Win32.Load Money and Yandex removal advice please

[wendyseana]

:greeting: It is with great relief - I suspect and hope - that I have found the Malware Removal community and forums hosted by Spybot. This is my first post and although I have read up on the general before you post 'To do's and don'ts' it may yet happen that I make a mistake for which I ask your patient indulgence - I will try to do my best to learn and evolve.

So my problems are 2 :

The first is the high level threat of the title Win.32 Load Money which Spybot identifies but can only temporarily remove.

The second is the hijacking browser Yandex which, was I believe, behind a crashing of my computer about a week ago. Spybot however did not identify Yandex probably because I created a 'whitelist' after receiving my computer back from one of our town's computer service technicians with the expectation that Yandex had been removed though, as I subsequently discovered he had not, or not thoroughly enough.

As per your general instructions in 'Before you post ' I attach the DDS and aswMBR logs.

I await your response with new confidence that I have finally found the IT equivalent of an :angel: ie., a resource for my computer ailments that will not only suggest the right fix but really help me learn more about this brave new world of IT.

Yours faithfully, Wendy

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.16521
Run by gokarna at 23:48:48 on 2014-03-29
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3062.1911 [GMT 2:00]
.
AV: Spybot - Search and Destroy *Enabled/Updated* {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Bluetooth Suite\adminservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Winamp\winampa.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Bluetooth Suite\BtvStack.exe
C:\Program Files\Bluetooth Suite\AthBtTray.exe
C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uDefault_Page_URL = about:blank
mSearch Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1394956558&from=cor&uid=ST9500325AS_5VEJD9L0XXXX5VEJD9L0&q={searchTerms}
mDefault_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1394956558&from=cor&uid=ST9500325AS_5VEJD9L0XXXX5VEJD9L0&q={searchTerms}
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: {8984B388-A5BB-4DF7-B274-77B879E179DB} - <orphaned>
BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dll
BHO: {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - <orphaned>
uRun: [Spybot-S&D Cleaning] "c:\program files\spybot - search & destroy 2\SDCleaner.exe" /autoclean
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [LGODDFU] "c:\program files\lg_fwupdate\fwupdate.exe" blrun
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [AtherosBtStack] "c:\program files\bluetooth suite\btvstack.exe"
mRun: [AthBtTray] "c:\program files\bluetooth suite\athbttray.exe"
mRun: [SDTray] "c:\program files\spybot - search & destroy 2\SDTray.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: c:\users\gokarna\appdata\roaming\micros~1\windows\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.8.141\SSScheduler.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_03\bin\npjpi150_03.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{733E2F48-96DF-4D1F-8B3A-CF5DC96FDA40} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{733E2F48-96DF-4D1F-8B3A-CF5DC96FDA40}\14A5A554 : DHCPNameServer = 195.175.39.40 195.175.39.39 192.168.2.10
TCP: Interfaces\{733E2F48-96DF-4D1F-8B3A-CF5DC96FDA40}\742716E646028416C696360284F64756C6 : DHCPNameServer = 10.11.128.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\gokarna\appdata\roaming\mozilla\firefox\profiles\hullhm7j.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx browser plug-in\npdivx32.dll
FF - plugin: c:\program files\mcafee security scan\3.8.141\npMcAfeeMSS.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_77.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;c:\windows\system32\drivers\iaStorA.sys [2014-3-21 541680]
R0 iaStorF;iaStorF;c:\windows\system32\drivers\iaStorF.sys [2014-3-21 26608]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\drivers\iusb3hcs.sys [2014-3-21 16880]
R1 SDHookDriver;Hook Test Driver;c:\program files\spybot - search & destroy 2\SDHookDrv32.sys [2014-3-15 46248]
R2 AtherosSvc;AtherosSvc;c:\program files\bluetooth suite\AdminService.exe [2012-5-30 97920]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2014-3-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2014-3-15 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2014-3-15 171416]
R2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files\bluetooth suite\Ath_CoexAgent.exe [2012-5-30 327296]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\drivers\btath_flt.sys [2012-5-30 35968]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2014-3-21 302920]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys [2014-3-21 101192]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\drivers\btath_bus.sys [2014-3-21 27976]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\drivers\btath_hcrp.sys [2014-3-21 158688]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\drivers\btath_lwflt.sys [2014-3-21 66448]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\drivers\btath_rcp.sys [2014-3-21 119624]
R3 BtFilter;BtFilter;c:\windows\system32\drivers\btfilter.sys [2014-3-21 496456]
R3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\drivers\TeeDriver.sys [2014-3-21 85976]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\drivers\RtsPStor.sys [2014-3-21 258704]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2014-3-21 643656]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [2007-8-3 9344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 Update Mega Browse;Update Mega Browse;"c:\program files\mega browse\updatemegabrowse.exe" --> c:\program files\mega browse\updateMegaBrowse.exe [?]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-3-22 108032]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-16 235696]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2014-3-13 15872]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2014-3-19 52224]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2014-3-15 1343400]
S3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\drivers\ZTEusbvoice.sys [2014-3-4 107776]
.
=============== Created Last 30 ================
.
2014-03-29 14:13:08 -------- d-----w- c:\users\gokarna\appdata\roaming\uTorrent
2014-03-28 20:04:42 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f0354568-d455-4741-96a9-201fa625da5f}\offreg.dll
2014-03-27 06:56:05 -------- d-sh--w- C:\$RECYCLE.BIN
2014-03-26 15:45:44 7969936 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f0354568-d455-4741-96a9-201fa625da5f}\mpengine.dll
2014-03-23 01:00:36 454656 ----a-w- c:\windows\system32\vbscript.dll
2014-03-21 14:47:36 16880 ----a-w- c:\windows\system32\drivers\iusb3hcs.sys
2014-03-21 14:46:47 3109888 ----a-w- c:\windows\system32\drivers\athr.sys
2014-03-21 14:45:37 634144 ----a-w- c:\windows\system32\nvvsvc.exe
2014-03-21 14:45:37 62752 ----a-w- c:\windows\system32\nvshext.dll
2014-03-21 14:45:37 4119328 ----a-w- c:\windows\system32\nvcpl.dll
2014-03-21 14:45:37 3014432 ----a-w- c:\windows\system32\nvsvc.dll
2014-03-21 14:45:37 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2014-03-21 14:45:37 223008 ----a-w- c:\windows\system32\nvmctray.dll
2014-03-21 14:45:11 53024 ----a-w- c:\windows\system32\OpenCL.dll
2014-03-21 14:44:33 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-03-21 14:44:28 -------- d-----w- c:\program files\NVIDIA Corporation
2014-03-21 14:44:03 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2014-03-21 14:43:59 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-03-21 14:43:58 6271872 ----a-w- c:\windows\system32\nvopencl.dll
2014-03-21 14:43:54 20542752 ----a-w- c:\windows\system32\nvoglv32.dll
2014-03-21 14:43:49 2728736 ----a-w- c:\windows\system32\nvcuvid.dll
2014-03-21 14:43:49 15042928 ----a-w- c:\windows\system32\nvd3dum.dll
2014-03-21 14:43:46 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll
2014-03-21 14:43:45 7959000 ----a-w- c:\windows\system32\nvcuda.dll
2014-03-21 14:43:42 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2014-03-21 14:43:39 2539128 ----a-w- c:\windows\system32\nvapi.dll
2014-03-21 14:43:25 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll
2014-03-21 14:43:25 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll
2014-03-21 14:42:40 -------- d-----w- c:\program files\CONEXANT
2014-03-21 14:42:28 1293440 ----a-w- c:\windows\system32\drivers\CHDRT32.sys
2014-03-21 14:42:26 352256 ----a-w- c:\windows\system32\UCI32A80.dll
2014-03-21 14:42:24 90752 ----a-w- c:\windows\system32\FMPropPageExt.dll
2014-03-21 14:42:20 1475200 ----a-w- c:\windows\system32\CX32AP51.dll
2014-03-21 14:40:10 892704 ----a-w- c:\windows\system32\nvhdagenco3220103.dll
2014-03-21 14:40:10 28448 ----a-w- c:\windows\system32\nvhdap32.dll
2014-03-21 14:40:10 154400 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2014-03-21 14:39:47 541680 ----a-w- c:\windows\system32\drivers\iaStorA.sys
2014-03-21 14:39:47 26608 ----a-w- c:\windows\system32\drivers\iaStorF.sys
2014-03-21 14:39:06 643656 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2014-03-21 14:39:03 85064 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-03-21 14:36:38 85976 ----a-w- c:\windows\system32\drivers\TeeDriver.sys
2014-03-21 14:36:38 1629040 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2014-03-21 14:36:12 258704 ----a-w- c:\windows\system32\drivers\RtsPStor.sys
2014-03-21 14:36:10 9888400 ----a-w- c:\windows\system32\RtsPStorIcon.dll
2014-03-21 14:34:04 158688 ----a-w- c:\windows\system32\drivers\btath_hcrp.sys
2014-03-21 14:32:48 27976 ----a-w- c:\windows\system32\drivers\btath_bus.sys
2014-03-21 14:31:24 496456 ----a-w- c:\windows\system32\drivers\btfilter.sys
2014-03-21 14:27:24 66448 ----a-w- c:\windows\system32\drivers\btath_lwflt.sys
2014-03-21 14:27:16 302920 ----a-w- c:\windows\system32\drivers\btath_a2dp.sys
2014-03-21 14:27:16 119624 ----a-w- c:\windows\system32\drivers\btath_rcp.sys
2014-03-21 14:27:16 101192 ----a-w- c:\windows\system32\drivers\btath_avdt.sys
2014-03-21 09:51:51 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2014-03-21 09:51:51 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2014-03-21 09:51:51 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2014-03-21 09:51:51 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2014-03-21 09:51:51 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2014-03-21 07:48:21 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2014-03-21 07:48:17 317440 ----a-w- c:\windows\system32\spoolsv.exe
2014-03-21 07:48:13 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-21 07:48:09 2616320 ----a-w- c:\windows\explorer.exe
2014-03-21 07:48:08 3419136 ----a-w- c:\windows\system32\d2d1.dll
2014-03-21 07:48:08 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2014-03-21 01:21:06 -------- d-----w- c:\windows\Migration
2014-03-21 01:10:58 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-21 01:10:57 164864 ----a-w- c:\program files\windows media player\wmplayer.exe
2014-03-21 01:02:14 1505280 ----a-w- c:\windows\system32\d3d11.dll
2014-03-20 08:31:56 369848 ----a-w- c:\windows\system32\drivers\cng.sys
2014-03-20 08:30:58 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
2014-03-20 08:25:20 918528 ----a-w- c:\windows\system32\rdpcorets.dll
2014-03-20 08:25:20 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-03-20 08:25:04 101720 ----a-w- c:\windows\system32\consent.exe
2014-03-20 08:25:03 47104 ----a-w- c:\windows\system32\appinfo.dll
2014-03-20 01:02:57 -------- d-----w- c:\windows\system32\SPReview
2014-03-20 01:02:32 -------- d-----w- c:\windows\system32\EventProviders
2014-03-20 01:00:39 -------- d-----w- c:\windows\system32\MRT
2014-03-19 14:16:08 1130824 ----a-w- c:\windows\system32\dfshim.dll
2014-03-19 14:16:05 53760 ----a-w- c:\windows\system32\LSCSHostPolicy.dll
2014-03-19 14:16:05 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2014-03-19 14:16:05 11776 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-19 14:16:02 954752 ----a-w- c:\windows\system32\mfc40.dll
2014-03-19 14:16:02 954288 ----a-w- c:\windows\system32\mfc40u.dll
2014-03-19 14:16:02 80896 ----a-w- c:\windows\system32\RDVGHelper.exe
2014-03-19 14:16:02 120320 ----a-w- c:\windows\system32\tssrvlic.dll
2014-03-19 14:16:01 1159168 ----a-w- c:\windows\system32\sysmain.dll
2014-03-19 14:14:59 9728 ----a-w- c:\windows\system32\sscore.dll
2014-03-19 13:17:54 -------- d-----w- c:\program files\McAfee Security Scan
2014-03-16 08:04:39 -------- d-----w- c:\windows\system32\appmgmt
2014-03-16 07:58:25 -------- d-----w- c:\users\gokarna\appdata\roaming\AnySend
2014-03-16 07:58:12 -------- d-----w- c:\programdata\AnySend
2014-03-16 07:56:10 -------- d-----w- c:\users\gokarna\appdata\roaming\sweet-page
2014-03-16 07:55:39 -------- d-----w- c:\users\gokarna\appdata\roaming\systweak
2014-03-16 07:48:41 128000 ----a-w- c:\program files\uninstall information\97\4258\uninstall.exe
2014-03-16 07:35:56 -------- d-----w- c:\programdata\Guard.Mail.Ru
2014-03-16 07:34:48 -------- d-----w- c:\users\gokarna\appdata\local\Yandex
2014-03-16 07:34:45 -------- d-----w- c:\users\gokarna\appdata\roaming\Opera Software
2014-03-16 07:34:45 -------- d-----w- c:\users\gokarna\appdata\local\Opera
2014-03-16 07:34:41 -------- d-----w- c:\users\gokarna\appdata\local\Chromium
2014-03-16 07:34:38 -------- d-----w- c:\users\gokarna\appdata\roaming\Yandex
2014-03-16 07:33:53 -------- d-----w- c:\users\gokarna\appdata\roaming\PerformerSoft
2014-03-16 07:33:51 -------- d-----w- c:\users\gokarna\appdata\roaming\freegames111
2014-03-16 07:31:22 -------- d-----w- c:\users\gokarna\appdata\roaming\DRPSu
