2013 08:41:09 AM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 11:21:06 PM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 10:24:05 AM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 10:20:38 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: PAM)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

 

Error: (12/20/2013 10:20:38 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: PAM)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

 

Error: (12/20/2013 09:54:35 AM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/20/2013 09:13:11 AM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

Error: (12/19/2013 09:50:25 AM) (Source: Application Hang)(User: )

Description: LiveComm.exe17.5.9600.2031519f001cefcc8e24b08bb4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exedc2148c0-68bc-11e3-be8c-00266c2ee194microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

 

Error: (12/19/2013 07:56:29 AM) (Source: Application Hang)(User: )

Description: LiveComm.exe17.5.9600.2031513a401cefcb81ebd686f4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe1891850f-68ac-11e3-be8c-00266c2ee194microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

 

Error: (12/18/2013 06:05:06 PM) (Source: Toshiba App Place)(User: )

Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.

Parameter name: dueTime

Stack Trace:

   at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)

   at System.Timers.Timer.set_Enabled(Boolean value)

   at SnappCloud.ActivationReminder.AraClient.PostInit()

   at SnappCloud.ActivationReminder.Program.Main(String[] args)

 

 

I think that about does it. Thank you for your help, MrC!

Link to post
Share on other sites

Download the attached fixlist.txt to the same folder as FRST.

Run FRST.exe and click Fix only once and wait

The tool will create a log (Fixlog.txt) in the folder, please post it to your reply.

Then......

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Link to post
Share on other sites

Thank you so much for your help, Mr. C! I've posted the log before, but everything shows up totally clean. I really appreciate everything you've done. Happy holidays!

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.12.20.05
 
Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16476
Pamela :: PAM [administrator]
 
12/23/2013 9:32:12 PM
mbam-log-2013-12-23 (21-32-12).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 213670
Time elapsed: 9 minute(s), 24 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.