Jump to content

Infected Registry. Can't seem to remove

aeg565

By aeg565
in Resolved Malware Removal Logs

 Share

Recommended Posts

aeg565

aeg565

Posted
Posted

Hey all,

 

Recently I noticed that my computer was running significantly slower.  I ran AVG and got rid of 24 security threats, thinking that this would remedy the problem... unfortunately I was wrong.  I then used adwcleaner to try locate and destroy the threat.   While it does detect what I'm assuming is the problem (in registry... HKLM\Software\DeviceVM) and says it can delete it, the problem always returns after I restart my computer.

 

I've ran malwarebytes, security check, adwcleaner, combofix, and a host of other programs to get rid of the problem... no luck.

 

Right now I deleted chrome, where I believe the file was using an extension to gain access to my information, and am currently running TDSSkiller as a last resort.  If this doesn't work what should I do? :(

 

Thanks in advance!

 

Alex

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Hello and post-32477-1261866970.gif

 

P2P/Piracy Warning:

 

   

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

Please download SystemLook from the following link below and save it to your Desktop. Use the correct version 32bit or 64bit.

 

http://jpshortstuff.247fixes.com/SystemLook_x64.exe      <<-   64 bit….

 

http://images.malwareremoval.com/jpshortstuff/SystemLook.exe  <<-  32 bit

 


Double-click SystemLook.exe to run it.
Copy the content of the following codebox into the main textfield:
 
:regfindDeviceVM
 
Click the Look button to start the scan.
When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

 

Next,

 

Run Malwarebytes,  Open > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Full scan

Make sure that everything is checked, and click Remove Selected on any found items.

 

Post the produced logs.

 

Thanks,

 

Kevin

Link to post
Share on other sites
aeg565

aeg565

Posted
  • Author
Posted

Thanks for your help Kevin.

 

I'm not the most tech savvy but I'm pretty sure I removed all P2P software from my computer.  If I didn't just let me know and I will.

 

Here's my system look:

SystemLook 30.07.11 by jpshortstuff
Log created at 13:01 on 10/01/2014 by Alex
Administrator - Elevation successful
 
========== regfind ==========
 
Searching for "DeviceVM"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D6D9DA99654AEE9438062FE27EAA2127\InstallProperties]
"Publisher"="DeviceVM, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D6D9DA99654AEE9438062FE27EAA2127\InstallProperties]
"URLInfoAbout"="http://www.devicevm.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DvmMDES]
"DisplayName"="DeviceVM Meta Data Export Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\DvmMDES]
"DisplayName"="DeviceVM Meta Data Export Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DvmMDES]
"DisplayName"="DeviceVM Meta Data Export Service"
 
-= EOF =-
 
Here's my Malwarebytes:
Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.01.10.07
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Alex :: ALEX-PC [administrator]
 
Protection: Enabled
 
1/10/2014 1:02:42 PM
mbam-log-2014-01-10 (13-02-42).txt
 
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled: File System
Objects scanned: 209872
Time elapsed: 31 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

What makes you believe DeviceVM is malicious, I get no bad feedback to any research on the registry entries we see....

 

http://devicevm-inc.software.informer.com/

 

If you want those registry entries removed, let me know. I see no reason to mess with anything that is not broke!!

 

Next,

 

Download Farbar Recovery Scan Tool and save it to your desktop.

 

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

Kevin

Link to post
Share on other sites
aeg565

aeg565

Posted
  • Author
Posted

Addition.txt:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-01-2014

Ran by Alex at 2014-01-10 17:25:42
Running from C:\Users\Alex\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: AVG AntiVirus 2013 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus 2013 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
 