2014-03-16 07:30:39 -------- d-----w- c:\program files\Mail.Ru
2014-03-16 07:30:20 101448 ----a-w- c:\windows\system32\RTNUninst32.dll
2014-03-16 07:17:08 -------- d-----w- c:\windows\system32\wbem\framework\root\OpenHardwareMonitor
2014-03-16 07:17:08 -------- d-----w- c:\windows\system32\wbem\framework\root
2014-03-16 07:17:08 -------- d-----w- c:\windows\system32\wbem\Framework
2014-03-16 07:15:06 -------- d-----w- c:\users\gokarna\appdata\roaming\OpenCandy
2014-03-16 00:48:28 1699328 ----a-w- c:\windows\system32\esent.dll
2014-03-16 00:48:28 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2014-03-16 00:48:27 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2014-03-16 00:48:27 74240 ----a-w- c:\windows\system32\fsutil.exe
2014-03-16 00:48:27 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2014-03-16 00:48:27 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2014-03-16 00:48:27 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2014-03-16 00:48:27 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2014-03-16 00:48:23 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2014-03-16 00:48:23 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2014-03-16 00:48:23 219648 ----a-w- c:\windows\system32\fsquirt.exe
2014-03-15 21:36:30 -------- d-----w- c:\users\gokarna\appdata\local\Macromedia
2014-03-15 21:29:26 -------- d-----w- c:\programdata\McAfee Security Scan
2014-03-15 21:28:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-15 21:28:58 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-15 21:24:26 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-15 12:38:01 -------- d-sh--w- c:\windows\system32\%APPDATA%
2014-03-15 12:23:05 -------- d-----w- c:\users\gokarna\appdata\local\Apple Computer
2014-03-15 12:22:51 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2014-03-15 12:22:04 -------- d-----w- c:\program files\iPod
2014-03-15 12:22:03 -------- d-----w- c:\program files\iTunes
2014-03-15 12:02:59 -------- d-----w- c:\users\gokarna\appdata\local\Apple
2014-03-15 12:02:25 -------- d-----w- c:\program files\Bonjour
2014-03-15 11:08:15 18968 ----a-w- c:\windows\system32\sdnclean.exe
2014-03-15 11:08:14 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2014-03-15 11:06:43 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
2014-03-15 11:06:16 -------- d-----w- c:\users\gokarna\appdata\local\Programs
2014-03-15 08:17:53 -------- d-----w- c:\users\gokarna\appdata\local\ElevatedDiagnostics
2014-03-15 07:43:38 -------- d-----w- c:\users\gokarna\appdata\local\Diagnostics
2014-03-15 07:30:05 -------- d-----w- c:\windows\system32\Wat
2014-03-15 05:35:41 9728 ----a-w- c:\windows\system32\Wdfres.dll
2014-03-15 05:35:41 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-03-15 05:35:01 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-03-15 05:35:01 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-03-15 05:35:00 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-03-15 05:35:00 613888 ----a-w- c:\windows\system32\WUDFx.dll
2014-03-15 05:35:00 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-03-15 05:35:00 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2014-03-15 05:35:00 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-03-15 05:33:56 5120 ----a-w- c:\windows\system32\wmi.dll
2014-03-15 05:33:56 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-03-13 07:05:11 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-03-13 07:05:08 626688 ----a-w- c:\windows\system32\usp10.dll
2014-03-13 07:05:07 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2014-03-13 07:05:07 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2014-03-13 07:05:07 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2014-03-13 07:05:03 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2014-03-13 07:04:43 376832 ----a-w- c:\windows\system32\dpnet.dll
2014-03-13 07:04:43 31232 ----a-w- c:\windows\system32\prevhost.exe
2014-03-13 07:04:43 2560 ----a-w- c:\windows\system32\dpnaddr.dll
2014-03-13 07:04:09 196328 ----a-w- c:\windows\system32\drivers\fvevol.sys
2014-03-13 07:04:07 708608 ----a-w- c:\program files\common files\system\wab32.dll
2014-03-13 07:04:07 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2014-03-13 07:04:07 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-03-13 07:04:05 69632 ----a-w- c:\windows\system32\smss.exe
2014-03-13 07:04:05 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-03-13 07:03:10 478720 ----a-w- c:\windows\system32\timedate.cpl
2014-03-13 07:03:09 75776 ----a-w- c:\windows\system32\psisrndr.ax
2014-03-13 07:03:09 72704 ----a-w- c:\windows\system32\Mpeg2Data.ax
2014-03-13 07:03:09 59904 ----a-w- c:\windows\system32\MSDvbNP.ax
2014-03-13 07:03:09 465408 ----a-w- c:\windows\system32\psisdecd.dll
2014-03-13 07:03:09 204288 ----a-w- c:\windows\system32\MSNP.ax
2014-03-13 07:03:08 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2014-03-13 07:03:08 15872 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-03-13 07:03:08 134656 ----a-w- c:\windows\system32\rdpudd.dll
2014-03-13 07:03:01 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2014-03-13 07:03:01 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2014-03-13 07:02:40 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2014-03-13 07:02:40 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2014-03-13 07:02:40 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2014-03-13 07:02:39 571904 ----a-w- c:\windows\system32\oleaut32.dll
2014-03-13 07:02:39 233472 ----a-w- c:\windows\system32\oleacc.dll
2014-03-13 07:02:28 1785344 ----a-w- c:\program files\windows journal\Journal.exe
2014-03-13 07:02:25 36864 ----a-w- c:\windows\system32\tsgqec.dll
2014-03-13 07:02:25 3217408 ----a-w- c:\windows\system32\mstscax.dll
2014-03-13 07:02:25 131584 ----a-w- c:\windows\system32\aaclient.dll
2014-03-13 07:02:11 1389568 ----a-w- c:\windows\system32\msxml6.dll
2014-03-13 07:02:10 741376 ----a-w- c:\windows\system32\inetcomm.dll
2014-03-13 07:01:12 187752 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2014-03-13 07:01:10 67072 ----a-w- c:\windows\system32\packager.dll
2014-03-13 06:59:42 642048 ----a-w- c:\windows\system32\CPFilters.dll
2014-03-13 06:58:52 314880 ----a-w- c:\windows\system32\webio.dll
2014-03-13 06:57:55 1137664 ----a-w- c:\windows\system32\mfc42.dll
2014-03-13 06:57:54 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2014-03-13 06:57:50 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2014-03-13 06:57:43 123904 ----a-w- c:\windows\system32\poqexec.exe
2014-03-13 06:57:42 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-03-13 06:56:15 107520 ----a-w- c:\windows\system32\cdd.dll
2014-03-13 06:19:56 7969936 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2014-03-13 06:15:08 826880 ----a-w- c:\windows\system32\rdpcore.dll
2014-03-13 06:15:08 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2014-03-13 06:15:08 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys
2014-03-10 08:50:31 2422272 ----a-w- c:\windows\system32\wucltux.dll
2014-03-10 08:50:25 88576 ----a-w- c:\windows\system32\wudriver.dll
2014-03-10 08:50:20 33792 ----a-w- c:\windows\system32\wuapp.exe
2014-03-10 08:50:20 171904 ----a-w- c:\windows\system32\wuwebv.dll
2014-03-09 18:54:15 -------- d-----w- c:\users\gokarna\appdata\local\CrashDumps
2014-03-08 08:09:52 -------- d-----w- c:\users\gokarna\appdata\local\Microsoft Games
2014-03-07 18:50:13 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-03-07 14:08:09 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-03-04 20:42:41 -------- d-----w- c:\windows\Panther
2014-03-04 11:40:25 -------- d-----r- c:\program files\Skype
2014-03-04 11:28:40 -------- d-----w- c:\users\gokarna\appdata\local\BMExplorer
2014-03-04 11:28:35 -------- d-----w- c:\programdata\Atheros
2014-03-04 11:25:16 -------- d-----w- c:\users\gokarna\appdata\roaming\Atheros
2014-03-04 11:24:55 -------- d-----w- c:\program files\common files\Atheros
2014-03-04 11:24:49 -------- d-----w- c:\program files\Bluetooth Suite
2014-03-04 11:20:57 2231808 ----a-w- c:\windows\system32\athr.sys
2014-03-04 11:20:56 -------- d-----w- c:\program files\Qualcomm Atheros WiFi Driver Installation
2014-03-04 11:20:29 -------- d-----w- c:\programdata\Qualcomm Atheros
2014-03-04 11:15:05 6416928 ----a-w- c:\windows\system\DriveIcon.dll
2014-03-04 11:15:05 62976 ----a-w- c:\windows\system32\drivers\RTSTOR.sys
2014-03-04 11:14:22 -------- d-----w- c:\program files\Broadcom
2014-03-04 11:12:41 485920 ----a-w- c:\windows\system32\NVUNINST.EXE
2014-03-04 11:09:29 13312 ------w- c:\windows\system32\agrscoin.dll
2014-03-04 11:09:21 -------- d-----w- c:\windows\Options
2014-03-04 10:59:26 6318 ----a-w- c:\windows\Suyin.reg
2014-03-04 10:59:26 626688 ----a-w- c:\windows\Image.dll
2014-03-04 10:59:26 20480 ----a-w- c:\windows\USB_VIDEO_REG.exe
2014-03-04 10:59:26 200704 ----a-w- c:\windows\PLFSetI.exe
2014-03-04 10:59:26 1380352 ----a-w- c:\windows\Acer Crystal Eye webcam.EXE
2014-03-04 10:57:50 106496 ----a-w- c:\windows\FixUVC.exe
2014-03-04 10:57:50 -------- d-----w- c:\program files\Acer
2014-03-04 09:55:23 107776 ----a-w- c:\windows\system32\drivers\ZTEusbvoice.sys
2014-03-04 09:55:23 107776 ----a-w- c:\windows\system32\drivers\ZTEusbser6k.sys
2014-03-04 09:55:23 107776 ----a-w- c:\windows\system32\drivers\ZTEusbnmea.sys
2014-03-04 09:55:23 107776 ----a-w- c:\windows\system32\drivers\ZTEusbmdm6k.sys
2014-03-04 09:55:16 -------- d-----w- c:\windows\system32\SupportAppXL
2014-03-04 09:55:14 -------- d-----w- c:\program files\Beetel Connection Manager
2014-03-04 09:37:33 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-03-04 09:30:46 -------- d-----w- C:\Intel
2014-03-04 09:18:59 -------- d-----w- c:\users\gokarna\appdata\local\Adobe
2014-03-04 09:17:32 59904 ----a-w- c:\windows\system32\wbemdisp.tlb
2014-03-04 09:17:32 16384 ----a-w- c:\windows\system32\lgfwunis.exe
2014-03-04 09:17:32 115016 ----a-w- c:\windows\system32\MSINET.OCX
2014-03-04 09:17:32 102912 ----a-w- c:\windows\system32\Vb6stkit.dll
2014-03-04 09:17:32 102160 ----a-w- c:\windows\system32\VB6KO.DLL
2014-03-04 09:17:31 -------- d-----w- c:\program files\lg_fwupdate
2014-03-04 09:17:27 77824 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ctor.dll
2014-03-04 09:17:27 32768 ------w- c:\program files\common files\installshield\engine\6\intel 32\objectps.dll
2014-03-04 09:17:27 225280 ------w- c:\program files\common files\installshield\iscript\iscript.dll
2014-03-04 09:17:27 176128 ------w- c:\program files\common files\installshield\engine\6\intel 32\iuser.dll
2014-03-04 09:00:29 175616 ----a-w- c:\windows\system32\unrar.dll
2014-03-04 09:00:28 839680 ----a-w- c:\windows\system32\lameACM.acm
2014-03-04 09:00:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2014-03-04 09:00:28 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2014-03-04 09:00:28 151552 ----a-w- c:\windows\system32\ac3acm.acm
2014-03-04 09:00:27 79360 ----a-w- c:\windows\system32\ff_vfw.dll
2014-03-04 09:00:26 -------- d-----w- c:\program files\K-Lite Codec Pack
2014-03-04 08:59:19 -------- d-----w- c:\program files\Winamp Detect
2014-03-04 08:59:16 -------- d-----w- c:\program files\common files\PX Storage Engine
2014-03-04 08:39:20 -------- d-----w- c:\program files\DivX
2014-03-04 08:37:32 -------- d-----w- c:\users\gokarna\appdata\local\Mozilla
2014-03-04 08:32:51 306688 ----a-w- c:\windows\IsUninst.exe
2014-03-04 08:31:13 -------- d-----w- c:\program files\VideoLAN
2014-03-04 08:28:33 -------- d-----w- c:\users\gokarna\appdata\local\Google
2014-03-04 08:23:00 49265 ----a-w- c:\windows\system32\jpicpl32.cpl
2014-03-04 08:20:55 -------- d-----w- c:\users\gokarna\appdata\local\{32A3A4F2-B792-11D6-A78A-00B0D0150030}
2014-03-04 07:49:33 33104 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll
2014-03-04 07:49:32 32592 ----a-w- c:\windows\system32\msonpmon.dll
2014-03-04 07:48:38 -------- d-----w- c:\windows\PCHEALTH
2014-03-04 07:47:38 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2014-03-04 07:47:06 -------- d-----w- c:\users\gokarna\appdata\local\Microsoft Help
2014-03-04 07:44:17 -------- d-sh--w- c:\windows\Installer
2014-03-04 07:25:54 -------- d-----w- c:\windows\system32\wbem\Performance
2014-03-04 07:19:00 -------- d-sh--w- C:\Recovery
.
==================== Find3M ====================
.
2014-03-21 01:03:49 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-03-20 01:07:41 152576 ----a-w- c:\windows\system32\msclmd.dll
2014-03-04 11:25:17 246804 ----a-w- c:\windows\system32\drivers\AtherosBt.bin
2014-03-01 04:11:20 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-03-01 04:10:48 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-03-01 03:52:43 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-03-01 03:51:53 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-03-01 03:38:26 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-03-01 03:38:23 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-03-01 03:37:35 553472 ----a-w- c:\windows\system32\jscript9diag.dll
2014-03-01 03:31:30 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-03-01 03:14:15 4244480 ----a-w- c:\windows\system32\jscript9.dll
2014-03-01 03:00:08 1964032 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-01 02:32:16 1820160 ----a-w- c:\windows\system32\wininet.dll
2014-02-07 01:07:56 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04:11 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06:47 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07:07 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-17 14:24:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2014-01-17 14:24:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
.
============= FINISH: 23:59:06.62 ===============

