Page 1 of 2 12 LastLast
Results 1 to 10 of 11
  1. #1
    Member Staritza's Avatar
    Join Date
    Aug 2012
    Posts
    31
    Points
    0

    Default Windows 7 Home Premium Problems

    Hi.

    Am wondering if anyone with Windows 7 Home Premium has had/is having the problem where Control-Panel shortcut Icons keep disappearing from the Desktop? Why does it happen (am deeply suspicious that Windows Explorer, which seems to be extremely buggy, is the culprit) and is there a fix for it?

    And talking about Windows Explorer, mine keeps on crashing, sometimes every few minutes: it is infuriatingly frustrating because not only does WE, when it crashes, throw most of the (numerous and carefully arranged) Desktop Icons over to the far-left side of the screen in a big jumble, but also anything that is being worked on such as writing (etc) is instantly lost.

    WE also frequently crashes when attempting to extract ZIP files (the other day had three seperate ZIP files keep on being disrupted when trying to open them by WE relentlessly crashing, am unable to open the files).

    Is this a common flaw in Windows 7 Home Premium OS or else is it indicative of the computer itself having something wrong with it?



    Any suggestions/advice will be gratefully welcomed.
    Last edited by Staritza; 10-28-2014 at 04:18 PM.

  2. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    Lets scan for any possible Malware related files.

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce a log called FRST.txt in the same directory the tool is run from.
    • Please copy and paste log back here.
    • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


    Joe

  3. #3
    Member Staritza's Avatar
    Join Date
    Aug 2012
    Posts
    31
    Points
    0

    Default

    Quote Originally Posted by zep516 View Post
    Hello,

    Lets scan for any possible Malware related files.

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce a log called FRST.txt in the same directory the tool is run from.
    • Please copy and paste log back here.
    • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


    Joe

    Gooday Joe, thank you for your reply and for being willing to help.

    Have downloaded and run the Farbar program and am now going to post the scan results:

    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-10-2014 01
    Ran by Staritza at 2014-10-30 08:27:34
    Running from C:\Users\Staritza\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
    AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    360Amigo System Speedup Free (HKLM-x32\...\360Amigo) (Version: 1.2.1.7900 - 360Amigo System SpeedUp)
    Absolute Uninstaller 5.3.1.17 (HKLM-x32\...\Absolute Uninstaller) (Version: 5.3.1.17 - Glarysoft Ltd)
    Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
    Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.4.0 - IObit)
    CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
    DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.88 - DivX, LLC)
    EaseUS Todo Backup Free 7.5 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 7.5 - CHENGDU YIWO Tech Development Co., Ltd)
    FastStone Image Viewer 5.2 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.2 - FastStone Soft)
    IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.3.9.2622 - IObit)
    KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.4.0.4 - QFX Software Corporation)
    Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
    Marble (remove only) (HKLM-x32\...\Marble) (Version: - )
    Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
    MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
    Mozilla Firefox 23.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 23.0 (x86 en-US)) (Version: 23.0 - Mozilla)
    Mozilla Thunderbird 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
    MPC-HC 1.7.6 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.6 - MPC-HC Team)
    NVIDIA 3D Vision Controller Driver 306.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 306.23 - NVIDIA Corporation)
    NVIDIA 3D Vision Driver 306.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 306.23 - NVIDIA Corporation)
    NVIDIA Graphics Driver 306.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 306.23 - NVIDIA Corporation)
    NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.12.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0604 - NVIDIA Corporation)
    NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
    PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.310.0 - Tracker Software Products Ltd)
    Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
    Privacy Eraser (HKLM\...\{CB5AC03C-B8AD-980F-998E-51969A6DFC9F}_is1) (Version: 3.0.5.958 - Cybertron Software Co., Ltd.)
    PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.22.1.0 - Goversoft LLC)
    Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
    SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1158 - SUPERAntiSpyware.com)
    Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
    TinyWall (HKLM-x32\...\{E87F67CD-B72A-4B47-A01D-28CD16AC0711}) (Version: 2.1.4.0 - Károly Pados)
    VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
    VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
    WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 32.0.2014.5 - Ruiware)
    WordWeb (HKLM-x32\...\WordWeb) (Version: 7 - WordWeb Software)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