==================== Installed Programs ======================
 
 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
2007 Microsoft Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
3ivx MPEG-4 5.0.2 (remove only) (x32 Version: 5.0.2 - 3ivx Technologies, Pty. Ltd.)
64 Bit HP CIO Components Installer (Version: 1.2.0 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 3.2.1 - Hewlett-Packard) Hidden
6500_E709_eDocs (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709_Help (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709n (x32 Version: 50.0.165.000 - Hewlett-Packard) Hidden
7-Zip 9.22beta (x32 Version:  - )
Activation Assistant for the 2007 Microsoft Office suites (x32 Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.03) (x32 Version: 11.0.03 - Adobe Systems Incorporated)
AIDA64 Extreme v4.00 (x32 Version: 4.00 - FinalWire Ltd.)
Apple Application Support (x32 Version: 1.5.1 - Apple Inc.)
Apple Mobile Device Support (Version: 3.4.0.25 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.1.116 - Apple Inc.)
Assassin's Creed II (x32 Version: 1.01 - Ubisoft)
ASUSUpdate (x32 Version: 7.18.03 - ASUSTeK Computer Inc.)
AutoHotkey 1.0.48.05 (x32 Version: 1.0.48.05 - Chris Mallett)
AVG 2013 (Version: 13.0.3462 - AVG Technologies) Hidden
AVG 2013 (Version: 13.0.3658 - AVG Technologies) Hidden
AVG 2013 (Version: 2013.0.3462 - AVG Technologies)
Batman: Arkham Asylum Demo (x32 Version: 1.0.0.0 - Eidos Inc/Warner Brothers)
Battlefield 4™ (x32 Version: 1.0.0.1 - Electronic Arts)
Bonjour (Version: 2.0.5.0 - Apple Inc.)
bpd_scan (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (x32 Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Call of Duty: Black Ops (x32 Version:  - Treyarch)
Company of Heroes (x32 Version:  - Relic)
Core Temp version 0.99.8 (Version: 0.99.8 - Arthur Liberman)
Counter-Strike: Source (x32 Version:  - Valve)
CPUID CPU-Z 1.67.1 (Version:  - )
Crysis 2 (x32 Version:  - Electronic Arts)
Crysis Warhead (x32 Version:  - Crytek)
Darksiders II (x32 Version:  - )
Dead Rising 2 (x32 Version: 1.0.0000.130 - Capcom)
Dead Rising 2 (x32 Version: 1.0.0000.130 - Capcom) Hidden
Dead Rising 2 (x32 Version: 1.0.0001.130 - Capcom) Hidden
Dead Space 2 (x32 Version:  - Electronic Arts)
Destination Component (x32 Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Diablo III (x32 Version: 1.0.5.12811 - Blizzard Entertainment)
DocMgr (x32 Version: 120.0.000.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 12.0.0.0 - Hewlett-Packard) Hidden
Dota 2 (x32 Version:  - Valve)
Download Manager 2.3.10 (x32 Version: 2.3.10 - IGN Entertainment, Inc.)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
EVGA Precision 1.7.1 (x32 Version: 1.7.1 - EVGA Corporation)
EVGA Precision X 4.2.1 (x32 Version: 4.2.1 - EVGA Corporation)
Facebook Plug-In (HKCU Version:  - Facebook, Inc.)
Fallout 3 (x32 Version: 1.00.0000 - Bethesda Softworks)
Fax (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
FileZilla Client 3.3.2 (x32 Version: 3.3.2 - )
Folk Tale (x32 Version:  - Games Foundry)
Fraps (x32 Version:  - )
Game Booster 3 (x32 Version: 3.4 - IObit)
GameSpy Comrade (x32 Version: 1.5.0.156 - GameSpy)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (x32 Version: 31.0.1650.63 - Google Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HP Customer Participation Program 12.0 (Version: 12.0 - HP)
HP Document Manager 2.0 (Version: 2.0 - HP)
HP Imaging Device Functions 12.0 (Version: 12.0 - HP)
HP Officejet 6500 E709 Series (Version: 12.0 - HP)
HP Smart Web Printing (Version: 4.05 - HP)
HP Update (x32 Version: 4.000.011.006 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
iTunes (Version: 10.2.2.12 - Apple Inc.)
Java Auto Updater (x32 Version: 2.0.3.1 - Sun Microsystems, Inc.) Hidden
Java 6 Update 24 (x32 Version: 6.0.240 - Sun Microsystems, Inc.)
League of Legends (x32 Version: 1.3 - Riot Games) Hidden
Left 4 Dead 2 (x32 Version:  - Valve)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (x32 Version: 120.0.226.000 - Hewlett-Packard) Hidden
Medieval II: Total War (x32 Version:  - The Creative Assembly)
Medieval II: Total War Kingdoms (x32 Version:  - The Creative Assembly)
Metro Last Light (x32 Version:  - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Hybrid 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft VC9 runtime libraries (x32 Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0 - Microsoft)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
Napoleon: Total War (x32 Version:  - The Creative Assembly)
Network64 (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Nexus Mod Manager (Version: 0.46.0 - Black Tree Gaming)
NVIDIA 3D Vision Controller Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA Control Panel 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
OCR Software by I.R.I.S. 12.0 (Version: 12.0 - HP)
Origin (x32 Version: 9.3.11.2762 - Electronic Arts, Inc.)
PC Wizard 2012.2.11 (x32 Version:  - CPUID)
PowerISO (x32 Version: 5.7 - Power Software Ltd)
ProductContext (x32 Version: 50.0.165.000 - Hewlett-Packard) Hidden
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
QuickTime (x32 Version: 7.69.80.9 - Apple Inc.)
Ralink RT2870 Wireless LAN Card (x32 Version: 1.5.26.0 - Ralink)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RivaTuner v2.24 (x32 Version: v2.24 - Alexey Nicolaychuk)
Safari (x32 Version: 5.33.18.5 - Apple Inc.)
Saints Row IV (x32 Version: 1 - )
Scan (x32 Version: 12.0.0.0 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SmartWebPrinting (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Source SDK Base 2007 (x32 Version:  - Valve)
SpeedFan (remove only) (x32 Version:  - )
Spelling Dictionaries Support For Adobe Reader 9 (x32 Version: 9.0.0 - Adobe Systems Incorporated)
Spotify (HKCU Version: 0.9.6.81.gd359a796 - Spotify AB)
StarCraft II (x32 Version: 1.3.4.18701 - Blizzard Entertainment)
Status (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (x32 Version: 4.4.21.0 - Husdawg, LLC)
The Elder Scrolls V: Skyrim (x32 Version:  - Bethesda Game Studios)
The Sims™ 3 (x32 Version: 1.4.6 - Electronic Arts)
The Walking Dead (x32 Version:  - )
Third Age - Total War 3.0 (Part 1of2) (HKCU Version:  - )
Third Age - Total War 3.0 (Part 2of2) (HKCU Version:  - )
Toolbox (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Torchlight II (x32 Version:  - )
Total War: ROME II (x32 Version:  - Creative Assembly)
Total War: SHOGUN 2 (x32 Version:  - The Creative Assembly)
TrayApp (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Tropico 4 (x32 Version:  - )
TurboV (x32 Version: 1.00.17 - )
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
Ventrilo Client for Windows x64 (Version: 3.0.5.0 - Flagship Industries, Inc.)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1 - AVG Technologies)
VLC media player 2.0.8 (x32 Version: 2.0.8 - VideoLAN)
Warhammer® 40,000®: Dawn of War® II – Retribution™ (x32 Version:  - Relic)
Warhammer® 40,000®: Dawn of War® II – Retributionâ„¢ Beta (x32 Version:  - )
WebReg (x32 Version: 120.0.194.000 - Hewlett-Packard) Hidden
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live installer (x32 Version: 12.0.1471.1025 - Microsoft Corporation)
Windows Live Mail (x32 Version: 12.0.1606.1023 - Microsoft Corporation)
Windows Live Photo Gallery (x32 Version: 12.0.1329.0201 - Microsoft Corporation)
Windows Live Toolbar (x32 Version: 03.01.0146 - Microsoft Corporation)
Windows Live Toolbar (x32 Version: 03.01.0146 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 12.0.1370.0325 - Microsoft Corporation)
XCOM: Enemy Unknown (x32 Version:  - Firaxis Games)
 
==================== Restore Points  =========================
 
09-01-2014 06:29:15 Scheduled Checkpoint
10-01-2014 01:34:36 Installed DirectX
10-01-2014 06:16:17 Installed Microsoft Fix it 50535
10-01-2014 06:34:51 zoek.exe restore point
10-01-2014 09:30:46 Removed Realtek 8169 8168 8101E 8102E Ethernet Driver
10-01-2014 09:35:12 Windows Update
 