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-03-29 23:51:54
-----------------------------
23:51:54.915 OS Version: Windows 6.1.7601 Service Pack 1
23:51:54.915 Number of processors: 4 586 0x2A07
23:51:54.917 ComputerName: GOKARNA-PC UserName: gokarna
23:51:57.590 Initialize success
23:54:56.627 AVAST engine defs: 14032902
00:04:44.551 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000069
00:04:44.551 Disk 0 Vendor: ATA_____ SDM2 Size: 476940MB BusType: 11
00:04:44.691 Disk 0 MBR read successfully
00:04:44.691 Disk 0 MBR scan
00:04:44.707 Disk 0 Windows 7 default MBR code
00:04:44.722 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
00:04:44.722 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 279896 MB offset 206848
00:04:44.738 Disk 0 Partition - 00 0F Extended LBA 196941 MB offset 573435904
00:04:44.769 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 196940 MB offset 573437952
00:04:44.769 Disk 0 scanning sectors +976771072
00:04:44.941 Disk 0 scanning C:\Windows\system32\drivers
00:04:58.263 Service scanning
00:05:25.828 Modules scanning
00:05:33.956 Disk 0 trace - called modules:
00:05:33.971 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStorF.sys storport.sys halmacpi.dll iaStorA.sys
00:05:33.987 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x88278288]
00:05:33.987 3 CLASSPNP.SYS[8bbb259e] -> nt!IofCallDriver -> [0x882787e0]
00:05:33.987 5 iaStorF.sys[8bdd5850] -> nt!IofCallDriver -> \Device\00000069[0x87131030]
00:05:35.516 AVAST engine scan C:\Windows
00:05:38.948 AVAST engine scan C:\Windows\system32
00:08:33.046 AVAST engine scan C:\Windows\system32\drivers
00:08:50.191 AVAST engine scan C:\Users\gokarna
00:15:40.176 File: C:\Users\gokarna\Downloads\FreeCodecPackSetup.exe **INFECTED** Win32:Malware-gen
00:15:59.444 AVAST engine scan C:\ProgramData
00:16:20.738 Scan finished successfully
00:28:09.366 Disk 0 MBR has been saved successfully to "C:\Users\gokarna\Documents\Spybot Docs\MBR.dat"
00:28:09.366 The log file has been saved successfully to "C:\Users\gokarna\Documents\Spybot Docs\aswMBR.txt"

 

[Juliet]

Hi and welcome


Please download and run the following tool to help allow other programs to run. (courtesy of BleepingComputer.com)
There are 6 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click and choose Run as Admin
You only need to get one of them to run, not all of them.

1. rkill.exe
2. rkill.com
3. rkill.scr
4. rkill.pif
5. WiNlOgOn.exe
6. uSeRiNiT.exe

***************

Please download Farbar Recovery Scan Tool

(use correct version for your system.....Which system am I using?)
and Tutorial http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/



Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will produce a log called FRST.txt in the same directory the tool is run from.
• Please copy and paste log back here.
• The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

 

[wendyseana]

Completed tasks however......

Hello Juliet, and thanks for your so prompt attention to my problems. I have done as you suggested below however some things were a bit different than as specified:

1. Right clicking on the rkill.exe did not respond to a right click so I used a left.

2. The scan that resulted using Spybot came up with a message saying "out of memory"

Copy and pasted are the two logs from the Farbar tool :

First notepad:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by gokarna (administrator) on GOKARNA-PC on 01-04-2014 12:19:33
Running from C:\Users\gokarna\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2011-07-12] (Nullsoft, Inc.)
HKLM\...\Run: [LGODDFU] - C:\Program Files\lg_fwupdate\fwupdate.exe [548864 2008-10-01] (BL)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [AtherosBtStack] - C:\Program Files\Bluetooth Suite\btvstack.exe [878208 2012-05-30] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] - C:\Program Files\Bluetooth Suite\athbttray.exe [696448 2012-05-30] (Atheros Commnucations)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [280576 2014-03-20] (Microsoft Corporation)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\MountPoints2: {eafd7e00-a37c-11e3-814c-e614c28d7e75} - G:\AutoRun.exe
Startup: C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
ShortcutTarget: ERUNT AutoBackup.lnk -> C:\Program Files\ERUNT\AUTOBACK.EXE ()

==================== Internet (Whitelisted) ====================


Addition Notepad

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by gokarna at 2014-04-01 12:20:15
Running from C:\Users\gokarna\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Spybot - Search and Destroy (Enabled - Up to date) {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

Acer Crystal Eye Webcam (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 5.0.7.1 - Suyin Optronics Corp)
Acer Crystal Eye webcam Ver:1.1.74.216 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.74.216 - Chicony Electronics Co.,Ltd.)
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.06) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Bluetooth Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.4.0.140 - Atheros)
Beetel Connection Manager (HKLM\...\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}) (Version: 1.0.0.1 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{9AF0B106-56F1-461B-A270-95BC1682E282}) (Version: 11.34.02 - Broadcom Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.18.51 - Conexant)
DivX Browser Plug-In (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 0.9.1 - DivXNetworks, Inc.)
ERUNT 1.1j (HKLM\...\ERUNT_is1) (Version: - Lars Hederer)
ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - FreeCodecPack)
Google Chrome (HKCU\...\Google Chrome) (Version: 2.0.172.37 - Google Inc.)
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - FreeCodecPack)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
J2SE Development Kit 5.0 Update 3 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0150030}) (Version: 1.5.0.30 - Sun Microsystems, Inc.)
J2SE Runtime Environment 5.0 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150030}) (Version: 1.5.0.30 - Sun Microsystems, Inc.)
K-Lite Codec Pack 7.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 7.8.0 - )
LG ODD Auto Firmware Update (HKLM\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 8.01.1209.01 - )
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 en-US) (HKLM\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
NVIDIA Control Panel 314.22 (Version: 314.22 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 314.22 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.115.743 - NVIDIA Corporation) Hidden
NVIDIA Update 1.12.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 6.0.6000.20113 - Realtek Semiconductor Corp.)
RICOH R5U241 / R5C847 Media Driver ver.2.04.01.00 (HKLM\...\{2B818257-E6C7-4841-8C29-C5C9A982BCE5}) (Version: 2.04.01.00 - RICOH)
Skype™ 4.0 (HKLM\...\{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}) (Version: 4.0.227 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
VLC media player 1.0.3 (HKLM\...\VLC media player) (Version: 1.0.3 - VideoLAN Team)
Winamp (HKLM\...\Winamp) (Version: 5.621 - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Realtek (RTL8167) Net (08/20/2009 7.006.0820.2009) (HKLM\...\5C3C6E4376259861E39CB54075002B714220026C) (Version: 08/20/2009 7.006.0820.2009 - Realtek)
Windows Driver Package - Realtek Net (08/20/2009 7.006.0820.2009) (HKLM\...\CD0E34A952350DC3169BCA897106C995BFD430AE) (Version: 08/20/2009 7.006.0820.2009 - Realtek)
WPM17.8.0.3442 (HKLM\...\WPM) (Version: 17.8.0.3442 - Cherished Technololgy LIMITED) <==== ATTENTION
Yandex (HKCU\...\YandexBrowser) (Version: 30.0.1599.13014 - YANDEX)

==================== Restore Points =========================

21-03-2014 01:00:23 Windows Update
21-03-2014 09:50:19 Installed QuickTime 7
21-03-2014 12:01:10 Windows Update
21-03-2014 14:28:16 Device Driver Package Install: Qualcomm Atheros Communications Bluetooth Virtual Devices
21-03-2014 14:29:09 Device Driver Package Install: Qualcomm Atheros Communications Human Interface Devices
21-03-2014 14:30:09 Device Driver Package Install: Qualcomm Atheros Communications Sound, video and game controllers
21-03-2014 14:31:30 Device Driver Package Install: Qualcomm Atheros Communications Bluetooth Radios
21-03-2014 14:33:09 Device Driver Package Install: Qualcomm Atheros Communications System devices
21-03-2014 14:35:46 Device Driver Package Install: Qualcomm Atheros Communications Universal Serial Bus controllers
21-03-2014 14:41:48 Device Driver Package Install: NVIDIA Corporation Sound, video and game controllers
23-03-2014 01:00:20 Windows Update
26-03-2014 15:44:25 Windows Update

==================== Hosts content: ==========================

2009-07-14 05:04 - 2014-03-28 23:09 - 00450709 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {1FA538BD-E74C-4167-A98B-01ECD2C8D972} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {3CB31C28-0C5A-45AD-9A8F-8BF1D9D4CC59} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-19] (Adobe Systems Incorporated)
Task: {9FABBF89-AD1F-454E-B8B5-E46DE5B90CEB} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3506391524-3815322815-2224249592-1000
Task: {ABA54CA7-186D-413A-ACC3-C71538136C4C} - System32\Tasks\Everyday scan => Spybot
Task: {B21C0119-4D02-4951-83C7-65BCD2FA474B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan most recently used file in the background => C:\Program Files\Spybot - Search & Destroy 2\SDOnAccess.exe
Task: {C470ECAE-43A9-43C0-8BBF-A6A92B3737D5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E59163AB-34D6-4B6C-BC84-AC0F7D051FBB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {EDC315B8-4E4F-4F12-8218-A687C7DF824E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-03-21 17:45 - 2013-03-15 05:59 - 00078624 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-15 14:08 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-15 14:08 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-03-15 14:08 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-03-15 14:08 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-03-15 14:08 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-29 17:55 - 2014-03-29 17:55 - 03642480 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/01/2014 11:05:02 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (04/01/2014 09:45:17 AM) (Source: Application Error) (User: )
Description: Faulting application name: nvtray.exe, version: 7.17.13.1422, time stamp: 0x5142857f
Faulting module name: NvUI.dll, version: 8.17.13.1422, time stamp: 0x51427c1d
Exception code: 0xc00000fd
Fault offset: 0x00029732
Faulting process id: 0x86c
Faulting application start time: 0xnvtray.exe0
Faulting application path: nvtray.exe1
Faulting module path: nvtray.exe2
Report Id: nvtray.exe3

Error: (03/30/2014 09:36:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2106

Error: (03/30/2014 09:36:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2106

Error: (03/30/2014 09:36:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/30/2014 09:36:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1030

Error: (03/30/2014 09:36:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1030

Error: (03/30/2014 09:36:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/30/2014 01:40:46 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089

Error: (03/30/2014 01:40:46 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089


System errors:
=============
Error: (04/01/2014 09:44:35 AM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/31/2014 03:33:56 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/30/2014 00:32:24 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/29/2014 03:43:58 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/29/2014 05:33:39 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/28/2014 00:10:43 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/27/2014 04:02:02 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/27/2014 09:56:22 AM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/26/2014 06:38:15 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2

Error: (03/22/2014 11:15:38 PM) (Source: Service Control Manager) (User: )
Description: The Update Mega Browse service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-04-01 12:18:45.776
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 11:40:53.358
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 11:26:33.472
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 11:17:29.351
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 10:47:19.922
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 10:36:09.408
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 10:27:36.608
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 10:18:25.445
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 10:06:43.440
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-04-01 09:56:47.488
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\SDHook32.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 41%
Total physical RAM: 3061.86 MB
Available physical RAM: 1795.25 MB
Total Pagefile: 6122.01 MB
Available Pagefile: 3028.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1904.97 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:273.34 GB) (Free:239.14 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:192.32 GB) (Free:192.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 887BD72F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=273 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=192 GB) - (Type=OF Extended)

==================== End Of Log ============================

Hoping to hear from you again soon,

Kindest regards, Wendy

Hi and welcome


Please download and run the following tool to help allow other programs to run. (courtesy of BleepingComputer.com)
There are 6 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click and choose Run as Admin
You only need to get one of them to run, not all of them.

1. rkill.exe
2. rkill.com
3. rkill.scr
4. rkill.pif
5. WiNlOgOn.exe
6. uSeRiNiT.exe

***************

Please download Farbar Recovery Scan Tool

(use correct version for your system.....Which system am I using?)
and Tutorial http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/



Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will produce a log called FRST.txt in the same directory the tool is run from.
• Please copy and paste log back here.
• The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

 

[Juliet]

What antivirus software do you have on the computer?

Please download Malwarebytes Anti-Malware to your desktop
(If uninstalling and doing a reinstall the link is below)
http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/
Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

Go back to the Dashboard and select Scan Now

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop.

Please Post this log

**********************

please download Shortcut Cleaner from the following web page and save it to your Windows desktop.

Shortcut Cleaner Download Link - http://www.bleepingcomputer.com/download/shortcut-cleaner/

Once the file is downloaded, double-click on the ss-cleaner.exe file that should now be on your desktop.