    ==================== Restore Points =========================

    28-10-2014 03:44:02 Installed TinyWall
    28-10-2014 04:13:45 Tinywall Reinstalled Yet Again After Another Sys Res Failure
    28-10-2014 18:00:31 Windows Update
    29-10-2014 08:18:40 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
    29-10-2014 08:37:44 Installed Microsoft Visual C++ 2005 Redistributable (x64)
    29-10-2014 17:54:21 Revo Uninstaller's restore point - DAZ Content Management Service
    29-10-2014 17:55:56 Revo Uninstaller's restore point - DAZ Install Manager
    29-10-2014 18:00:58 Configured Platform
    29-10-2014 18:09:52 Installed Platform
    29-10-2014 18:19:20 Removed TinyWall
    29-10-2014 18:21:05 Installed TinyWall
    29-10-2014 18:24:16 Reinstalled Tinywall + Reinstalled Audio - They Had Both Failed
    29-10-2014 19:04:55 360Amigo System Speedup Free(1.2.1.7900)

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-14 15:34 - 2009-06-11 10:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {1B61C289-CE2E-4BBA-80E9-4141EBE9A2B1} - System32\Tasks\ASC7_SkipUac_Staritza => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-08-22] (IObit)
    Task: {476AF14D-5838-40A7-B035-0FEAB1CB1C7B} - System32\Tasks\Cybertron\Privacy Eraser\SkipUAC => C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser.exe [2014-10-19] (Cybertron Software, Co., Ltd.)
    Task: {B2A040FF-08ED-4FC0-8636-1C044976F877} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-24] (Adobe Systems Incorporated)
    Task: {C18A7BF6-5E46-4ED2-9996-0A8AEBF5D039} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-27] (Piriform Ltd)
    Task: {DB137492-6435-480D-8D5E-818624916DFA} - System32\Tasks\360Amigo => C:\Program files\360Amigo\360Amigo.exe [2014-10-30] (360Amigo)
    Task: {E1778342-673E-43B9-8524-508B486AF391} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [2014-08-20] (IObit)
    Task: {F2CB93E1-1221-4440-BC34-79EF0E813478} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-08-22] (IObit)
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    ==================== Loaded Modules (whitelisted) =============