==================== Hosts content: ==========================
 
2010-11-14 22:51 - 2014-01-09 22:07 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1BB2838D-53E4-4422-B165-B754BF7269B5} - System32\Tasks\{E376AFF9-6889-4497-9A7A-65D8162861F1} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {39D016F8-9867-4748-BEC6-7B712F61A266} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {4F083A2F-BF8C-493F-91FC-AE7F05408A13} - System32\Tasks\RealCreateProcessScheduledTask22286474S-1-5-21-3530666769-31344507-419582560-1000 => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2012-07-18] (RealNetworks, Inc.)
Task: {6D8F888C-A260-46FA-98BA-54222A7B163C} - System32\Tasks\RealCreateProcessScheduledTask13284608S-1-5-21-3530666769-31344507-419582560-1000 => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2012-07-18] (RealNetworks, Inc.)
Task: {712C6861-2B14-4E72-92BA-22B6921FE2B7} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs
Task: {72FDB32F-F4EC-442F-BAB4-A9FD3F8DCE30} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3530666769-31344507-419582560-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2012-06-21] (RealNetworks, Inc.)
Task: {798FB25E-6B32-4D35-B724-6D74983401B4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {8C47C0E8-EC95-47A6-B25F-7ADE5BB5CF07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-18] (Google Inc.)
Task: {97981417-592E-4FA5-9F81-1D65D5C214B5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-18] (Google Inc.)
Task: {ADBFEB18-DB64-408F-8156-58ABB1E3CCD8} - \BackgroundContainer Startup Task No Task File
Task: {AE576ACD-6035-4B88-9463-AB0F15C10B2E} - System32\Tasks\RealCreateProcessScheduledTask24086991S-1-5-21-3530666769-31344507-419582560-1000 => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2012-07-18] (RealNetworks, Inc.)
Task: {CD423F9F-2608-45A0-A69B-6E81EACDC651} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster\Autoupdate.exe [2013-07-30] ()
Task: {D00C4662-E092-45E7-96A6-0374F76F7F16} - System32\Tasks\Check Updates for Windows Live Toolbar => C:\Program Files (x86)\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19] (Microsoft Corporation)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs
Task: {F881D13C-F14C-4D7A-B96F-3C80BC955C2C} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3530666769-31344507-419582560-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2012-06-21] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job => C:\Program Files (x86)\Windows Live Toolbar\MSNTBUP.EXE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2010-01-02 06:42 - 2010-01-02 06:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2009-04-17 10:15 - 2005-05-11 15:39 - 00565248 _____ () C:\Program Files\ASUS\TurboV\pngio.dll
2009-04-17 10:15 - 2008-09-04 16:42 - 01126912 _____ () C:\Program Files\ASUS\TurboV\OcProfile.dll
2009-04-17 10:15 - 2008-08-21 14:19 - 00126976 _____ () C:\Program Files\ASUS\TurboV\TVOCLIB.DLL
2009-10-23 16:01 - 2009-10-23 16:01 - 00067872 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2010-02-21 08:33 - 2010-02-21 08:33 - 00094208 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-01-09 23:02 - 2013-12-03 18:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2014-01-09 23:02 - 2013-12-03 18:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
2014-01-09 23:02 - 2013-12-03 18:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
2014-01-09 23:02 - 2013-12-03 18:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2014-01-09 23:02 - 2013-12-03 18:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2
 
==================== Safe Mode (whitelisted) ===================
 
 
==================== Faulty Device Manager Devices =============
 
Name: Officejet J6400 series
Description: Officejet J6400 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Officejet Pro 8600
Description: Officejet Pro 8600
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Officejet 6700
Description: Officejet 6700
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/10/2014 01:43:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
 
Error: (01/10/2014 01:00:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/09/2014 10:47:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/09/2014 10:24:01 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/09/2014 09:38:29 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: b50
 
Start Time: 01cf0dc542e92c57
 
Termination Time: 0
 
Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
 
Report Id: 6cb266e9-79b9-11e3-9087-00248c85808f
 
Error: (01/09/2014 09:28:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/09/2014 09:21:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/09/2014 07:45:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
 
 
System errors:
=============
Error: (01/10/2014 00:59:02 PM) (Source: Service Control Manager) (User: )
Description: The HOSTS Anti-PUPs service failed to start due to the following error: 
%%2
 
Error: (01/10/2014 01:39:25 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070002: Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2861208).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070002: Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2742613).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2893984).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2913152).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2893294).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242fff: Cumulative Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB2898785).
 
Error: (01/10/2014 01:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2904266).
 
Error: (01/10/2014 01:38:34 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070002: Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2833957).
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2014-01-09 22:05:42.085
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-01-09 22:05:41.976
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2009-12-25 13:05:35.448
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.417
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.402
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.386
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.355
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.339
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.308
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2009-12-25 13:05:35.292
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 23%
Total physical RAM: 12279.12 MB
Available physical RAM: 9401.21 MB
Total Pagefile: 24556.41 MB
Available Pagefile: 21439.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:931.51 GB) (Free:479.85 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (13-881-01-1) (CDROM) (Total:1.49 GB) (Free:0 GB) CDFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: E17099AB)
Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
Link to post
Share on other sites
aeg565

aeg565

Posted
  • Author
Posted

FRST.txt:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-01-2014
Ran by Alex (administrator) on ALEX-PC on 10-01-2014 17:25:20
Running from C:\Users\Alex\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(DeviceVM) C:\ASUS.SYS\config\DVMExportService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Spotify Ltd) C:\Users\Alex\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Program Files\ASUS\TurboV\TurboV.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Alex\Desktop\SystemLook_x64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Alex\Desktop\adwcleaner.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [TurboV] - C:\Program Files\ASUS\TurboV\TurboV.exe [4040192 2008-10-21] ()
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064 2010-10-29] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160 2011-04-14] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [296096 2012-07-18] (RealNetworks, Inc.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2013-11-20] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKCU\...\Run: [steam] - C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
HKCU\...\Run: [spotify Web Helper] - C:\Users\Alex\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-10] (Spotify Ltd)
HKCU\...\Run: [spotify] - C:\Users\Alex\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-10] (Spotify Ltd)
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0FE6763F5102CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
Toolbar: HKCU - No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -  No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe [86016 2008-08-15] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 DvmMDES; C:\ASUS.SYS\config\DVMExportService.exe [323584 2008-11-26] (DeviceVM)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-12-26] ()
S3 WLSetupSvc; C:\Program Files (x86)\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
S3 DAUpdaterSvc; c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe [x]
S2 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -update [x]
 