If you are using Windows Vista, 7, or 8 you will need to allow it to run when the prompt appears.

Shortcut Cleaner will now start and scan your computer for hijacked Windows shortcuts and if any are found it will automatically clean them for you.

When it is done, it will show you a log that contains a list of shortcuts that were cleaned.
When you have finished reviewing the log file, please close it and continue with the rest of the steps.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
We now need to reset the home page for Internet Explorer, Firefox, Chrome, and any other browsers you may have installed. Please perform the following steps for each of the installed browsers.

Internet Explorer - Internet Explorer should already be reset. If not, then open IE and click on the Tools menu and then select Internet Options. On the General tab, change your home page to your desired home page and then close the options screen.

Firefox- To reset Firefox click on the Tools menu and then select Option. When the settings screen opens, click on the General tab and change your home page to your desired site.

Chrome - To reset Chome click on the menu button (Chrome Menu). When the menu appears, click on the Settings menu option. When the Settings screen opens, click on the Set Pages link under the On Startup category to specify the pages that should start automatically when Chrome opens.


As many malware and unwanted programs are installed through vulnerabilities found in out-dated and insecure programs, it is strongly suggested that you use Secunia PSI to scan for vulnerable programs on your computer. A tutorial on how to use Secunia PSI to scan for vulnerable programs can be found here:
How to detect vulnerable and out-dated programs using Secunia Personal Software Inspector (PSI)
http://www.bleepingcomputer.com/tutorials/detect-vulnerable-programs-with-secunia-psi/

 

[wendyseana]

Follow-up for Juliet

Hi Juliet, At the moment I don't run any antivirus software beyond Windows defender and Spybot SandD - which I think is not what you mean by antivirus - right ? I used to have a VAIO ie. Sony system in place but when my computer crashed in India in February the technician I consulted completely cleaned it out and reinstalled Windows 7 but not anything from VAIO.

Here is the antiwalware log you requested:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 4/2/2014
Scan Time: 8:09:29 PM
Logfile: anti malware log.txt
Administrator: Yes

Version: 2.00.0.1000
Malware Database: v2014.04.02.05
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: gokarna

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 249405
Time Elapsed: 11 min, 22 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

I have also done the shortcut cleaner download and run it. I enclose its results below although I know you didn't ask for it.


I appreciate your help very much, thanks again, Wendy

 

[wendyseana]

Yandex still with me

Hi Juliet,
Just a query about Yandex as it is till on my computer and seems determined to stay and it did look as if it was responsible for the computer crash I mentioned in my last post which occured in India in February, when everything was cleaned out and Windows 7 was reinstalledut none of the Sony/VAIO protection, enhancement and managment software. Were the things you got me to do involved in trying to remove it ?

Thanks again, Wendy

 

[Juliet]

You need an antivirus software on your computer or you'll soon be reinfected.

Secure My Computer: A Layered Approach


Free Antivirus-AntiSpyware-Firewall Software

~~~~~~~~~~~~~

AdwCleaner by Xplode

Click on this link to download : ADWCleaner
Click on ONE of the Two Blue Download Now buttons That have a blue arrow beside them and save it to your desktop.

Do not click on any links in the top Advertisment.


Close all open windows and browsers.

• Right click the AdwCleaner icon
  
  on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
  
  *****
  
  
  
  
  
• Click the Scan button and wait for the scan to finish.

• After the Scan has finished the window may or may not show what it found and above the progress bar you will see Pending. Please uncheck elements you don't want to remove. Please don't delete anything at this time.
• Click the Report button to get the log
• Copy and Paste it into your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[R0].txt.
• Click the X in the upper right corner of the program or click the File menu and click Exit to close the program.
• NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.

****************

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

Please post these 2 logs when finished.

 

[Juliet]

Please use the reply to thread button, it will make it easier to read.

After you finish the above scans mentioned please do this:


Open notepad. Please copy the contents of the quote box below. To do this highlight the contents of the box and right click on it and select copy.
Paste this into the open notepad. save it to the Desktop as fixlist.txt
NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
It needs to be saved Next to the "Farbar Recovery Scan Tool" (FRST) program (If asked to overwrite existing one please allow)

start
Yandex (HKCU\...\YandexBrowser) (Version: 30.0.1599.13014 - YANDEX)
Reboot:
end

Run FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.



NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating system

 

[Juliet]

Still need help?

 

[wendyseana]

Loaded Adware-anti et al

Still need help?

Hello Juliet,

I have followed your instructions to the point of c and p the anti Adware log :

# AdwCleaner v3.023 - Report created 05/04/2014 at 21:53:30
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : gokarna - GOKARNA-PC
# Running from : C:\Users\gokarna\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\.autoreg
File Found : C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\user.js
Folder Found : C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Found C:\Program Files\Mail.Ru
Folder Found C:\Users\gokarna\AppData\Local\Temp\Mega Browse
Folder Found C:\Users\gokarna\AppData\Local\Yandex
Folder Found C:\Users\gokarna\AppData\LocalLow\Yandex
Folder Found C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yandex
Folder Found C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\Yandex
Folder Found C:\Users\gokarna\AppData\Roaming\PerformerSoft
Folder Found C:\Users\gokarna\AppData\Roaming\Systweak
Folder Found C:\Users\gokarna\AppData\Roaming\Yandex

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wpm
Key Found : HKLM\Software\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.sweet-page.com/web/?type=ds&ts=1394956558&from=cor&uid=ST9500325AS_5VEJD9L0XXXX5VEJD9L0&q={searchTerms}

-\\ Mozilla Firefox v28.0 (en-US)

[ File : C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\prefs.js ]

Line Found : user_pref("extensions.vb@yandex.ru.description", "Keep all your favorite sites in one place with Visual Bookmarks. Simply click on one of the mini-webpages to visit a site. You can customize the numbe[...]

-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3070 octets] - [05/04/2014 21:53:30]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3130 octets] ##########



Now turning to the second part of your recommendations re : anti- junkware

Stay tuned for second report log,

Salute, Wendy

 

[wendyseana]

Some success I hope......

Hello again,

So I carried out to the best of my perceptions your instructions but have to admit a bit of confusion as to operations and implementation.

I am not getting a save to my desktop
as per advice viz :

"On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message."

Nevertheless it did save and I c and p it here :

================================================================
[ ]
[ Junkware Removal Tool (JRT) by Thisisu ]
[ Version 6.1.3 (03.23.2014:1) ]
[ Information about this tool can be found at ]
[ www.thisisudax.org ]
[ ]
[ ]
[ Please save any work in your browsers before proceeding. ]
[ Your desktop may temporarily disappear during this scan. ]
[ A Windows Explorer window may also open. ]
[ These actions are normal. Don't panic. ]
[ ]
[ ** DISCLAIMER ** ]
[ ]
[ This software is provided "as is" without ]
[ warranty of any kind. You may use this software ]
[ at your own risk. ]
[ ]
[ Click the [X] in the top-right corner of this window ]
[ if you wish to exit. Otherwise, ]
================================================================

Press any key to continue . . .

Creating a registry backup
Checking Startup
Checking Modules

A bad module has been detected!
A reboot is required to remove modules.

Press 'y' to reboot now
Press 'n' to reboot later
Reboot now? [y,n] N
Checking Processes
Checking Services

I have not executed its instructions to reboot as you did not mention that I should, should I ? And given that I must go to bed now and await your reply, will I be able to just pick up where i left off here ?

Best regards, Wendy.

Ps. I shall also have to look at the obtaining an antivirus program tomorrow, reading before hand the text links you suggested.

 

[Juliet]

To save files to desktop

Firefox
you press the orange Firefox button in the top left corner >> Options
Beneath where it shows homepage, click on save files to desktop

Chrome --
Press the Customize and Control Google button (three horizontal lines in top right corner of screen) >> Settings >> Show Advanced Settings >> Downloads, Download location, click on save to desktop
~~~~~~~~~~~~~~~~~~~~~~~

Did you run the fixlist.txt I created?

~~~~~~~~~~~~~~~~~~~~~~~~~~~`

Sounds like the download for JRT corrupted.

If you would, delete the one you have now.
Download again and then boot into safe mode to try and run it again.

~~~~~~~~~~~~~~~~~~~~~

As for AdwCleaner

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Scan.
• After the scan is complete click on "Clean"
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[R0].txt as well.

 

[wendyseana]

A wee delay

Hi Juliet,

Life has been busy and its been a few days since I could attend to this problem.

You say that the JRT process looks corrupted and to run it again out of safe mode but I am not sure how to do this ?

I have however I carried out the other 2 operations. I tried first to c and p both but the post failed due to there being too many text characters on my first attempt. The second, the Fixlog failed both as an attachment and as a c and p again because of too many characters. What do you suggest I do ?
I attach the AdwearCleaner only.

Hoping to hear from you soon, many thanks Wendy

 

[Juliet]

I think whats happened is the log is very long.
What you can do is copy and paste the log in multiple replies.

If you should need to boot into safe mode:

http://pcsupport.about.com/od/fixtheproblem/ss/safe-mode-windows-7.htm

 

[wendyseana]

Fixlist.txt 1st installment

Hi Juliet, Here is part one of he fixlist.txt log :

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01 (ATTENTION: ====> FRST version is 27 days old and could be outdated)
Ran by gokarna (administrator) on GOKARNA-PC on 09-04-2014 13:02:22
Running from C:\Users\gokarna\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
() C:\Windows\PLFSetI.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Spotify Ltd) C:\Users\gokarna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\gokarna\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2011-07-12] (Nullsoft, Inc.)
HKLM\...\Run: [LGODDFU] - C:\Program Files\lg_fwupdate\fwupdate.exe [548864 2008-10-01] (BL)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [AtherosBtStack] - C:\Program Files\Bluetooth Suite\btvstack.exe [878208 2012-05-30] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] - C:\Program Files\Bluetooth Suite\athbttray.exe [696448 2012-05-30] (Atheros Commnucations)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [280576 2014-03-20] (Microsoft Corporation)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20924576 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\Run: [Spotify Web Helper] - C:\Users\gokarna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-04-03] (Spotify Ltd)
HKU\S-1-5-21-3506391524-3815322815-2224249592-1000\...\MountPoints2: {eafd7e00-a37c-11e3-814c-e614c28d7e75} - G:\AutoRun.exe
Startup: C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
ShortcutTarget: ERUNT AutoBackup.lnk -> C:\Program Files\ERUNT\AUTOBACK.EXE ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE87ACF3A353ACF01
SearchScopes: HKLM - DefaultScope value is missing.
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No File
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO: No Name - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default
FF SelectedSearchEngine: Yahoo!7
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=0.9.1 - C:\Program Files\DivX\DivX Browser Plug-In\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\searchplugins\yqs-barff-yandex.xml
FF Extension: Візуальныя закладкі - C:\Users\gokarna\AppData\Roaming\Mozilla\Firefox\Profiles\hullhm7j.default\Extensions\vb@yandex.ru [2014-03-22]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-02]
CHR Extension: (Google Drive) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-02]
CHR Extension: (YouTube) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-02]
CHR Extension: (McAfee Security Scan+) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-04-02]
CHR Extension: (Google Search) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-02]
CHR Extension: (Google Wallet) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-02]
CHR Extension: (Gmail) - C:\Users\gokarna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]

========================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [235696 2014-01-16] (McAfee, Inc.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-30] (Atheros)