    2014-10-24 17:40 - 2012-08-31 05:17 - 00086888 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
    2014-10-24 18:20 - 2014-10-24 18:20 - 03525431 _____ () C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll
    2014-10-28 18:33 - 2014-10-20 16:56 - 00240680 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
    2014-01-10 18:26 - 2014-01-10 18:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    2014-10-28 18:34 - 2014-10-14 10:55 - 00253960 _____ () C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe
    2014-10-30 07:10 - 2009-05-07 21:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
    2014-10-30 07:10 - 2009-05-07 21:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
    2014-10-30 07:10 - 2008-01-18 19:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
    2014-10-30 07:10 - 2009-09-02 14:26 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
    2014-10-30 07:21 - 2014-10-30 07:21 - 00227328 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\TinyWall.XmlSeriali#\e04300a10d1773e2ef528eea06528c19\TinyWall.XmlSerializers.ni.dll
    2014-10-24 19:46 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\sqlite3.dll
    2014-10-28 18:33 - 2014-10-14 09:42 - 00098824 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
    2014-10-28 18:33 - 2014-10-14 09:41 - 00031240 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckTool.dll
    2014-10-28 18:33 - 2014-10-14 10:01 - 01296392 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
    2014-10-28 18:33 - 2014-10-14 10:19 - 00060936 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
    2014-10-28 18:33 - 2014-10-14 09:42 - 00017416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
    2014-10-28 18:33 - 2014-10-14 10:13 - 00088584 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
    2014-10-28 18:33 - 2014-10-14 09:36 - 00107528 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
    2014-10-28 18:33 - 2014-10-14 10:02 - 00075784 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
    2014-10-28 18:33 - 2014-10-14 09:44 - 00030216 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
    2014-10-28 18:33 - 2014-10-14 10:05 - 00068104 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
    2014-10-28 18:33 - 2014-10-14 09:55 - 00158216 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
    2014-10-28 18:33 - 2014-10-14 09:45 - 00275976 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
    2014-10-28 18:33 - 2014-10-14 09:40 - 00072200 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
    2014-10-28 18:33 - 2014-10-14 10:17 - 00139784 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
    2014-10-28 18:33 - 2014-10-14 09:39 - 00037384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
    2014-10-28 18:33 - 2014-10-20 16:46 - 00743976 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
    2014-10-28 18:33 - 2014-10-14 09:46 - 00193032 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
    2014-10-28 18:33 - 2014-10-14 09:37 - 00255496 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
    2014-10-28 18:33 - 2014-10-14 09:47 - 00145928 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
    2014-10-28 18:33 - 2014-10-14 09:50 - 00076808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
    2014-10-28 18:33 - 2014-10-14 10:08 - 00207880 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
    2014-10-28 18:33 - 2014-10-14 09:54 - 00024584 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
    2014-10-28 18:33 - 2014-10-14 09:42 - 00020488 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
    2014-10-28 18:33 - 2014-10-14 09:47 - 00032264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
    2014-10-28 18:33 - 2014-10-14 10:14 - 00034824 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
    2014-10-28 18:33 - 2014-10-14 10:10 - 00064008 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
    2014-10-28 18:33 - 2014-10-14 09:36 - 00022536 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
    2014-10-28 18:33 - 2014-10-14 10:06 - 00115720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
    2014-10-28 18:33 - 2014-10-14 09:46 - 00194056 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
    2014-10-28 18:33 - 2014-10-14 09:41 - 00135688 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
    2014-10-28 18:33 - 2014-10-14 09:36 - 00037896 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
    2014-10-28 18:33 - 2014-10-14 10:18 - 00135688 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
    2014-10-28 18:33 - 2014-10-14 09:37 - 00019976 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
    2014-10-28 18:33 - 2014-10-14 10:12 - 00043016 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
    2014-10-28 18:33 - 2014-10-14 10:12 - 00096776 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBFireWall.dll
    2014-10-24 19:46 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl
    2014-10-24 19:46 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl
    2014-10-24 19:46 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl
    2014-10-24 19:46 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll
    2014-10-28 18:33 - 2014-10-14 10:11 - 00223752 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
    2014-10-28 18:33 - 2014-10-14 10:02 - 00075784 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\LogSys.dll
    2014-10-28 18:33 - 2014-10-14 10:14 - 00204296 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeHlp.dll
    2014-01-10 18:28 - 2014-01-10 18:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
    2014-10-28 18:34 - 2014-10-14 10:33 - 00223240 _____ () C:\Program Files (x86)\EaseUS\TrayPopup\traynet.dll
    2014-10-28 18:34 - 2014-10-14 10:33 - 00275464 _____ () C:\Program Files (x86)\EaseUS\TrayPopup\libcurl.dll
    2014-10-28 18:34 - 2014-10-14 10:34 - 00118296 _____ () C:\Program Files (x86)\EaseUS\TrayPopup\zlib1.dll
    2014-10-28 18:34 - 2014-10-14 10:34 - 00249864 _____ () C:\Program Files (x86)\EaseUS\TrayPopup\uexper.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\ProgramData\TEMP:5C321E34

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) =============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== MSCONFIG/TASK MANAGER disabled items =========

    (Currently there is no automatic fix for this section.)


    ========================= Accounts: ==========================

    Administrator (S-1-5-21-3575067520-1595961635-1313674182-500 - Administrator - Disabled)
    Guest (S-1-5-21-3575067520-1595961635-1313674182-501 - Limited - Disabled)
    Staritza (S-1-5-21-3575067520-1595961635-1313674182-1000 - Administrator - Enabled) => C:\Users\Staritza
    UpdatusUser (S-1-5-21-3575067520-1595961635-1313674182-1001 - Limited - Enabled) => C:\Users\UpdatusUser

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (10/30/2014 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: Acquisition of End User License failed. hr=0xC004C008
    Sku Id=586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/30/2014 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: License acquisition failure details.
    hr=0xC004C008