==================== Drivers (Whitelisted) ====================
 
S3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [33112 2013-11-18] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-13] (AVG Technologies)
S3 cpuz135; C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [24368 2012-08-11] (CPUID)
S3 CYUSB; C:\Windows\System32\Drivers\CYUSB.sys [47104 2009-08-10] (Cypress Semiconductor)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15680 2006-10-31] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24\RivaTuner64.sys [19952 2009-07-23] ()
S3 ALSysIO; \??\C:\Users\Alex\AppData\Local\Temp\ALSysIO64.sys [x]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 NVIDIAHWAccess; \??\C:\Users\Alex\AppData\Roaming\NVIDIA\HWAccess.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-10 17:25 - 2014-01-10 17:25 - 00011916 _____ C:\Users\Alex\Desktop\FRST.txt
2014-01-10 17:25 - 2014-01-10 17:25 - 00000000 ____D C:\Users\Alex\Desktop\FRST-OlderVersion
2014-01-10 17:13 - 2014-01-10 17:13 - 01932166 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-01-10 17:12 - 2014-01-10 17:12 - 01932166 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2014-01-10 13:01 - 2014-01-10 13:01 - 00001912 _____ C:\Users\Alex\Desktop\SystemLook.txt
2014-01-10 13:00 - 2014-01-10 13:00 - 00165376 _____ C:\Users\Alex\Downloads\SystemLook_x64.exe
2014-01-10 13:00 - 2014-01-10 13:00 - 00165376 _____ C:\Users\Alex\Desktop\SystemLook_x64.exe
2014-01-10 12:59 - 2014-01-10 12:59 - 00006436 _____ C:\Windows\setupact.log
2014-01-10 12:58 - 2014-01-10 12:58 - 00000320 _____ C:\Windows\PFRO.log
2014-01-09 23:02 - 2014-01-09 23:02 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-09 22:43 - 2014-01-09 22:43 - 00000000 ____D C:\Program Files (x86)\HiJackThis
2014-01-09 22:43 - 2014-01-09 22:32 - 00024064 _____ C:\Windows\zoek-delete.exe
2014-01-09 22:34 - 2014-01-09 22:52 - 00103647 _____ C:\zoek-results.log
2014-01-09 22:32 - 2014-01-09 22:40 - 00000000 ____D C:\zoek_backup
2014-01-09 22:32 - 2014-01-09 22:32 - 01281536 _____ C:\Users\Alex\Desktop\zoek.exe
2014-01-09 22:30 - 2014-01-10 17:25 - 01932166 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-01-09 22:26 - 2014-01-10 17:25 - 00000000 ____D C:\FRST
2014-01-09 22:17 - 2014-01-09 22:17 - 00000894 _____ C:\FixitRegBackup.reg
2014-01-09 22:10 - 2014-01-09 22:10 - 00024419 _____ C:\ComboFix.txt
2014-01-09 21:51 - 2014-01-09 22:10 - 00000000 ____D C:\Qoobox
2014-01-09 21:51 - 2011-06-25 22:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-09 21:51 - 2010-11-07 09:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-09 21:51 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-09 21:51 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-09 21:51 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-09 21:51 - 2000-08-30 16:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-09 21:51 - 2000-08-30 16:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-09 21:51 - 2000-08-30 16:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-09 21:50 - 2014-01-09 22:09 - 00000000 ____D C:\Windows\erdnt
2014-01-09 21:49 - 2014-01-09 21:49 - 00000000 ____D C:\TDSSKiller_Quarantine
2014-01-09 21:44 - 2014-01-09 21:45 - 04101441 _____ C:\Users\Alex\Downloads\tdsskiller.zip
2014-01-09 21:28 - 2014-01-09 21:28 - 00201728 _____ (OldTimer Tools) C:\Users\Alex\Downloads\OTC.exe
2014-01-09 21:15 - 2014-01-09 21:15 - 05162489 ____R (Swearware) C:\Users\Alex\Desktop\ComboFix.exe
2014-01-09 19:24 - 2014-01-09 19:24 - 00001066 _____ C:\Users\Alex\Desktop\JRT.txt
2014-01-09 19:19 - 2014-01-09 19:19 - 01037068 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-01-09 19:19 - 2014-01-09 19:19 - 00000000 ____D C:\Windows\ERUNT
2014-01-09 19:13 - 2014-01-09 19:13 - 01233962 _____ C:\Users\Alex\Downloads\AdwCleaner.exe
2014-01-09 17:36 - 2014-01-09 17:36 - 00987410 _____ C:\Users\Alex\Desktop\SecurityCheck.exe
2014-01-09 17:35 - 2014-01-09 17:35 - 01233962 _____ C:\Users\Alex\Desktop\adwcleaner.exe
2014-01-09 17:34 - 2014-01-09 17:34 - 00000000 ____D C:\Users\Alex\AppData\Local\NVIDIA
2014-01-09 17:34 - 2013-12-09 18:15 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-01-09 17:34 - 2013-12-09 18:14 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 15230352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-09 17:30 - 2013-12-19 12:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 02698272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-09 17:30 - 2013-12-19 12:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-09 17:30 - 2013-12-05 00:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-01-09 17:30 - 2013-12-05 00:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-01-09 17:30 - 2013-12-05 00:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-01-09 17:30 - 2013-11-28 05:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-09 17:30 - 2013-11-28 05:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-09 17:30 - 2013-11-22 00:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-09 01:07 - 2014-01-09 01:14 - 217714560 _____ (NVIDIA Corporation) C:\Users\Alex\Desktop\332.21-desktop-win8-win7-winvista-64bit-english-whql.exe
2014-01-08 23:33 - 2014-01-08 23:33 - 00001065 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-08 23:31 - 2014-01-08 23:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-03 00:21 - 2014-01-03 00:21 - 00001979 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-31 03:44 - 2013-12-31 03:44 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-12-30 04:07 - 2013-12-30 04:07 - 00002253 _____ C:\Users\Alex\Desktop\Skyrim (SKSE).lnk
2013-12-29 13:15 - 2013-12-29 13:15 - 00000946 _____ C:\Users\Alex\Desktop\Core Temp.lnk
2013-12-29 12:49 - 2013-12-29 12:49 - 00001318 _____ C:\Users\Alex\Desktop\speedfan.exe - Shortcut.lnk
2013-12-29 09:51 - 2014-01-10 17:12 - 00000000 ____D C:\AdwCleaner
2013-12-29 09:16 - 2013-12-29 09:16 - 00001131 _____ C:\Users\Alex\Desktop\AIDA64 Extreme.lnk
2013-12-29 09:16 - 2013-12-29 09:16 - 00000000 ____D C:\Program Files (x86)\FinalWire
2013-12-27 23:24 - 2013-12-28 14:24 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-12-27 18:42 - 2013-12-27 18:42 - 00001044 _____ C:\Users\Alex\Desktop\EVGA Precision X.lnk
2013-12-27 18:42 - 2013-12-27 18:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA Precision X
2013-12-27 18:42 - 2013-12-27 18:42 - 00000000 ____D C:\Program Files (x86)\EVGA Precision X
2013-12-27 03:58 - 2014-01-04 09:20 - 00003336 _____ C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3530666769-31344507-419582560-1000
2013-12-26 15:07 - 2013-12-26 15:07 - 00001150 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-12-26 15:07 - 2013-12-26 15:07 - 00001126 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-12-26 12:41 - 2014-01-04 09:20 - 00003200 _____ C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3530666769-31344507-419582560-1000