==================== Drivers (Whitelisted) ====================

R3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [35968 2012-05-30] (Atheros)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3109888 2013-02-19] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [302920 2013-03-27] (Qualcomm Atheros)
R3 btath_avdt; C:\Windows\System32\drivers\btath_avdt.sys [101192 2013-03-27] (Qualcomm Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [27976 2013-03-27] (Qualcomm Atheros)
R3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [158688 2013-03-27] (Qualcomm Atheros)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [66448 2013-03-27] (Qualcomm Atheros)
R3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [119624 2013-03-27] (Qualcomm Atheros)
R3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [496456 2013-03-27] (Qualcomm Atheros)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [541680 2013-03-18] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [26608 2013-03-18] (Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2013-02-22] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-04-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51416 2014-04-03] (Malwarebytes Corporation)
R3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [85976 2013-03-20] (Intel Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-12-06] (Secunia)
R3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [258704 2012-10-18] (Realtek Semiconductor Corp.)
R1 SDHookDriver; C:\Program Files\Spybot - Search & Destroy 2\SDHookDrv32.sys [46248 2013-10-10] ()
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [107776 2011-03-26] (ZTE Incorporated)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-09 11:41 - 2014-04-09 11:41 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Yandex
2014-04-09 11:40 - 2014-04-09 11:40 - 00003287 _____ () C:\Users\gokarna\Desktop\AdwCleaner[S0].txt
2014-04-09 11:38 - 2014-04-09 11:38 - 00000000 ___RD () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-09 10:40 - 2014-04-09 10:40 - 01016261 _____ (Thisisu) C:\Users\gokarna\Downloads\JRT.exe
2014-04-09 10:23 - 2014-04-06 00:00 - 00000180 _____ () C:\Users\gokarna\Documents\filetext.txt
2014-04-09 09:54 - 2014-04-09 09:55 - 01145856 _____ (Farbar) C:\Users\gokarna\Downloads\FRST(1).exe
2014-04-06 00:00 - 2014-04-06 00:00 - 00000180 _____ () C:\Users\gokarna\Desktop\filetext.txt
2014-04-05 22:16 - 2014-04-05 22:16 - 00000000 ____D () C:\Windows\ERUNT
2014-04-05 21:21 - 2014-04-09 11:34 - 00000000 ____D () C:\AdwCleaner
2014-04-05 21:19 - 2014-04-05 21:19 - 01426178 _____ () C:\Users\gokarna\Downloads\AdwCleaner.exe
2014-04-03 12:23 - 2014-04-03 12:23 - 00127080 _____ (Spotify Ltd) C:\Users\gokarna\Downloads\SpotifySetup(1).exe
2014-04-03 12:10 - 2014-04-03 12:19 - 00001817 _____ () C:\Users\gokarna\Desktop\Spotify.lnk
2014-04-03 12:10 - 2014-04-03 12:19 - 00001803 _____ () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-04-03 12:10 - 2014-04-03 12:10 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Spotify
2014-04-03 12:09 - 2014-04-08 08:54 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Spotify
2014-04-03 12:07 - 2014-04-03 12:07 - 00127080 _____ (Spotify Ltd) C:\Users\gokarna\Downloads\SpotifySetup.exe
2014-04-02 22:09 - 2014-04-02 22:11 - 00000000 ___RD () C:\Program Files\Skype
2014-04-02 22:09 - 2014-04-02 22:09 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Skype
2014-04-02 22:09 - 2014-04-02 22:09 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-04-02 22:08 - 2014-04-02 22:08 - 00362029 _____ () C:\Users\gokarna\Downloads\sqlite3.dll
2014-04-02 21:57 - 2014-04-02 21:58 - 34829472 _____ (Skype Technologies S.A.) C:\Users\gokarna\Downloads\SkypeSetupFull.exe
2014-04-02 21:39 - 2014-04-02 21:39 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-02 21:37 - 2014-04-09 12:42 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-02 21:37 - 2014-04-09 11:38 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-02 21:37 - 2014-04-02 21:39 - 00000000 ____D () C:\Program Files\Google
2014-04-02 21:37 - 2014-04-02 21:37 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-02 21:35 - 2014-04-02 21:35 - 00884712 _____ (Google Inc.) C:\Users\gokarna\Downloads\ChromeSetup.exe
2014-04-02 21:11 - 2014-04-02 21:11 - 00000000 ____D () C:\ProgramData\Sun
2014-04-02 21:10 - 2014-04-02 21:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-02 21:06 - 2014-04-02 21:06 - 00921000 _____ (Oracle Corporation) C:\Users\gokarna\Downloads\jxpiinstall.exe
2014-04-02 21:06 - 2014-04-02 21:06 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-04-02 21:06 - 2014-04-02 21:06 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-04-02 21:04 - 2014-04-02 21:05 - 00000000 ____D () C:\Program Files\MPC-HC
2014-04-02 21:00 - 2014-04-02 21:00 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Secunia PSI
2014-04-02 20:58 - 2014-04-02 20:58 - 00000000 ____D () C:\Program Files\Secunia
2014-04-02 20:49 - 2014-04-02 20:50 - 05329480 _____ (Secunia) C:\Users\gokarna\Downloads\PSISetup.exe
2014-04-02 20:27 - 2014-04-02 20:28 - 00001800 _____ () C:\sc-cleaner.txt
2014-04-02 20:26 - 2014-04-02 20:26 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\gokarna\Downloads\sc-cleaner.exe
2014-04-02 19:06 - 2014-04-09 12:47 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-02 19:05 - 2014-04-05 15:13 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-02 19:05 - 2014-04-05 15:13 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-04-02 19:05 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-02 19:05 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-02 19:05 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-02 19:05 - 2014-04-02 19:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-02 18:43 - 2014-04-02 18:44 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\gokarna\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-01 12:20 - 2014-04-01 12:20 - 00020845 _____ () C:\Users\gokarna\Downloads\Addition.txt
2014-04-01 12:19 - 2014-04-09 13:02 - 00015298 _____ () C:\Users\gokarna\Downloads\FRST.txt
2014-04-01 12:19 - 2014-04-09 13:02 - 00000000 ____D () C:\FRST
2014-04-01 11:28 - 2014-04-01 11:29 - 01145856 _____ (Farbar) C:\Users\gokarna\Downloads\FRST.exe
2014-04-01 10:35 - 2014-04-01 10:36 - 00003618 _____ () C:\Users\gokarna\Desktop\Rkill.txt
2014-04-01 10:34 - 2014-04-01 10:34 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\gokarna\Downloads\rkill.exe
2014-03-30 18:15 - 2014-04-02 21:11 - 00000000 ____D () C:\Users\gokarna\Downloads\Sinead O'Connor So Far... The Best Of
2014-03-30 17:41 - 2014-03-30 17:47 - 107907946 _____ () C:\Users\gokarna\Downloads\The Rolling Stones - GRRR! (Deluxe Version) CD2.zip
2014-03-30 01:27 - 2014-03-30 01:59 - 00000000 ____D () C:\Users\gokarna\Documents\Spybot Docs
2014-03-30 00:51 - 2014-03-30 00:51 - 04745728 _____ (AVAST Software) C:\Users\gokarna\Downloads\aswMBR.exe
2014-03-30 00:47 - 2014-03-30 00:48 - 00688992 ____R (Swearware) C:\Users\gokarna\Downloads\dds.scr
2014-03-30 00:45 - 2014-03-30 00:46 - 00000000 ____D () C:\Program Files\ERUNT
2014-03-30 00:45 - 2014-03-30 00:45 - 00000898 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000898 _____ () C:\Users\gokarna\Desktop\NTREGOPT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000879 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000879 _____ () C:\Users\gokarna\Desktop\ERUNT.lnk
2014-03-30 00:42 - 2014-03-30 00:42 - 00791393 _____ (Lars Hederer ) C:\Users\gokarna\Downloads\erunt-setup.exe
2014-03-29 17:55 - 2014-03-29 17:55 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-29 17:13 - 2014-03-29 17:13 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\uTorrent
2014-03-28 23:10 - 2014-03-28 23:10 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-28 23:09 - 2014-03-28 22:57 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-220935.backup
2014-03-28 22:57 - 2014-03-28 22:55 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-215753.backup
2014-03-28 22:55 - 2014-03-28 22:55 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-215542.backup
2014-03-26 19:09 - 2014-03-26 19:09 - 00000000 ____D () C:\Qoobox
2014-03-26 19:05 - 2014-03-30 12:32 - 00000000 ____D () C:\Windows\erdnt
2014-03-26 19:05 - 2014-03-26 19:13 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-23 04:00 - 2013-12-21 11:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-22 23:25 - 2014-03-01 07:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-22 23:25 - 2014-03-01 07:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-22 23:25 - 2014-03-01 07:10 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-22 23:25 - 2014-03-01 06:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-22 23:25 - 2014-03-01 06:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-22 23:25 - 2014-03-01 06:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-22 23:25 - 2014-03-01 06:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-22 23:25 - 2014-03-01 06:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-22 23:25 - 2014-03-01 06:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-22 23:25 - 2014-03-01 06:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-22 23:25 - 2014-03-01 06:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-22 23:25 - 2014-03-01 06:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-22 23:25 - 2014-03-01 06:31 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-22 23:25 - 2014-03-01 06:25 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-22 23:25 - 2014-03-01 06:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-22 23:25 - 2014-03-01 06:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-22 23:25 - 2014-03-01 06:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-22 23:25 - 2014-03-01 06:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-22 23:25 - 2014-03-01 05:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-22 23:25 - 2014-03-01 05:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-22 23:25 - 2014-03-01 05:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-22 23:25 - 2014-03-01 05:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-21 17:47 - 2014-03-21 17:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-03-21 17:47 - 2013-02-22 04:40 - 00016880 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2014-03-21 17:46 - 2014-03-21 17:56 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-21 17:46 - 2014-03-21 17:46 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-03-21 17:46 - 2013-02-19 02:17 - 03109888 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys
2014-03-21 17:46 - 2009-07-14 07:42 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-21 17:46 - 2009-07-14 07:37 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-21 17:45 - 2013-03-15 08:46 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-03-21 17:45 - 2013-03-15 05:59 - 04119328 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-03-21 17:45 - 2013-03-15 05:59 - 03014432 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2014-03-21 17:45 - 2013-03-15 05:59 - 02555168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-03-21 17:45 - 2013-03-15 05:59 - 00634144 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-03-21 17:45 - 2013-03-15 05:59 - 00223008 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-03-21 17:45 - 2013-03-15 05:59 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-03-21 17:44 - 2014-03-21 17:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-21 17:44 - 2014-03-21 17:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-21 17:44 - 2013-03-15 08:46 - 08952608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-21 17:44 - 2013-03-15 08:46 - 00013625 _____ () C:\Windows\system32\nvinfo.pb
2014-03-21 17:43 - 2013-03-15 08:46 - 20542752 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 17560352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 15042928 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 13088000 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 07959000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 06271872 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 02728736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 02539128 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 01995552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 01012512 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3231422.dll
2014-03-21 17:43 - 2013-03-15 08:46 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3231422.dll
2014-03-21 17:42 - 2014-03-21 17:42 - 00000000 ____D () C:\Program Files\CONEXANT
2014-03-21 17:42 - 2011-08-08 06:30 - 01475200 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32AP51.dll
2014-03-21 17:42 - 2011-08-08 06:30 - 01293440 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT32.sys
2014-03-21 17:42 - 2011-08-08 06:30 - 00352256 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI32A80.dll
2014-03-21 17:42 - 2011-08-08 06:30 - 00090752 _____ (Conexant Systems, Inc.) C:\Windows\system32\FMPropPageExt.dll
2014-03-21 17:42 - 2011-08-08 06:30 - 00030873 _____ () C:\Windows\system32\Drivers\Mixer.ini
2014-03-21 17:40 - 2013-02-25 08:27 - 00154400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys
2014-03-21 17:40 - 2013-02-25 08:27 - 00028448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll
2014-03-21 17:40 - 2013-01-29 11:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll
2014-03-21 17:39 - 2013-03-18 15:37 - 00541680 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-03-21 17:39 - 2013-03-18 15:37 - 00026608 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-03-21 17:39 - 2013-03-04 14:35 - 00643656 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2014-03-21 17:39 - 2013-03-04 14:35 - 00085064 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2014-03-21 17:38 - 2014-03-21 17:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriver_01011.Wdf
2014-03-21 17:36 - 2013-03-20 18:45 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-03-21 17:36 - 2013-03-20 18:45 - 00085976 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriver.sys
2014-03-21 17:36 - 2012-10-18 12:05 - 09888400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsPStorIcon.dll
2014-03-21 17:36 - 2012-10-18 12:05 - 00258704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2014-03-21 17:34 - 2013-03-27 10:16 - 00158688 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2014-03-21 17:32 - 2013-03-27 10:16 - 00027976 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2014-03-21 17:31 - 2013-03-27 10:16 - 00496456 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2014-03-21 17:27 - 2013-03-27 10:16 - 00302920 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2014-03-21 17:27 - 2013-03-27 10:16 - 00119624 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2014-03-21 17:27 - 2013-03-27 10:16 - 00101192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2014-03-21 17:27 - 2013-03-27 10:16 - 00066448 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2014-03-21 15:02 - 2014-03-21 15:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-03-21 15:02 - 2014-03-21 15:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-03-21 15:02 - 2014-03-21 15:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-03-21 15:02 - 2014-03-21 15:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-03-21 12:51 - 2014-03-21 12:51 - 00001815 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-21 12:51 - 2014-03-21 12:51 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-21 12:37 - 2014-03-21 12:38 - 41945432 _____ (Apple Inc.) C:\Users\gokarna\Downloads\QuickTimeInstaller.exe
2014-03-21 10:48 - 2014-02-04 05:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-21 10:48 - 2013-12-25 02:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-03-21 10:48 - 2013-11-26 11:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-03-21 10:48 - 2013-11-23 21:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-03-21 10:48 - 2012-02-11 08:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-03-21 10:48 - 2011-02-25 08:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-03-21 04:10 - 2013-05-10 07:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-03-21 04:10 - 2013-05-10 07:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-03-21 04:08 - 2014-03-21 15:03 - 00014518 _____ () C:\Windows\IE11_main.log
2014-03-21 04:03 - 2014-03-21 04:03 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-03-21 04:03 - 2014-03-21 04:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-21 04:03 - 2014-03-21 04:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-21 04:02 - 2014-03-21 04:02 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-03-21 04:01 - 2014-03-21 04:05 - 00009285 _____ () C:\Windows\IE10_main.log
2014-03-20 11:32 - 2014-02-04 05:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-20 11:32 - 2013-10-30 05:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-03-20 11:32 - 2013-10-04 04:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-03-20 11:32 - 2013-10-04 04:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-03-20 11:32 - 2013-10-04 04:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-03-20 11:32 - 2013-09-14 03:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-03-20 11:32 - 2013-09-08 05:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-03-20 11:32 - 2013-07-09 07:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-03-20 11:32 - 2013-07-09 07:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-03-20 11:32 - 2013-07-04 14:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-03-20 11:32 - 2013-07-03 06:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-03-20 11:32 - 2013-07-03 06:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-03-20 11:32 - 2012-08-22 20:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-03-20 11:32 - 2012-07-04 22:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-03-20 11:31 - 2014-02-07 04:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-20 11:31 - 2014-01-28 05:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-20 11:31 - 2014-01-01 02:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-03-20 11:31 - 2013-12-06 05:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-03-20 11:31 - 2013-12-06 05:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-03-20 11:31 - 2013-11-12 05:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-20 11:31 - 2013-10-19 04:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-03-20 11:31 - 2013-10-12 05:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-03-20 11:31 - 2013-10-12 05:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-03-20 11:31 - 2013-10-12 04:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-03-20 11:31 - 2013-10-12 04:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-03-20 11:31 - 2013-09-25 05:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-03-20 11:31 - 2013-09-25 05:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-03-20 11:31 - 2013-09-25 04:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-03-20 11:31 - 2013-09-25 04:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-03-20 11:31 - 2013-09-25 04:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-03-20 11:31 - 2013-09-25 04:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-03-20 11:31 - 2013-09-25 04:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-03-20 11:31 - 2013-09-25 03:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-03-20 11:31 - 2013-09-25 03:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-03-20 11:31 - 2013-08-29 04:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-03-20 11:31 - 2013-08-29 04:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-03-20 11:31 - 2013-08-29 04:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-03-20 11:31 - 2013-08-29 04:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-03-20 11:31 - 2013-08-29 04:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-03-20 11:31 - 2013-08-28 03:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-03-20 11:31 - 2013-08-01 14:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-03-20 11:31 - 2013-07-20 13:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-20 11:31 - 2013-07-04 15:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-03-20 11:31 - 2013-06-06 07:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-03-20 11:31 - 2013-06-06 07:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-03-20 11:31 - 2013-06-06 07:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-03-20 11:31 - 2013-06-06 06:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-03-20 11:31 - 2013-06-06 06:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-03-20 11:31 - 2013-05-13 06:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-03-20 11:31 - 2013-05-13 06:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-03-20 11:31 - 2013-05-10 06:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-03-20 11:31 - 2013-04-26 07:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-03-20 11:31 - 2013-04-10 08:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-03-20 11:31 - 2013-03-19 06:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-03-20 11:31 - 2012-10-03 19:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-03-20 11:31 - 2012-10-03 19:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-03-20 11:31 - 2012-10-03 19:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-03-20 11:31 - 2012-10-03 19:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-03-20 11:31 - 2012-10-03 19:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-03-20 11:31 - 2012-10-03 19:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-03-20 11:31 - 2012-10-03 18:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-03-20 11:31 - 2012-08-21 23:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-03-20 11:30 - 2014-01-29 05:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-20 11:30 - 2013-12-04 05:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-03-20 11:30 - 2013-12-04 05:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-03-20 11:30 - 2013-12-04 05:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-03-20 11:30 - 2013-12-04 05:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-03-20 11:30 - 2013-12-04 05:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-03-20 11:30 - 2013-12-04 04:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-03-20 11:30 - 2013-12-04 04:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-03-20 11:30 - 2013-12-04 04:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-03-20 11:30 - 2013-12-04 04:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-03-20 11:30 - 2013-11-27 04:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-03-20 11:30 - 2013-11-27 04:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-03-20 11:30 - 2013-11-26 14:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-03-20 11:30 - 2013-10-12 05:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-03-20 11:30 - 2013-10-12 05:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-03-20 11:30 - 2013-10-12 05:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-03-20 11:30 - 2013-10-05 22:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-03-20 11:30 - 2013-10-04 04:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-03-20 11:30 - 2013-10-04 04:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-03-20 11:30 - 2013-10-03 04:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-03-20 11:30 - 2013-09-08 05:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-03-20 11:30 - 2013-08-05 04:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-03-20 11:30 - 2013-08-02 04:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-03-20 11:30 - 2013-08-02 04:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-03-20 11:30 - 2013-08-02 04:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 03:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-03-20 11:30 - 2013-08-02 03:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 03:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 03:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-03-20 11:30 - 2013-08-02 03:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-03-20 11:30 - 2013-07-26 04:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-03-20 11:30 - 2013-07-26 04:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-03-20 11:30 - 2013-07-25 11:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-03-20 11:30 - 2013-07-12 13:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-03-20 11:30 - 2013-07-12 13:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-03-20 11:30 - 2013-07-12 13:07 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-03-20 11:30 - 2013-07-09 07:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-03-20 11:30 - 2013-07-09 07:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-03-20 11:30 - 2013-07-04 14:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-03-20 11:30 - 2013-07-04 14:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-03-20 11:30 - 2013-07-04 12:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-03-20 11:30 - 2013-06-26 01:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-03-20 11:30 - 2012-10-09 20:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-03-20 11:30 - 2012-10-09 20:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-03-20 11:25 - 2013-06-15 06:40 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-03-20 11:25 - 2013-06-15 06:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-03-20 11:25 - 2013-02-27 08:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-03-20 11:25 - 2013-02-27 07:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-03-20 04:02 - 2014-03-20 04:02 - 00000000 ____D () C:\Windows\system32\SPReview
2014-03-20 04:02 - 2014-03-20 04:02 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-03-20 04:00 - 2014-03-20 04:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-20 04:00 - 2014-03-02 15:03 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