    Error: (10/30/2014 07:16:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/30/2014 07:07:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/30/2014 06:49:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/29/2014 07:51:33 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: Acquisition of End User License failed. hr=0xC004C008
    Sku Id=586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/29/2014 07:51:33 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: License acquisition failure details.
    hr=0xC004C008

    Error: (10/29/2014 03:51:34 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: Acquisition of End User License failed. hr=0xC004C008
    Sku Id=586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/29/2014 03:51:34 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: License acquisition failure details.
    hr=0xC004C008

    Error: (10/29/2014 03:04:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


    System errors:
    =============
    Error: (10/30/2014 07:14:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The TinyWall Service service failed to start due to the following error:
    %%1053

    Error: (10/30/2014 07:14:43 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the TinyWall Service service to connect.

    Error: (10/30/2014 07:13:26 AM) (Source: EventLog) (EventID: 6008) (User: )
    Description: The previous system shutdown at 7:11:30 AM on ‎10/‎30/‎2014 was unexpected.

    Error: (10/30/2014 07:05:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The TinyWall Service service failed to start due to the following error:
    %%1053

    Error: (10/30/2014 07:05:35 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the TinyWall Service service to connect.

    Error: (10/30/2014 07:04:20 AM) (Source: EventLog) (EventID: 6008) (User: )
    Description: The previous system shutdown at 7:01:56 AM on ‎10/‎30/‎2014 was unexpected.

    Error: (10/30/2014 06:47:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The TinyWall Service service failed to start due to the following error:
    %%1053

    Error: (10/30/2014 06:47:24 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the TinyWall Service service to connect.

    Error: (10/30/2014 06:45:50 AM) (Source: EventLog) (EventID: 6008) (User: )
    Description: The previous system shutdown at 10:29:28 PM on ‎10/‎29/‎2014 was unexpected.

    Error: (10/29/2014 03:02:25 PM) (Source: EventLog) (EventID: 6008) (User: )
    Description: The previous system shutdown at 2:57:33 PM on ‎10/‎29/‎2014 was unexpected.


    Microsoft Office Sessions:
    =========================
    Error: (10/30/2014 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: hr=0xC004C008586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/30/2014 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: hr=0xC004C00800010001(0x00000000, 08:03:09:617 - http://go.microsoft.com/fwlink/?LinkID=88341)
    00020001(0x00000000, 08:03:09:618)
    00030001(0x00000000, 08:03:09:618 - Microsoft Corporation)
    00030002(0x00000000, 08:03:09:618 - 1)
    00020005(0x00000000, 08:03:09:618 - 0)
    0002000C(0x00000000, 08:03:09:822 - 302)
    0002000E(0x00000000, 08:03:09:822 - https://activation.sls.microsoft.com...SLLicense.asmx)
    00020001(0x00000000, 08:03:09:822)
    00030001(0x00000000, 08:03:09:823 - https://activation.sls.microsoft.com)
    00030002(0x00000000, 08:03:09:823 - 1)
    00020005(0x00000000, 08:03:09:823 - 0)
    0002000C(0x00000000, 08:03:10:419 - 500)
    00010002(0x8004FC01, 08:03:10:420 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded. ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
    00010003(0x8004FC01, 08:03:10:420)

    Error: (10/30/2014 07:16:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/30/2014 07:07:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/30/2014 06:49:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (10/29/2014 07:51:33 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: hr=0xC004C008586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/29/2014 07:51:33 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: hr=0xC004C00800010001(0x00000000, 19:51:32:608 - http://go.microsoft.com/fwlink/?LinkID=88341)
    00020001(0x00000000, 19:51:32:609)
    00030001(0x00000000, 19:51:32:609 - Microsoft Corporation)
    00030002(0x00000000, 19:51:32:609 - 1)
    00020005(0x00000000, 19:51:32:609 - 0)
    0002000C(0x00000000, 19:51:32:801 - 302)
    0002000E(0x00000000, 19:51:32:801 - https://activation.sls.microsoft.com...SLLicense.asmx)
    00020001(0x00000000, 19:51:32:801)
    00030001(0x00000000, 19:51:32:801 - https://activation.sls.microsoft.com)
    00030002(0x00000000, 19:51:32:801 - 1)
    00020005(0x00000000, 19:51:32:801 - 0)
    0002000C(0x00000000, 19:51:33:390 - 500)
    00010002(0x8004FC01, 19:51:33:391 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded. ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
    00010003(0x8004FC01, 19:51:33:391)