2013-12-26 05:17 - 2009-07-06 10:48 - 00013368 _____ C:\Windows\SysWOW64\Drivers\AsUpIO.sys
2013-12-26 05:06 - 2013-12-26 05:06 - 00000000 ____D C:\Users\Alex\AppData\Local\DriverTuner
2013-12-26 04:31 - 2013-12-28 00:04 - 00000000 ____D C:\Users\Alex\Desktop\DDU
2013-12-26 04:26 - 2013-12-26 04:26 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-12-26 04:20 - 2014-01-10 12:59 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-26 04:19 - 2014-01-09 17:35 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-26 04:19 - 2014-01-09 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-26 04:19 - 2013-12-19 12:33 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-26 04:19 - 2013-12-19 12:33 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-26 04:19 - 2013-12-19 10:53 - 06671648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-12-26 04:19 - 2013-12-19 10:53 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-12-26 04:19 - 2013-12-19 10:53 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-12-26 04:19 - 2013-12-19 10:53 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-12-26 04:19 - 2013-12-19 10:53 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-12-26 04:19 - 2013-12-18 21:01 - 03539040 _____ C:\Windows\system32\nvcoproc.bin
2013-12-26 04:18 - 2014-01-09 17:34 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-26 04:18 - 2013-12-19 12:33 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-26 04:18 - 2013-12-19 12:33 - 03071656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-12-26 04:18 - 2013-12-19 12:33 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-12-26 04:18 - 2013-12-19 12:33 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-12-26 04:18 - 2013-11-14 03:55 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-12-26 04:18 - 2013-11-14 03:55 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-12-26 03:52 - 2013-05-09 21:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-26 03:52 - 2013-05-09 21:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-26 03:52 - 2013-05-09 20:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-26 03:52 - 2013-05-09 20:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-26 03:51 - 2013-12-26 03:51 - 00000000 ____D C:\Users\Alex\AppData\Local\WindowsApplication1
2013-12-26 03:49 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-26 03:41 - 2013-12-26 03:41 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-26 03:41 - 2013-12-26 03:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-26 03:41 - 2013-12-26 03:41 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-26 03:41 - 2013-12-26 03:41 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-26 03:41 - 2013-12-26 03:41 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-26 03:41 - 2013-12-26 03:41 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-26 03:41 - 2013-12-26 03:41 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-26 03:41 - 2013-12-26 03:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-26 03:41 - 2013-12-26 03:41 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-26 03:41 - 2013-12-26 03:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-26 03:41 - 2013-12-26 03:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-26 02:59 - 2013-12-26 02:59 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-12-26 02:58 - 2013-12-26 15:48 - 00000000 ____D C:\Users\Alex\AppData\Local\Origin
2013-12-26 02:57 - 2013-12-29 13:40 - 00000000 ____D C:\Program Files\Origin
2013-12-26 02:57 - 2013-12-26 02:57 - 00000784 _____ C:\Users\Public\Desktop\Origin.lnk
2013-12-26 02:34 - 2013-12-26 02:34 - 00000000 ____D C:\Users\Alex\Desktop\Unpark-CPU-App
2013-12-25 23:05 - 2013-12-25 23:05 - 00003336 _____ C:\Windows\System32\Tasks\{AF4FEC2E-3D6A-443B-B597-44404DCCB7E3}
2013-12-25 16:36 - 2013-10-29 18:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-25 16:36 - 2013-10-29 18:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-25 16:36 - 2013-10-05 12:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-25 16:36 - 2013-10-05 11:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-25 16:36 - 2013-07-08 21:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-25 16:36 - 2013-07-08 21:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-25 16:36 - 2013-07-08 21:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-25 16:36 - 2013-07-08 20:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-25 16:36 - 2013-07-08 20:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-12-25 16:36 - 2013-07-08 20:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-12-25 16:36 - 2013-07-04 04:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-25 16:36 - 2013-07-04 03:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-25 16:35 - 2013-10-03 18:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-25 16:35 - 2013-10-03 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-25 16:35 - 2013-10-03 18:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-25 16:35 - 2013-10-03 18:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-25 16:35 - 2013-10-03 17:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-12-25 16:35 - 2013-10-03 17:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-25 16:35 - 2013-10-03 17:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-12-25 16:35 - 2013-10-03 17:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-25 16:35 - 2013-09-27 17:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-25 16:35 - 2013-09-24 18:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-25 16:35 - 2013-09-24 18:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-25 16:35 - 2013-09-24 18:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-25 16:35 - 2013-09-24 18:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-25 16:35 - 2013-09-24 18:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-25 16:35 - 2013-09-24 18:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-25 16:35 - 2013-09-24 18:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-25 16:35 - 2013-09-24 18:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-25 16:35 - 2013-09-24 17:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-25 16:35 - 2013-09-24 17:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-25 16:35 - 2013-09-24 17:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-12-25 16:35 - 2013-09-24 17:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-12-25 16:35 - 2013-09-24 17:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-25 16:35 - 2013-09-07 18:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-25 16:35 - 2013-09-07 18:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-25 16:35 - 2013-09-07 18:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-12-25 