 

[wendyseana]

Fixlist.txt log 2nd installment

2014-03-19 23:54 - 2014-03-19 23:54 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Media Player Classic
2014-03-19 17:56 - 2014-03-29 18:46 - 00000298 _____ () C:\Windows\wininit.ini
2014-03-19 17:16 - 2010-11-20 15:21 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-03-19 17:16 - 2010-11-20 15:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2014-03-19 17:16 - 2010-11-20 15:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-19 17:16 - 2010-11-20 15:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2014-03-19 17:16 - 2010-11-20 15:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2014-03-19 17:16 - 2010-11-20 15:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2014-03-19 17:16 - 2010-11-20 15:17 - 00080896 _____ () C:\Windows\system32\RDVGHelper.exe
2014-03-19 17:16 - 2010-11-20 13:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-03-19 17:16 - 2010-11-05 04:58 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-03-19 17:15 - 2010-11-20 15:36 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2014-03-19 17:15 - 2010-11-20 15:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2014-03-19 17:15 - 2010-11-20 15:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2014-03-19 17:15 - 2010-11-20 15:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2014-03-19 17:15 - 2010-11-20 15:30 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00175360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00078208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00040704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys
2014-03-19 17:15 - 2010-11-20 15:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2014-03-19 17:15 - 2010-11-20 15:29 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2014-03-19 17:15 - 2010-11-20 15:29 - 00520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-03-19 17:15 - 2010-11-20 15:29 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-03-19 17:15 - 2010-11-20 15:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2014-03-19 17:15 - 2010-11-20 15:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-03-19 17:15 - 2010-11-20 15:29 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2014-03-19 17:15 - 2010-11-20 15:29 - 00043392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2014-03-19 17:15 - 2010-11-20 15:29 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2014-03-19 17:15 - 2010-11-20 15:24 - 00690680 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-03-19 17:15 - 2010-11-20 15:24 - 00508904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-03-19 17:15 - 2010-11-20 15:24 - 00442720 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-03-19 17:15 - 2010-11-20 15:24 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-03-19 17:15 - 2010-11-20 15:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2014-03-19 17:15 - 2010-11-20 15:21 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2014-03-19 17:15 - 2010-11-20 15:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2014-03-19 17:15 - 2010-11-20 15:21 - 00521216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2014-03-19 17:15 - 2010-11-20 15:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-03-19 17:15 - 2010-11-20 15:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2014-03-19 17:15 - 2010-11-20 15:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2014-03-19 17:15 - 2010-11-20 15:20 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 03207680 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2014-03-19 17:15 - 2010-11-20 15:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2014-03-19 17:15 - 2010-11-20 15:19 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2014-03-19 17:15 - 2010-11-20 15:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-03-19 17:15 - 2010-11-20 15:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00093696 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2014-03-19 17:15 - 2010-11-20 15:19 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2014-03-19 17:15 - 2010-11-20 15:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 01003520 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-03-19 17:15 - 2010-11-20 15:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2014-03-19 17:15 - 2010-11-20 15:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-03-19 17:15 - 2010-11-20 15:17 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 01049600 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00066048 _____ () C:\Windows\system32\PrintBrmUi.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2

 

[Juliet]

I'm making a revision of my reply.

 

[wendyseana]

Fixlist.txt log 3rd installment

2014-03-19 17:15 - 2010-11-20 15:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-03-19 17:15 - 2010-11-20 15:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-03-19 17:15 - 2010-11-20 15:16 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2014-03-19 17:15 - 2010-11-20 15:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2014-03-19 17:15 - 2010-11-20 15:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2014-03-19 17:15 - 2010-11-20 15:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2014-03-19 17:15 - 2010-11-20 15:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll
2014-03-19 17:15 - 2010-11-20 15:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2014-03-19 17:15 - 2010-11-20 14:54 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-03-19 17:15 - 2010-11-20 13:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2014-03-19 17:15 - 2010-11-20 13:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2014-03-19 17:15 - 2010-11-20 13:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-19 17:15 - 2010-11-20 13:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2014-03-19 17:15 - 2010-11-20 13:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2014-03-19 17:15 - 2010-11-20 13:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2014-03-19 17:15 - 2010-11-20 12:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-03-19 17:15 - 2010-11-20 12:50 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2014-03-19 17:15 - 2010-11-20 12:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2014-03-19 17:15 - 2010-11-20 11:47 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2014-03-19 17:15 - 2010-11-20 11:44 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2014-03-19 17:15 - 2010-11-20 11:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-03-19 17:15 - 2010-11-20 11:42 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-03-19 17:15 - 2010-11-20 11:42 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-03-19 17:15 - 2010-11-20 11:40 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2014-03-19 17:15 - 2010-11-20 11:38 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2014-03-19 17:15 - 2010-11-20 08:23 - 00053600 _____ () C:\Windows\system32\dosx.exe
2014-03-19 17:15 - 2010-11-10 04:45 - 00010429 _____ () C:\Windows\system32\ScavengeSpace.xml
2014-03-19 17:15 - 2010-11-05 05:20 - 00146852 _____ () C:\Windows\system32\systemsf.ebd
2014-03-19 17:15 - 2010-11-05 05:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00155472 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2014-03-19 17:15 - 2010-11-05 04:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-03-19 17:15 - 2010-11-05 04:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-03-19 17:14 - 2010-11-20 15:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-03-19 17:14 - 2010-11-20 15:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-03-19 17:14 - 2010-11-20 15:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2014-03-19 17:14 - 2010-11-20 15:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-03-19 17:14 - 2010-11-20 15:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2014-03-19 17:14 - 2010-11-20 15:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2014-03-19 17:14 - 2010-11-20 15:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2014-03-19 17:14 - 2010-11-20 15:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2014-03-19 17:14 - 2010-11-20 14:56 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2014-03-19 17:14 - 2010-11-20 13:22 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2014-03-19 17:14 - 2010-11-20 13:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2014-03-19 17:14 - 2010-11-20 13:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2014-03-19 17:14 - 2010-11-20 13:07 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2014-03-19 17:14 - 2010-11-20 12:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-03-19 17:14 - 2010-11-20 12:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-03-19 17:14 - 2010-11-20 12:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-03-19 17:14 - 2010-11-20 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2014-03-19 17:14 - 2010-11-20 12:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-03-19 17:14 - 2010-11-20 12:24 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2014-03-19 17:14 - 2010-11-20 12:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-03-19 17:14 - 2010-11-20 12:14 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys
2014-03-19 17:14 - 2010-11-20 12:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys
2014-03-19 17:14 - 2010-11-05 05:20 - 00105559 _____ () C:\Windows\system32\RacRules.xml
2014-03-19 16:52 - 2014-04-03 16:31 - 00011264 _____ () C:\Users\gokarna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-19 16:17 - 2014-03-19 16:17 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-03-16 11:04 - 2014-03-16 11:04 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-16 10:58 - 2014-03-16 11:35 - 00000000 ____D () C:\ProgramData\AnySend
2014-03-16 10:58 - 2014-03-16 11:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\AnySend
2014-03-16 10:56 - 2014-03-16 11:15 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\sweet-page
2014-03-16 10:55 - 2014-03-16 10:54 - 01492336 _____ (Drivers For Free) C:\Users\gokarna\Downloads\DFFDriverDownloadManager.exe
2014-03-16 10:54 - 2014-03-16 10:54 - 00626056 _____ ( ) C:\Users\gokarna\Downloads\DriversForFreeSetup.exe
2014-03-16 10:35 - 2014-03-16 10:36 - 00000000 ____D () C:\ProgramData\Guard.Mail.Ru
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Opera Software
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Opera
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Opera
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Chromium
2014-03-16 10:31 - 2014-03-16 10:58 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\DRPSu
2014-03-16 10:31 - 2014-03-16 10:31 - 00000000 ____D () C:\Program Files\DIFX

 

[wendyseana]