    Error: (10/29/2014 03:51:34 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
    Description: hr=0xC004C008586bc076-c93d-429a-afe5-a69fbc644e88

    Error: (10/29/2014 03:51:34 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
    Description: hr=0xC004C00800010001(0x00000000, 15:51:33:337 - http://go.microsoft.com/fwlink/?LinkID=88341)
    00020001(0x00000000, 15:51:33:337)
    00030001(0x00000000, 15:51:33:337 - Microsoft Corporation)
    00030002(0x00000000, 15:51:33:337 - 1)
    00020005(0x00000000, 15:51:33:337 - 0)
    0002000C(0x00000000, 15:51:33:571 - 302)
    0002000E(0x00000000, 15:51:33:571 - https://activation.sls.microsoft.com...SLLicense.asmx)
    00020001(0x00000000, 15:51:33:571)
    00030001(0x00000000, 15:51:33:571 - https://activation.sls.microsoft.com)
    00030002(0x00000000, 15:51:33:571 - 1)
    00020005(0x00000000, 15:51:33:571 - 0)
    0002000C(0x00000000, 15:51:34:258 - 500)
    00010002(0x8004FC01, 15:51:34:258 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded. ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
    00010003(0x8004FC01, 15:51:34:258)

    Error: (10/29/2014 03:04:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


    ==================== Memory info ===========================

    Processor: AMD Athlon(tm) II X2 260 Processor
    Percentage of memory in use: 45%
    Total physical RAM: 4095.24 MB
    Available physical RAM: 2219.59 MB
    Total Pagefile: 8188.66 MB
    Available Pagefile: 6195.99 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.83 MB

    ==================== Drives ================================

    Drive c: () (Fixed) (Total:232.88 GB) (Free:192.2 GB) NTFS
    Drive d: () (Fixed) (Total:297.99 GB) (Free:270.73 GB) NTFS
    Drive f: (Elements) (Fixed) (Total:465.76 GB) (Free:400.44 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 232.9 GB) (Disk ID: 000D0749)
    Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 03CB88FD)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 2 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 0002941A)
    Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================



    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-10-2014 01
    Ran by Staritza (administrator) on KARLY on 30-10-2014 08:25:17
    Running from C:\Users\Staritza\Downloads
    Loaded Profiles: Staritza & UpdatusUser (Available profiles: Staritza & UpdatusUser)
    Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
    (Ruiware LLC) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
    (WordWeb Software) C:\Program Files (x86)\WordWeb\wweb32.exe
    () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
    (Microsoft Corporation) C:\Windows\System32\vds.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
    () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    () C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe
    (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
    (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    (Károly Pados) C:\Program Files (x86)\TinyWall\TinyWall.exe
    (Károly Pados) C:\Program Files (x86)\TinyWall\TinyWall.exe
    (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayNotify.exe
    (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBFVSS64.exe
    (Microsoft Corporation) C:\Windows\System32\audiodg.exe
    (360Amigo) C:\Program Files\360Amigo\360Amigo.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
    HKLM\...\Run: [TinyWall Controller] => C:\Program Files (x86)\TinyWall\TinyWall.exe [649176 2013-07-14] (Károly Pados)
    HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [508232 2014-06-11] (QFX Software Corporation)
    HKU\S-1-5-21-3575067520-1595961635-1313674182-1000\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
    BHO-x32: Advanced SystemCare Browser Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
    Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