16:35 - 2013-08-28 18:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-25 16:35 - 2013-08-28 18:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-25 16:35 - 2013-08-28 18:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-25 16:35 - 2013-08-28 18:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-12-25 16:35 - 2013-08-28 18:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-25 16:35 - 2013-08-28 17:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-12-25 16:35 - 2013-08-28 17:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-12-25 16:35 - 2013-08-28 17:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-25 16:35 - 2013-08-28 17:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-12-25 16:35 - 2013-08-28 17:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-12-25 16:35 - 2013-08-28 17:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-12-25 16:35 - 2013-08-28 16:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-12-25 16:35 - 2013-08-28 16:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-12-25 16:35 - 2013-08-28 16:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-12-25 16:35 - 2013-08-28 16:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-12-25 16:35 - 2013-08-04 18:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-25 16:35 - 2013-08-01 18:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-25 16:35 - 2013-08-01 18:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-25 16:35 - 2013-08-01 18:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-25 16:35 - 2013-08-01 17:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 17:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-25 16:35 - 2013-08-01 16:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-12-25 16:35 - 2013-08-01 16:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 16:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 16:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-12-25 16:35 - 2013-08-01 16:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-12-25 16:35 - 2013-07-25 18:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-25 16:35 - 2013-07-25 18:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-25 16:35 - 2013-07-25 17:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-25 16:35 - 2013-07-25 17:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-12-25 16:35 - 2013-07-25 01:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-25 16:35 - 2013-07-25 00:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-12-25 16:35 - 2013-07-12 02:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-25 16:35 - 2013-07-12 02:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-12-25 16:35 - 2013-07-08 21:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-25 16:35 - 2013-07-08 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-12-25 16:35 - 2013-07-04 04:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-25 16:35 - 2013-07-04 04:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-25 16:35 - 2013-07-04 04:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-25 16:35 - 2013-07-04 03:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-12-25 16:35 - 2013-07-04 03:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-12-25 16:35 - 2013-07-04 02:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-25 16:35 - 2013-07-02 20:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-25 16:35 - 2013-07-02 20:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-25 16:35 - 2013-06-25 14:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-25 16:35 - 2013-06-14 20:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-25 16:35 - 2013-06-05 21:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-25 16:35 - 2013-06-05 21:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-25 16:35 - 2013-06-05 21:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-25 16:35 - 2013-06-05 21:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-25 16:35 - 2013-06-05 20:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-25 16:35 - 2013-06-05 20:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-25 16:35 - 2013-06-05 20:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-25 16:35 - 2013-06-05 19:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-25 16:35 - 2013-06-05 19:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-25 16:35 - 2013-06-05 19:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-25 16:34 - 2013-10-11 18:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-25 16:34 - 2013-10-11 18:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-25 16:34 - 2013-10-11 18:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-25 16:34 - 2013-10-11 18:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-25 16:34 - 2013-10-11 18:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-25 16:34 - 2013-10-11 18:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-25 16:34 - 2013-10-11 18:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-25 16:34 - 2013-10-11 18:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-25 16:34 - 2013-10-11 18:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-25 16:34 - 2013-10-11 17:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-25 16:34 - 2013-10-11 17:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-25 16:34 - 2013-10-11 17:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-25 16:34 - 2013-10-11 17:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-25 16:34 - 2013-10-02 18:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-25 16:34 - 2013-10-02 18:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-25 16:34 - 2013-08-27 17:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-25 16:34 - 2013-08-01 04:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-25 16:34 - 2013-07-20 02:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-25 16:34 - 2013-07-20 02:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-25 16:03 - 2013-12-27 23:59 - 00002093 _____ C:\ProgramData\hpzinstall.log
2013-12-25 15:55 - 2013-12-25 15:55 - 00010406 _____ C:\Users\Alex\Documents\Uninstall Dragon Age 2 Demo.log
2013-12-25 15:55 - 2013-12-25 15:55 - 00010273 _____ C:\Users\Alex\Documents\Uninstall Dragon Age 2.log
2013-12-25 14:51 - 2014-01-10 13:04 - 00000193 _____ C:\Windows\WORDPAD.INI
2013-12-25 13:59 - 2013-12-25 14:14 - 211183464 _____ (NVIDIA Corporation) C:\Users\Alex\Desktop\331.82-desktop-win8-win7-winvista-64bit-english-whql.exe
2013-12-19 12:20 - 2013-12-19 12:20 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-12-17 13:55 - 2013-12-17 13:55 - 00000000 ____D C:\Users\Public\Documents\Telltale Games
2013-12-17 11:31 - 2014-01-04 11:57 - 00045056 ___SH C:\Users\Alex\AppData\Roaming\Thumbs.db
2013-12-16 16:25 - 2013-12-16 16:25 - 00000000 _____ C:\Windows\Minidump\121613-36816-01.dmp
 