Fixlist.txt log 4th installment

2014-03-19 17:15 - 2010-11-20 15:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2014-03-19 17:15 - 2010-11-20 15:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-03-19 17:15 - 2010-11-20 15:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-03-19 17:15 - 2010-11-20 15:16 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2014-03-19 17:15 - 2010-11-20 15:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2014-03-19 17:15 - 2010-11-20 15:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2014-03-19 17:15 - 2010-11-20 15:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2014-03-19 17:15 - 2010-11-20 15:16 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2014-03-19 17:15 - 2010-11-20 15:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2014-03-19 17:15 - 2010-11-20 15:16 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2014-03-19 17:15 - 2010-11-20 15:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2014-03-19 17:15 - 2010-11-20 15:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll
2014-03-19 17:15 - 2010-11-20 15:03 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll
2014-03-19 17:15 - 2010-11-20 15:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2014-03-19 17:15 - 2010-11-20 14:54 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-03-19 17:15 - 2010-11-20 13:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2014-03-19 17:15 - 2010-11-20 13:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2014-03-19 17:15 - 2010-11-20 13:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-19 17:15 - 2010-11-20 13:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2014-03-19 17:15 - 2010-11-20 13:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2014-03-19 17:15 - 2010-11-20 13:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2014-03-19 17:15 - 2010-11-20 13:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2014-03-19 17:15 - 2010-11-20 12:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-03-19 17:15 - 2010-11-20 12:50 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2014-03-19 17:15 - 2010-11-20 12:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2014-03-19 17:15 - 2010-11-20 11:47 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2014-03-19 17:15 - 2010-11-20 11:44 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2014-03-19 17:15 - 2010-11-20 11:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-03-19 17:15 - 2010-11-20 11:42 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-03-19 17:15 - 2010-11-20 11:42 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-03-19 17:15 - 2010-11-20 11:40 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-03-19 17:15 - 2010-11-20 11:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2014-03-19 17:15 - 2010-11-20 11:38 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2014-03-19 17:15 - 2010-11-20 08:23 - 00053600 _____ () C:\Windows\system32\dosx.exe
2014-03-19 17:15 - 2010-11-10 04:45 - 00010429 _____ () C:\Windows\system32\ScavengeSpace.xml
2014-03-19 17:15 - 2010-11-05 05:20 - 00146852 _____ () C:\Windows\system32\systemsf.ebd
2014-03-19 17:15 - 2010-11-05 05:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00155472 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-03-19 17:15 - 2010-11-05 04:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2014-03-19 17:15 - 2010-11-05 04:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-03-19 17:15 - 2010-11-05 04:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2014-03-19 17:14 - 2010-11-20 15:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-03-19 17:14 - 2010-11-20 15:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-03-19 17:14 - 2010-11-20 15:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-03-19 17:14 - 2010-11-20 15:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2014-03-19 17:14 - 2010-11-20 15:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-03-19 17:14 - 2010-11-20 15:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2014-03-19 17:14 - 2010-11-20 15:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2014-03-19 17:14 - 2010-11-20 15:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2014-03-19 17:14 - 2010-11-20 15:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2014-03-19 17:14 - 2010-11-20 15:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-03-19 17:14 - 2010-11-20 15:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2014-03-19 17:14 - 2010-11-20 14:56 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2014-03-19 17:14 - 2010-11-20 13:22 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2014-03-19 17:14 - 2010-11-20 13:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2014-03-19 17:14 - 2010-11-20 13:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2014-03-19 17:14 - 2010-11-20 13:07 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2014-03-19 17:14 - 2010-11-20 13:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2014-03-19 17:14 - 2010-11-20 12:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-03-19 17:14 - 2010-11-20 12:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-03-19 17:14 - 2010-11-20 12:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-03-19 17:14 - 2010-11-20 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2014-03-19 17:14 - 2010-11-20 12:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-03-19 17:14 - 2010-11-20 12:24 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2014-03-19 17:14 - 2010-11-20 12:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-03-19 17:14 - 2010-11-20 12:14 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys
2014-03-19 17:14 - 2010-11-20 12:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2014-03-19 17:14 - 2010-11-20 12:14 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys
2014-03-19 17:14 - 2010-11-05 05:20 - 00105559 _____ () C:\Windows\system32\RacRules.xml
2014-03-19 16:52 - 2014-04-03 16:31 - 00011264 _____ () C:\Users\gokarna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-19 16:17 - 2014-03-19 16:17 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-03-16 11:04 - 2014-03-16 11:04 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-16 10:58 - 2014-03-16 11:35 - 00000000 ____D () C:\ProgramData\AnySend
2014-03-16 10:58 - 2014-03-16 11:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\AnySend
2014-03-16 10:56 - 2014-03-16 11:15 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\sweet-page
2014-03-16 10:55 - 2014-03-16 10:54 - 01492336 _____ (Drivers For Free) C:\Users\gokarna\Downloads\DFFDriverDownloadManager.exe
2014-03-16 10:54 - 2014-03-16 10:54 - 00626056 _____ ( ) C:\Users\gokarna\Downloads\DriversForFreeSetup.exe
2014-03-16 10:35 - 2014-03-16 10:36 - 00000000 ____D () C:\ProgramData\Guard.Mail.Ru
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Opera Software
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Opera
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Opera
2014-03-16 10:34 - 2014-03-16 10:34 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Chromium
2014-03-16 10:31 - 2014-03-16 10:58 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\DRPSu
2014-03-16 10:31 - 2014-03-16 10:31 - 00000000 ____D () C:\Program Files\DIFX

 

[wendyseana]

Fixlist.txt log 5th installment

2014-03-16 10:30 - 2013-03-04 14:35 - 00101448 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2014-03-16 10:27 - 2014-03-16 10:29 - 06782358 _____ (Kuzyakov Artur) C:\Users\gokarna\Downloads\2694_LAN_Win7-64_Win7_7006_.exe
2014-03-16 03:48 - 2012-07-06 22:23 - 00393728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-03-16 03:48 - 2011-04-28 06:15 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-03-16 03:48 - 2011-03-11 08:39 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-03-16 03:48 - 2011-03-11 08:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-03-16 03:48 - 2011-03-11 08:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-03-16 03:48 - 2011-03-11 08:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-03-16 03:48 - 2011-03-11 08:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-03-16 03:48 - 2011-03-11 08:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-03-16 03:48 - 2011-03-11 08:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-03-16 03:48 - 2011-03-11 08:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-03-16 03:48 - 2011-03-11 07:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-03-16 03:48 - 2010-11-20 15:17 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2014-03-16 00:36 - 2014-03-16 00:36 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Macromedia
2014-03-16 00:29 - 2014-04-09 12:28 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-16 00:29 - 2014-03-19 16:18 - 00002012 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-03-16 00:29 - 2014-03-16 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-03-16 00:29 - 2014-03-16 00:29 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-16 00:28 - 2014-03-19 16:29 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-16 00:28 - 2014-03-19 16:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-16 00:24 - 2014-03-16 00:24 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-15 21:25 - 2014-03-15 21:25 - 01069920 _____ (Solid State Networks) C:\Users\gokarna\Downloads\install_reader11_en_mssa_aaa_aih(1).exe
2014-03-15 20:40 - 2014-03-15 21:41 - 00000000 ____D () C:\Users\gokarna\Documents\Sexy Stockings and Smoking Girls_files
2014-03-15 20:40 - 2014-03-15 20:40 - 00101217 _____ () C:\Users\gokarna\Documents\Sexy Stockings and Smoking Girls.htm
2014-03-15 15:38 - 2014-03-15 15:38 - 00000000 __SHD () C:\Windows\system32\%APPDATA%
2014-03-15 15:27 - 2009-06-11 00:39 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140315-142749.backup
2014-03-15 15:23 - 2014-03-21 12:22 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Apple Computer
2014-03-15 15:23 - 2014-03-15 15:23 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Apple Computer
2014-03-15 15:22 - 2014-03-16 00:24 - 00001753 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-15 15:22 - 2014-03-15 15:22 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-15 15:22 - 2014-03-15 15:22 - 00000000 ____D () C:\Program Files\iTunes
2014-03-15 15:22 - 2014-03-15 15:22 - 00000000 ____D () C:\Program Files\iPod
2014-03-15 15:22 - 2012-08-21 14:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-03-15 15:02 - 2014-03-15 15:22 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-15 15:02 - 2014-03-15 15:02 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Apple
2014-03-15 15:02 - 2014-03-15 15:02 - 00000000 ____D () C:\ProgramData\Apple
2014-03-15 15:02 - 2014-03-15 15:02 - 00000000 ____D () C:\Program Files\Bonjour
2014-03-15 15:02 - 2014-03-15 15:02 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-03-15 14:34 - 2014-03-15 14:39 - 137699152 _____ (Apple Inc.) C:\Users\gokarna\Downloads\iTunesSetup.exe
2014-03-15 14:33 - 2014-03-15 14:33 - 00559280 _____ (Safer-Networking Ltd. ) C:\Users\gokarna\Downloads\spybot2-license(1).exe
2014-03-15 14:08 - 2014-03-19 18:28 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-15 14:08 - 2014-03-15 14:08 - 00002123 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-15 14:08 - 2013-09-20 11:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-03-15 14:06 - 2014-03-15 14:33 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-15 14:04 - 2014-03-15 14:04 - 00559280 _____ (Safer-Networking Ltd. ) C:\Users\gokarna\Downloads\spybot2-license.exe
2014-03-15 08:35 - 2012-07-26 06:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-03-15 08:35 - 2012-07-26 06:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-03-15 08:35 - 2012-07-26 06:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-03-15 08:35 - 2012-07-26 06:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-03-15 08:35 - 2012-07-26 06:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-03-15 08:35 - 2012-07-26 06:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-03-15 08:35 - 2012-07-26 05:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-03-15 08:35 - 2012-07-26 05:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-03-15 08:35 - 2012-07-26 05:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-03-15 08:35 - 2012-06-02 17:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-03-15 08:35 - 2012-06-02 17:34 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-03-15 08:33 - 2012-03-01 08:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-03-15 08:33 - 2012-03-01 08:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-03-15 08:31 - 2014-03-15 08:33 - 00003885 _____ () C:\Windows\IE9_main.log
2014-03-13 10:05 - 2013-04-12 16:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-03-13 10:05 - 2013-02-12 06:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-03-13 10:05 - 2012-11-22 07:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-03-13 10:05 - 2011-04-29 05:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-03-13 10:05 - 2011-04-29 05:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-03-13 10:05 - 2011-04-29 05:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-03-13 10:04 - 2013-03-19 07:48 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-03-13 10:04 - 2013-03-19 05:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-03-13 10:04 - 2013-01-24 07:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-03-13 10:04 - 2012-11-02 08:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-03-13 10:04 - 2011-06-16 07:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-03-13 10:04 - 2011-03-03 08:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-03-13 10:04 - 2011-03-03 08:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-03-13 10:04 - 2011-03-03 08:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-03-13 10:04 - 2011-02-18 08:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-03-13 10:04 - 2010-11-20 14:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2014-03-13 10:03 - 2012-04-28 06:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-03-13 10:03 - 2011-12-30 08:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-03-13 10:03 - 2011-08-17 07:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-03-13 10:03 - 2011-08-17 07:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-03-13 10:03 - 2011-05-24 13:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-03-13 10:03 - 2010-11-20 15:18 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2014-03-13 10:03 - 2010-11-20 15:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2014-03-13 10:03 - 2010-11-20 15:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-03-13 10:03 - 2010-11-20 15:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-03-13 10:03 - 2010-11-20 13:24 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-03-13 10:03 - 2010-11-20 13:21 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-03-13 10:02 - 2013-02-15 07:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-13 10:02 - 2013-02-15 07:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-03-13 10:02 - 2013-02-15 06:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-13 10:02 - 2012-11-01 07:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-03-13 10:02 - 2011-08-27 07:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-03-13 10:02 - 2011-08-27 07:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-03-13 10:02 - 2011-07-09 05:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-03-13 10:02 - 2011-05-03 07:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-03-13 10:02 - 2011-04-27 05:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-03-13 10:02 - 2011-04-27 05:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-03-13 10:01 - 2013-01-03 08:04 - 00187752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-03-13 10:01 - 2011-11-19 17:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-03-13 10:00 - 2012-07-05 00:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-03-13 10:00 - 2012-07-05 00:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-03-13 10:00 - 2012-07-05 00:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-03-13 10:00 - 2012-06-06 08:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-03-13 10:00 - 2012-05-05 10:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-03-13 10:00 - 2011-10-15 08:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-03-13 10:00 - 2011-05-04 07:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-03-13 10:00 - 2011-05-04 07:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-03-13 10:00 - 2011-05-04 07:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-03-13 10:00 - 2011-05-04 07:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-03-13 10:00 - 2011-05-04 07:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-03-13 10:00 - 2011-05-04 07:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-03-13 10:00 - 2011-05-04 07:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-03-13 10:00 - 2011-05-04 07:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-03-13 10:00 - 2011-05-04 07:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-03-13 10:00 - 2011-02-12 08:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-03-13 10:00 - 2010-11-20 15:17 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2014-03-13 10:00 - 2010-11-20 15:17 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-03-13 09:59 - 2012-12-07 15:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-03-13 09:59 - 2012-12-07 15:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-03-13 09:59 - 2012-12-07 13:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-03-13 09:59 - 2012-12-07 13:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-03-13 09:59 - 2012-08-11 02:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-03-13 09:59 - 2012-04-07 14:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-03-13 09:59 - 2011-10-26 07:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-03-13 09:59 - 2011-10-26 07:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-03-13 09:59 - 2010-12-23 08:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-03-13 09:59 - 2010-12-23 08:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-03-13 09:59 - 2010-12-23 08:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-03-13 09:58 - 2012-09-26 01:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-03-13 09:58 - 2012-05-14 07:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-03-13 09:58 - 2012-05-01 07:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-03-13 09:58 - 2012-04-26 07:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-03-13 09:58 - 2012-04-26 07:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-03-13 09:58 - 2012-04-26 07:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-03-13 09:58 - 2012-03-17 10:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-03-13 09:58 - 2012-01-04 11:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-03-13 09:58 - 2011-12-16 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-03-13 09:58 - 2011-11-17 08:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-03-13 09:58 - 2011-06-15 11:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2014-03-13 09:58 - 2011-06-15 11:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-03-13 09:58 - 2011-06-15 11:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-03-13 09:58 - 2011-06-15 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-03-13 09:58 - 2011-06-15 11:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-03-13 09:58 - 2010-11-20 15:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2014-03-13 09:57 - 2011-04-22 22:14 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-03-13 09:57 - 2011-04-09 08:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-03-13 09:57 - 2011-03-11 08:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-03-13 09:57 - 2011-03-11 08:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-03-13 09:57 - 2011-02-23 07:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-03-13 09:56 - 2010-11-20 14:56 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-03-13 09:15 - 2012-02-17 08:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-03-13 09:15 - 2012-02-17 07:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-03-13 09:15 - 2010-11-20 13:21 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
2014-03-10 11:50 - 2012-06-03 01:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-03-10 11:50 - 2012-06-03 01:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-03-10 11:50 - 2012-06-03 01:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-03-10 11:50 - 2012-06-03 01:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-03-10 11:50 - 2012-06-03 01:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-03-10 11:50 - 2012-06-03 01:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-03-10 11:50 - 2012-06-03 01:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-03-10 11:50 - 2012-06-02 12:49 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-03-10 11:50 - 2012-06-02 12:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