    FireFox:
    ========
    FF ProfilePath: C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default
    FF SelectedSearchEngine: Google
    FF Homepage: https://www.google.co.nz/?gfe_rd=cr&...wCw&gws_rd=ssl
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
    FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
    FF user.js: detected! => C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\user.js
    FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\ascsurfingprotection@iobit.com [2014-10-24]
    FF Extension: Click&amp;Clean - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\clickclean@hotcleaner.com [2014-10-24]
    FF Extension: Empty Cache Button - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{4cc4a13b-94a6-7568-370d-5f9de54a9c7f} [2014-10-24]
    FF Extension: Disconnect - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\2.0@disconnect.me.xpi [2014-10-24]
    FF Extension: Self-Destructing Cookies - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi [2014-10-24]
    FF Extension: Google search link fix - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\jid0-XWJxt5VvCXkKzQK99PhZqAn7Xbg@jetpack.xpi [2014-10-24]
    FF Extension: NoSquint - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\nosquint@urandom.ca.xpi [2014-10-24]
    FF Extension: Status-4-Evar - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\status4evar@caligonstudios.com.xpi [2014-10-24]
    FF Extension: Turn Off the Lights - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\stefanvandamme@stefanvd.net.xpi [2014-10-24]
    FF Extension: Thumbnail Zoom Plus - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\thumbnailZoom@dadler.github.com.xpi [2014-10-24]
    FF Extension: Flagfox - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2014-10-24]
    FF Extension: Unhide Passwords - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{2e17e2b2-b8d4-4a67-8d7b-fafa6cc9d1d0}.xpi [2014-10-24]
    FF Extension: Light Switch - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{600452e8-6851-46db-80fd-fa571b2deaa7}.xpi [2014-10-24]
    FF Extension: NoScript - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-10-24]
    FF Extension: BetterPrivacy - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-10-24]
    FF Extension: WorldIP - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{f36c6cd1-da73-491d-b290-8fc9115bfa55}.xpi [2014-10-24]
    FF Extension: Adblock Edge - C:\Users\Staritza\AppData\Roaming\Mozilla\Firefox\Profiles\abmmtsby.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-10-24]
    FF HKCU\...\Firefox\Extensions: [wcapturex@deskperience.com] - C:\Program Files (x86)\WordWeb\WCaptureMoz
    FF Extension: WordWeb one-click lookup - C:\Program Files (x86)\WordWeb\WCaptureMoz [2014-10-26]