==================== One Month Modified Files and Folders =======
 
2014-01-10 17:25 - 2014-01-10 17:25 - 00011916 _____ C:\Users\Alex\Desktop\FRST.txt
2014-01-10 17:25 - 2014-01-10 17:25 - 00000000 ____D C:\Users\Alex\Desktop\FRST-OlderVersion
2014-01-10 17:25 - 2014-01-09 22:30 - 01932166 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-01-10 17:25 - 2014-01-09 22:26 - 00000000 ____D C:\FRST
2014-01-10 17:13 - 2014-01-10 17:13 - 01932166 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-01-10 17:13 - 2011-02-18 01:25 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-10 17:12 - 2014-01-10 17:12 - 01932166 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2014-01-10 17:12 - 2013-12-29 09:51 - 00000000 ____D C:\AdwCleaner
2014-01-10 17:03 - 2008-06-27 08:59 - 00000282 _____ C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job
2014-01-10 16:40 - 2012-07-22 10:04 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-10 16:04 - 2009-12-25 14:29 - 01346351 _____ C:\Windows\WindowsUpdate.log
2014-01-10 14:15 - 2013-08-04 15:47 - 00000000 ____D C:\ProgramData\MFAData
2014-01-10 13:06 - 2009-12-25 13:53 - 00009728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-10 13:06 - 2009-12-25 13:53 - 00009728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-10 13:04 - 2013-12-25 14:51 - 00000193 _____ C:\Windows\WORDPAD.INI
2014-01-10 13:01 - 2014-01-10 13:01 - 00001912 _____ C:\Users\Alex\Desktop\SystemLook.txt
2014-01-10 13:00 - 2014-01-10 13:00 - 00165376 _____ C:\Users\Alex\Downloads\SystemLook_x64.exe
2014-01-10 13:00 - 2014-01-10 13:00 - 00165376 _____ C:\Users\Alex\Desktop\SystemLook_x64.exe
2014-01-10 12:59 - 2014-01-10 12:59 - 00006436 _____ C:\Windows\setupact.log
2014-01-10 12:59 - 2013-12-26 04:20 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-10 12:59 - 2011-12-22 15:09 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Spotify
2014-01-10 12:59 - 2011-02-18 01:25 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-10 12:59 - 2010-08-14 14:11 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-10 12:59 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-10 12:58 - 2014-01-10 12:58 - 00000320 _____ C:\Windows\PFRO.log
2014-01-10 01:37 - 2010-05-21 13:23 - 00790446 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-10 01:37 - 2009-07-13 21:13 - 00790446 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-10 01:31 - 2008-06-27 08:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-09 23:02 - 2014-01-09 23:02 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-09 23:02 - 2010-01-22 17:28 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-09 22:52 - 2014-01-09 22:34 - 00103647 _____ C:\zoek-results.log
2014-01-09 22:43 - 2014-01-09 22:43 - 00000000 ____D C:\Program Files (x86)\HiJackThis
2014-01-09 22:40 - 2014-01-09 22:32 - 00000000 ____D C:\zoek_backup
2014-01-09 22:40 - 2009-12-25 13:57 - 00000000 ____D C:\Users\Alex
2014-01-09 22:32 - 2014-01-09 22:43 - 00024064 _____ C:\Windows\zoek-delete.exe
2014-01-09 22:32 - 2014-01-09 22:32 - 01281536 _____ C:\Users\Alex\Desktop\zoek.exe
2014-01-09 22:22 - 2012-09-15 16:51 - 00000000 ____D C:\Program Files\BitComet
2014-01-09 22:17 - 2014-01-09 22:17 - 00000894 _____ C:\FixitRegBackup.reg
2014-01-09 22:15 - 2012-09-15 16:51 - 00000000 ____D C:\Users\Alex\AppData\Roaming\BitComet
2014-01-09 22:10 - 2014-01-09 22:10 - 00024419 _____ C:\ComboFix.txt
2014-01-09 22:10 - 2014-01-09 21:51 - 00000000 ____D C:\Qoobox
2014-01-09 22:10 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Default
2014-01-09 22:09 - 2014-01-09 21:50 - 00000000 ____D C:\Windows\erdnt
2014-01-09 22:07 - 2009-07-13 18:34 - 00000215 _____ C:\Windows\system.ini
2014-01-09 21:53 - 2009-08-04 05:52 - 00000000 ____D C:\Users\Alex\AppData\Local\Google
2014-01-09 21:49 - 2014-01-09 21:49 - 00000000 ____D C:\TDSSKiller_Quarantine
2014-01-09 21:45 - 2014-01-09 21:44 - 04101441 _____ C:\Users\Alex\Downloads\tdsskiller.zip
2014-01-09 21:28 - 2014-01-09 21:28 - 00201728 _____ (OldTimer Tools) C:\Users\Alex\Downloads\OTC.exe
2014-01-09 21:15 - 2014-01-09 21:15 - 05162489 ____R (Swearware) C:\Users\Alex\Desktop\ComboFix.exe
2014-01-09 19:24 - 2014-01-09 19:24 - 00001066 _____ C:\Users\Alex\Desktop\JRT.txt
2014-01-09 19:19 - 2014-01-09 19:19 - 01037068 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-01-09 19:19 - 2014-01-09 19:19 - 00000000 ____D C:\Windows\ERUNT
2014-01-09 19:13 - 2014-01-09 19:13 - 01233962 _____ C:\Users\Alex\Downloads\AdwCleaner.exe
2014-01-09 17:36 - 2014-01-09 17:36 - 00987410 _____ C:\Users\Alex\Desktop\SecurityCheck.exe
2014-01-09 17:35 - 2014-01-09 17:35 - 01233962 _____ C:\Users\Alex\Desktop\adwcleaner.exe
2014-01-09 17:35 - 2013-12-26 04:19 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-09 17:34 - 2014-01-09 17:34 - 00000000 ____D C:\Users\Alex\AppData\Local\NVIDIA
2014-01-09 17:34 - 2013-12-26 04:19 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-09 17:34 - 2013-12-26 04:18 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-09 01:14 - 2014-01-09 01:07 - 217714560 _____ (NVIDIA Corporation) C:\Users\Alex\Desktop\332.21-desktop-win8-win7-winvista-64bit-english-whql.exe
2014-01-08 23:33 - 2014-01-08 23:33 - 00001065 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-08 23:33 - 2010-08-28 19:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 23:32 - 2014-01-08 23:31 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-04 11:57 - 2013-12-17 11:31 - 00045056 ___SH C:\Users\Alex\AppData\Roaming\Thumbs.db
2014-01-04 09:57 - 2010-01-21 21:43 - 00000000 ____D C:\Windows\Minidump
2014-01-04 09:21 - 2013-08-10 01:12 - 00000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2014-01-04 09:20 - 2013-12-27 03:58 - 00003336 _____ C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3530666769-31344507-419582560-1000
2014-01-04 09:20 - 2013-12-26 12:41 - 00003200 _____ C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3530666769-31344507-419582560-1000
2014-01-04 09:20 - 2010-10-17 02:01 - 00000000 ____D C:\Program Files\LockHunter
2014-01-04 09:20 - 2010-05-20 14:17 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-03 00:21 - 2014-01-03 00:21 - 00001979 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-03 00:21 - 2009-09-10 19:27 - 00000000 ____D C:\Users\Alex\AppData\Local\Adobe
2014-01-03 00:21 - 2009-09-10 19:25 - 00000000 ____D C:\ProgramData\Adobe
2014-01-03 00:21 - 2009-09-10 19:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-02 03:27 - 2012-08-02 14:57 - 00000000 ____D C:\Users\Alex\AppData\Local\Skyrim
2013-12-31 03:44 - 2013-12-31 03:44 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-12-30 04:07 - 2013-12-30 04:07 - 00002253 _____ C:\Users\Alex\Desktop\Skyrim (SKSE).lnk
2013-12-30 02:24 - 2009-07-10 14:55 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-12-29 14:11 - 2010-03-10 23:51 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-29 13:42 - 2010-03-10 23:51 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-29 13:40 - 2013-12-26 02:57 - 00000000 ____D C:\Program Files\Origin
2013-12-29 13:15 - 2013-12-29 13:15 - 00000946 _____ C:\Users\Alex\Desktop\Core Temp.lnk
2013-12-29 12:49 - 2013-12-29 12:49 - 00001318 _____ C:\Users\Alex\Desktop\speedfan.exe - Shortcut.lnk
2013-12-29 09:21 - 2009-07-10 14:55 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2013-12-29 09:16 - 2013-12-29 09:16 - 00001131 _____ C:\Users\Alex\Desktop\AIDA64 Extreme.lnk
2013-12-29 09:16 - 2013-12-29 09:16 - 00000000 ____D C:\Program Files (x86)\FinalWire
2013-12-29 08:39 - 2009-04-17 10:15 - 00000000 ____D C:\Program Files\ASUS
2013-12-29 08:39 - 2009-04-17 09:55 - 00000000 ____D C:\Windows\System32\Tasks\ASUS
2013-12-28 14:24 - 2013-12-27 23:24 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-12-28 14:24 - 2012-08-04 21:19 - 00000000 ____D C:\Users\Alex\Documents\Nexus Mod Manager