2014-04-09 13:02 - 2014-04-01 12:19 - 00015298 _____ () C:\Users\gokarna\Downloads\FRST.txt
2014-04-09 13:02 - 2014-04-01 12:19 - 00000000 ____D () C:\FRST
2014-04-09 12:47 - 2014-04-02 19:06 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-09 12:42 - 2014-04-02 21:37 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-09 12:28 - 2014-03-16 00:29 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-09 11:44 - 2014-03-04 10:26 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-09 11:43 - 2009-07-14 07:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-09 11:43 - 2009-07-14 07:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-09 11:42 - 2014-03-04 10:18 - 01910277 _____ () C:\Windows\WindowsUpdate.log
2014-04-09 11:41 - 2014-04-09 11:41 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Yandex
2014-04-09 11:40 - 2014-04-09 11:40 - 00003287 _____ () C:\Users\gokarna\Desktop\AdwCleaner[S0].txt
2014-04-09 11:38 - 2014-04-09 11:38 - 00000000 ___RD () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-09 11:38 - 2014-04-02 21:37 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-09 11:38 - 2009-07-14 07:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-09 11:37 - 2009-07-14 07:39 - 00027972 _____ () C:\Windows\setupact.log
2014-04-09 11:34 - 2014-04-05 21:21 - 00000000 ____D () C:\AdwCleaner
2014-04-09 10:40 - 2014-04-09 10:40 - 01016261 _____ (Thisisu) C:\Users\gokarna\Downloads\JRT.exe
2014-04-09 09:55 - 2014-04-09 09:54 - 01145856 _____ (Farbar) C:\Users\gokarna\Downloads\FRST(1).exe
2014-04-09 09:28 - 2014-03-09 21:54 - 00000000 ____D () C:\Users\gokarna\AppData\Local\CrashDumps
2014-04-09 02:59 - 2014-03-04 11:31 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\vlc
2014-04-09 02:47 - 2014-03-04 10:45 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Adobe
2014-04-08 08:54 - 2014-04-03 12:09 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Spotify
2014-04-07 20:04 - 2014-03-04 14:40 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Skype
2014-04-06 00:00 - 2014-04-09 10:23 - 00000180 _____ () C:\Users\gokarna\Documents\filetext.txt
2014-04-06 00:00 - 2014-04-06 00:00 - 00000180 _____ () C:\Users\gokarna\Desktop\filetext.txt
2014-04-05 22:16 - 2014-04-05 22:16 - 00000000 ____D () C:\Windows\ERUNT
2014-04-05 21:19 - 2014-04-05 21:19 - 01426178 _____ () C:\Users\gokarna\Downloads\AdwCleaner.exe
2014-04-05 15:13 - 2014-04-02 19:05 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-05 15:13 - 2014-04-02 19:05 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-04-04 02:24 - 2014-03-04 11:24 - 00014386 _____ () C:\Windows\PFRO.log
2014-04-03 17:38 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-04-03 16:31 - 2014-03-19 16:52 - 00011264 _____ () C:\Users\gokarna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-03 12:23 - 2014-04-03 12:23 - 00127080 _____ (Spotify Ltd) C:\Users\gokarna\Downloads\SpotifySetup(1).exe
2014-04-03 12:19 - 2014-04-03 12:10 - 00001817 _____ () C:\Users\gokarna\Desktop\Spotify.lnk
2014-04-03 12:19 - 2014-04-03 12:10 - 00001803 _____ () C:\Users\gokarna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-04-03 12:10 - 2014-04-03 12:10 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Spotify
2014-04-03 12:07 - 2014-04-03 12:07 - 00127080 _____ (Spotify Ltd) C:\Users\gokarna\Downloads\SpotifySetup.exe
2014-04-03 11:46 - 2014-03-04 11:28 - 00002205 _____ () C:\Users\gokarna\Desktop\Google Chrome.lnk
2014-04-03 09:51 - 2014-04-02 19:05 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-02 19:05 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-02 19:05 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 03:35 - 2009-07-14 05:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-04-02 22:38 - 2014-03-04 11:59 - 00000000 ____D () C:\Program Files\Winamp
2014-04-02 22:11 - 2014-04-02 22:09 - 00000000 ___RD () C:\Program Files\Skype
2014-04-02 22:09 - 2014-04-02 22:09 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Skype
2014-04-02 22:09 - 2014-04-02 22:09 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-04-02 22:09 - 2014-03-04 14:40 - 00002685 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-04-02 22:09 - 2014-03-04 14:40 - 00000000 ____D () C:\ProgramData\Skype
2014-04-02 22:08 - 2014-04-02 22:08 - 00362029 _____ () C:\Users\gokarna\Downloads\sqlite3.dll
2014-04-02 21:58 - 2014-04-02 21:57 - 34829472 _____ (Skype Technologies S.A.) C:\Users\gokarna\Downloads\SkypeSetupFull.exe
2014-04-02 21:39 - 2014-04-02 21:39 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-02 21:39 - 2014-04-02 21:37 - 00000000 ____D () C:\Program Files\Google
2014-04-02 21:37 - 2014-04-02 21:37 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-02 21:36 - 2014-03-04 11:28 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Google
2014-04-02 21:35 - 2014-04-02 21:35 - 00884712 _____ (Google Inc.) C:\Users\gokarna\Downloads\ChromeSetup.exe
2014-04-02 21:11 - 2014-04-02 21:11 - 00000000 ____D () C:\ProgramData\Sun
2014-04-02 21:11 - 2014-03-30 18:15 - 00000000 ____D () C:\Users\gokarna\Downloads\Sinead O'Connor So Far... The Best Of
2014-04-02 21:11 - 2014-03-04 11:21 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-02 21:10 - 2014-04-02 21:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-02 21:10 - 2014-04-02 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-02 21:10 - 2014-03-04 11:21 - 00000000 ____D () C:\Program Files\Java
2014-04-02 21:06 - 2014-04-02 21:06 - 00921000 _____ (Oracle Corporation) C:\Users\gokarna\Downloads\jxpiinstall.exe
2014-04-02 21:06 - 2014-04-02 21:06 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-04-02 21:06 - 2014-04-02 21:06 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-04-02 21:06 - 2014-03-04 10:45 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-04-02 21:06 - 2014-03-04 10:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-02 21:06 - 2014-03-04 10:44 - 00000000 ____D () C:\Program Files\Adobe
2014-04-02 21:05 - 2014-04-02 21:04 - 00000000 ____D () C:\Program Files\MPC-HC
2014-04-02 21:04 - 2014-03-04 11:31 - 00000952 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-04-02 21:00 - 2014-04-02 21:00 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Secunia PSI
2014-04-02 20:58 - 2014-04-02 20:58 - 00000000 ____D () C:\Program Files\Secunia
2014-04-02 20:50 - 2014-04-02 20:49 - 05329480 _____ (Secunia) C:\Users\gokarna\Downloads\PSISetup.exe
2014-04-02 20:28 - 2014-04-02 20:27 - 00001800 _____ () C:\sc-cleaner.txt
2014-04-02 20:26 - 2014-04-02 20:26 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\gokarna\Downloads\sc-cleaner.exe
2014-04-02 19:41 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\schemas
2014-04-02 19:05 - 2014-04-02 19:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-02 18:44 - 2014-04-02 18:43 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\gokarna\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-01 12:20 - 2014-04-01 12:20 - 00020845 _____ () C:\Users\gokarna\Downloads\Addition.txt
2014-04-01 11:29 - 2014-04-01 11:28 - 01145856 _____ (Farbar) C:\Users\gokarna\Downloads\FRST.exe
2014-04-01 10:36 - 2014-04-01 10:35 - 00003618 _____ () C:\Users\gokarna\Desktop\Rkill.txt
2014-04-01 10:34 - 2014-04-01 10:34 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\gokarna\Downloads\rkill.exe
2014-04-01 09:44 - 2014-03-04 10:21 - 00000000 ____D () C:\Users\gokarna\AppData\Local\VirtualStore
2014-03-30 17:47 - 2014-03-30 17:41 - 107907946 _____ () C:\Users\gokarna\Downloads\The Rolling Stones - GRRR! (Deluxe Version) CD2.zip
2014-03-30 12:32 - 2014-03-26 19:05 - 00000000 ____D () C:\Windows\erdnt
2014-03-30 12:32 - 2014-03-04 12:17 - 00000265 _____ () C:\Windows\lgfwup.ini
2014-03-30 12:32 - 2014-03-04 12:17 - 00000000 ____D () C:\Program Files\lg_fwupdate
2014-03-30 12:31 - 2014-03-07 17:08 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-03-30 01:59 - 2014-03-30 01:27 - 00000000 ____D () C:\Users\gokarna\Documents\Spybot Docs
2014-03-30 00:51 - 2014-03-30 00:51 - 04745728 _____ (AVAST Software) C:\Users\gokarna\Downloads\aswMBR.exe
2014-03-30 00:48 - 2014-03-30 00:47 - 00688992 ____R (Swearware) C:\Users\gokarna\Downloads\dds.scr
2014-03-30 00:46 - 2014-03-30 00:45 - 00000000 ____D () C:\Program Files\ERUNT
2014-03-30 00:45 - 2014-03-30 00:45 - 00000898 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000898 _____ () C:\Users\gokarna\Desktop\NTREGOPT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000879 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-03-30 00:45 - 2014-03-30 00:45 - 00000879 _____ () C:\Users\gokarna\Desktop\ERUNT.lnk
2014-03-30 00:42 - 2014-03-30 00:42 - 00791393 _____ (Lars Hederer ) C:\Users\gokarna\Downloads\erunt-setup.exe
2014-03-29 18:46 - 2014-03-19 17:56 - 00000298 _____ () C:\Windows\wininit.ini
2014-03-29 17:55 - 2014-03-29 17:55 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-29 17:13 - 2014-03-29 17:13 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\uTorrent
2014-03-29 04:50 - 2014-03-04 11:59 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Winamp
2014-03-28 23:12 - 2014-03-04 12:18 - 00000000 ____D () C:\Users\gokarna\AppData\Local\Adobe
2014-03-28 23:10 - 2014-03-28 23:10 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-28 23:10 - 2014-03-04 10:44 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-03-28 22:57 - 2014-03-28 23:09 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-220935.backup
2014-03-28 22:55 - 2014-03-28 22:57 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-215753.backup
2014-03-28 22:55 - 2014-03-28 22:55 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140328-215542.backup
2014-03-26 19:13 - 2014-03-26 19:05 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-26 19:09 - 2014-03-26 19:09 - 00000000 ____D () C:\Qoobox
2014-03-22 01:02 - 2014-03-04 14:28 - 00000000 ____D () C:\ProgramData\Atheros
2014-03-21 19:09 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\rescache
2014-03-21 18:28 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-03-21 17:56 - 2014-03-21 17:46 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-21 17:47 - 2014-03-21 17:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-03-21 17:46 - 2014-03-21 17:46 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-03-21 17:45 - 2014-03-21 17:44 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-21 17:45 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\Help
2014-03-21 17:44 - 2014-03-21 17:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-21 17:42 - 2014-03-21 17:42 - 00000000 ____D () C:\Program Files\CONEXANT
2014-03-21 17:38 - 2014-03-21 17:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriver_01011.Wdf
2014-03-21 17:38 - 2014-03-04 14:25 - 00000000 ____D () C:\Users\gokarna\Documents\Bluetooth Folder
2014-03-21 15:03 - 2014-03-21 04:08 - 00014518 _____ () C:\Windows\IE11_main.log
2014-03-21 15:02 - 2014-03-21 15:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-03-21 15:02 - 2014-03-21 15:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-03-21 15:02 - 2014-03-21 15:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-03-21 15:02 - 2014-03-21 15:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-03-21 15:02 - 2014-03-21 15:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-03-21 15:02 - 2014-03-21 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-03-21 12:51 - 2014-03-21 12:51 - 00001815 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-21 12:51 - 2014-03-21 12:51 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-21 12:38 - 2014-03-21 12:37 - 41945432 _____ (Apple Inc.) C:\Users\gokarna\Downloads\QuickTimeInstaller.exe
2014-03-21 12:22 - 2014-03-15 15:23 - 00000000 ____D () C:\Users\gokarna\AppData\Roaming\Apple Computer
2014-03-21 10:40 - 2009-07-14 07:33 - 00412432 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-21 04:34 - 2009-07-14 10:50 - 00000000 ____D () C:\Program Files\Windows Journal
2014-03-21 04:34 - 2009-07-14 07:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-03-21 04:34 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-21 04:21 - 2014-03-04 10:48 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-03-21 04:05 - 2014-03-21 04:01 - 00009285 _____ () C:\Windows\IE10_main.log