2013-12-28 13:48 - 2011-12-22 15:09 - 00000000 ____D C:\Users\Alex\AppData\Local\Spotify
2013-12-28 13:47 - 2011-01-03 21:22 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-12-28 00:19 - 2012-08-04 21:19 - 00000000 ____D C:\Users\Alex\AppData\Local\Black_Tree_Gaming
2013-12-28 00:04 - 2013-12-26 04:31 - 00000000 ____D C:\Users\Alex\Desktop\DDU
2013-12-27 23:59 - 2013-12-25 16:03 - 00002093 _____ C:\ProgramData\hpzinstall.log
2013-12-27 23:58 - 2009-12-25 13:56 - 00000000 ____D C:\ProgramData\HP
2013-12-27 18:42 - 2013-12-27 18:42 - 00001044 _____ C:\Users\Alex\Desktop\EVGA Precision X.lnk
2013-12-27 18:42 - 2013-12-27 18:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA Precision X
2013-12-27 18:42 - 2013-12-27 18:42 - 00000000 ____D C:\Program Files (x86)\EVGA Precision X
2013-12-27 09:04 - 2013-11-23 09:16 - 00000000 ____D C:\Users\Alex\AppData\Local\NVIDIA Corporation
2013-12-27 07:54 - 2009-07-13 21:08 - 00032610 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-27 03:07 - 2013-11-12 07:16 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-12-26 15:49 - 2013-11-11 22:35 - 00000000 ____D C:\ProgramData\Origin
2013-12-26 15:48 - 2013-12-26 02:58 - 00000000 ____D C:\Users\Alex\AppData\Local\Origin
2013-12-26 15:40 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-12-26 15:07 - 2013-12-26 15:07 - 00001150 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-12-26 15:07 - 2013-12-26 15:07 - 00001126 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-12-26 15:06 - 2010-03-10 23:51 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-12-26 05:16 - 2009-04-17 10:15 - 00000000 ____D C:\Program Files (x86)\ASUS
2013-12-26 05:16 - 2009-04-17 09:53 - 00001769 _____ C:\Windows\Language_trs.ini
2013-12-26 05:06 - 2013-12-26 05:06 - 00000000 ____D C:\Users\Alex\AppData\Local\DriverTuner
2013-12-26 04:26 - 2013-12-26 04:26 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-12-26 04:19 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\Help
2013-12-26 04:05 - 2009-07-13 21:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-26 04:04 - 2009-12-25 14:38 - 00001409 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-26 04:04 - 2009-07-10 12:12 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 04:04 - 2009-07-10 12:12 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-26 04:02 - 2013-04-18 10:56 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-26 04:02 - 2013-04-18 10:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-26 04:02 - 2009-07-13 20:45 - 00420960 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-26 03:57 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-26 03:51 - 2013-12-26 03:51 - 00000000 ____D C:\Users\Alex\AppData\Local\WindowsApplication1
2013-12-26 03:51 - 2008-06-27 08:37 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-26 03:41 - 2013-12-26 03:41 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-26 03:41 - 2013-12-26 03:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-26 03:41 - 2013-12-26 03:41 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-26 03:41 - 2013-12-26 03:41 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-26 03:41 - 2013-12-26 03:41 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-26 03:41 - 2013-12-26 03:41 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-26 03:41 - 2013-12-26 03:41 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-26 03:41 - 2013-12-26 03:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-26 03:41 - 2013-12-26 03:41 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-26 03:41 - 2013-12-26 03:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-26 03:41 - 2013-12-26 03:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-26 03:41 - 2013-12-26 03:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-26 03:41 - 2013-12-26 03:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-26 03:12 - 2013-08-04 00:04 - 00000000 ____D C:\Windows\system32\MRT
2013-12-26 02:59 - 2013-12-26 02:59 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-12-26 02:57 - 2013-12-26 02:57 - 00000784 _____ C:\Users\Public\Desktop\Origin.lnk
2013-12-26 02:57 - 2009-10-09 18:09 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-12-26 02:51 - 2010-03-10 23:52 - 00291296 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-12-26 02:34 - 2013-12-26 02:34 - 00000000 ____D C:\Users\Alex\Desktop\Unpark-CPU-App
2013-12-25 23:05 - 2013-12-25 23:05 - 00003336 _____ C:\Windows\System32\Tasks\{AF4FEC2E-3D6A-443B-B597-44404DCCB7E3}
2013-12-25 16:03 - 2009-09-13 18:21 - 00000000 ____D C:\Program Files (x86)\HP
2013-12-25 16:02 - 2010-11-28 17:44 - 00000000 ____D C:\Users\Alex\AppData\Local\Thunderbird
2013-12-25 16:02 - 2010-11-28 17:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-25 15:59 - 2011-01-04 22:49 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-25 15:59 - 2011-01-04 22:49 - 00000000 ____D C:\ProgramData\Skype
2013-12-25 15:55 - 2013-12-25 15:55 - 00010406 _____ C:\Users\Alex\Documents\Uninstall Dragon Age 2 Demo.log
2013-12-25 15:55 - 2013-12-25 15:55 - 00010273 _____ C:\Users\Alex\Documents\Uninstall Dragon Age 2.log
2013-12-25 15:55 - 2009-11-07 23:33 - 00000000 ____D C:\Users\Alex\Documents\BioWare
2013-12-25 14:14 - 2013-12-25 13:59 - 211183464 _____ (NVIDIA Corporation) C:\Users\Alex\Desktop\331.82-desktop-win8-win7-winvista-64bit-english-whql.exe
2013-12-25 07:49 - 2009-04-17 10:23 - 00000000 ____D C:\ASUS.000
2013-12-19 12:33 - 2014-01-09 17:30 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 15230352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-12-19 12:33 - 2014-01-09 17:30 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 02698272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-12-19 12:33 - 2014-01-09 17:30 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-12-19 12:33 - 2013-12-26 04:19 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-19 12:33 - 2013-12-26 04:19 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-19 12:33 - 2013-12-26 04:18 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-19 12:33 - 2013-12-26 04:18 - 03071656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-12-19 12:33 - 2013-12-26 04:18 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-12-19 12:33 - 2013-12-26 04:18 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-12-19 12:20 - 2013-12-19 12:20 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-12-19 10:53 - 2013-12-26 04:19 - 06671648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-12-19 10:53 - 2013-12-26 04:19 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-12-19 10:53 - 2013-12-26 04:19 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-12-19 10:53 - 2013-12-26 04:19 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-12-19 10:53 - 2013-12-26 04:19 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-12-18 21:01 - 2013-12-26 04:19 - 03539040 _____ C:\Windows\system32\nvcoproc.bin
2013-12-17 13:55 - 2013-12-17 13:55 - 00000000 ____D C:\Users\Public\Documents\Telltale Games
2013-12-16 16:25 - 2013-12-16 16:25 - 00000000 _____ C:\Windows\Minidump\121613-36816-01.dmp
2013-12-12 20:17 - 2011-12-20 13:24 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
 
Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-01-09 19:44
 
==================== End Of Log ============================
Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

You can delete System Look and FRST from the Desktop or folder they were save to, also delete this folder C:\FRST

 

Other than that you should be good to go, also read the following link to fully understand PC security and best practices, you may find it useful....

 

http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/#entry2316629

 

Take care,

 

Kevin...

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.