    Chrome:
    =======

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
    R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [893216 2014-08-18] (IObit)
    R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [37384 2014-10-14] (CHENGDU YIWO Tech Development Co., Ltd)
    S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
    R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
    R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
    R2 TinyWall; C:\Program Files (x86)\TinyWall\TinyWall.exe [649176 2013-07-14] (Károly Pados) [File not signed]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 AmgHips; C:\Windows\System32\Drivers\AmgHips.sys [31008 2014-10-30] ()
    R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48136 2014-10-14] ()
    R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [222200 2013-06-01] (QFX Software Corporation)
    R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
    R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
    S3 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-10-30 08:25 - 2014-10-30 08:26 - 00010925 _____ () C:\Users\Staritza\Downloads\FRST.txt
    2014-10-30 08:24 - 2014-10-30 08:25 - 00000000 ____D () C:\FRST
    2014-10-30 08:22 - 2014-10-30 08:23 - 02113536 _____ (Farbar) C:\Users\Staritza\Downloads\FRST64.exe
    2014-10-30 08:05 - 2014-10-30 08:05 - 00031008 _____ () C:\Windows\system32\Drivers\AmgHips.sys
    2014-10-30 08:05 - 2014-10-30 08:05 - 00003284 _____ () C:\Windows\System32\Tasks\360Amigo
    2014-10-30 08:05 - 2014-10-30 08:05 - 00000814 _____ () C:\Users\UpdatusUser\Desktop\360Amigo System Speedup.lnk
    2014-10-30 08:05 - 2014-10-30 08:05 - 00000814 _____ () C:\Users\Staritza\Desktop\360Amigo System Speedup.lnk
    2014-10-30 08:05 - 2014-10-30 08:05 - 00000000 ____D () C:\Users\Staritza\AppData\Local\360Amigo
    2014-10-30 08:05 - 2014-10-30 08:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360Amigo
    2014-10-30 08:05 - 2014-10-30 08:05 - 00000000 ____D () C:\Program Files\360Amigo
    2014-10-30 08:02 - 2014-10-30 08:02 - 03476768 _____ (360Amigo) C:\Users\Staritza\Downloads\360amigosetup.exe
    2014-10-30 07:21 - 2014-10-30 07:29 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\TinyWall
    2014-10-30 07:21 - 2014-10-30 07:21 - 00000000 ____D () C:\ProgramData\TinyWall
    2014-10-30 07:21 - 2014-10-30 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TinyWall
    2014-10-30 07:10 - 2014-10-30 07:10 - 00001218 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
    2014-10-30 07:10 - 2014-10-30 07:10 - 00001206 _____ () C:\Users\Public\Desktop\HD VDeck.lnk
    2014-10-30 07:10 - 2009-09-18 00:04 - 01250816 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
    2014-10-30 07:10 - 2009-08-17 19:18 - 01011712 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
    2014-10-29 21:42 - 2014-10-29 21:42 - 00000000 ____D () C:\Users\Staritza\Documents\DAZ 3D
    2014-10-29 21:37 - 2014-10-29 21:42 - 00000000 ____D () C:\Users\Public\Documents\My DAZ 3D Library
    2014-10-29 21:37 - 2014-10-29 21:37 - 00000934 _____ () C:\Users\Staritza\Desktop\DAZ Studio 4.6 (64-bit).lnk
    2014-10-29 21:24 - 2014-10-29 21:24 - 00000000 ____D () C:\Users\Public\Documents\DAZ 3D
    2014-10-29 21:19 - 2014-10-29 21:19 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marble
    2014-10-29 21:19 - 2014-10-29 21:19 - 00000000 ____D () C:\Users\Staritza\AppData\Local\.marble
    2014-10-29 21:19 - 2014-10-29 21:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marble
    2014-10-29 20:54 - 2014-10-29 21:42 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\DAZ 3D
    2014-10-29 20:53 - 2014-10-30 06:56 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D
    2014-10-29 20:53 - 2014-10-30 06:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAZ 3D
    2014-10-29 20:53 - 2014-10-30 06:55 - 00000000 ____D () C:\Program Files\DAZ 3D
    2014-10-29 20:53 - 2014-10-29 21:39 - 00000000 ____D () C:\ProgramData\DAZ 3D
    2014-10-29 18:36 - 2014-10-29 20:38 - 599102936 _____ () C:\Users\Staritza\Downloads\The.Purge.Anarchy.2014.BDRip.x264-SPARKS.mkv
    2014-10-29 17:22 - 2014-10-29 17:23 - 25424256 _____ ( ) C:\Users\Staritza\Downloads\gimp-help-2-2.8.1-en-setup.exe
    2014-10-29 17:01 - 2014-10-29 18:32 - 445888574 _____ () C:\Users\Staritza\Downloads\The.Revelation.of.the.Pyramids.2011.720p.mp4
    2014-10-29 16:16 - 2014-10-29 16:46 - 729051136 _____ () C:\Users\Staritza\Downloads\Savage Man Savage Beast.avi
    2014-10-29 15:17 - 2014-10-29 16:09 - 787018250 _____ () C:\Users\Staritza\Downloads\Slaughter.avi
    2014-10-29 15:07 - 2014-10-29 15:07 - 00000000 ____D () C:\Users\Staritza\Downloads\FIXIT 50202
    2014-10-29 14:51 - 2014-10-29 14:56 - 00000000 ___RD () C:\Users\Staritza\FIXIT 50202
    2014-10-29 13:20 - 2014-10-29 14:53 - 862023322 _____ () C:\Users\Staritza\Downloads\www.filmikz.ch-WEBRip Xvid STINKBOMB.avi
    2014-10-29 12:03 - 2014-10-29 12:04 - 40103880 _____ () C:\Users\Staritza\Downloads\pentablet_5.3.5-3.exe
    2014-10-29 12:01 - 2014-10-29 12:02 - 00000000 ___RD () C:\Users\Staritza\Desktop\BAMBOO DRIVER
    2014-10-29 10:35 - 2014-10-29 11:23 - 739289088 _____ () C:\Users\Staritza\Downloads\Dont Know What This Is.avi
    2014-10-29 08:55 - 2014-10-29 10:29 - 860475392 _____ () C:\Users\Staritza\Downloads\Growing Man.avi
    2014-10-29 07:08 - 2014-10-29 08:31 - 1178065084 _____ () C:\Users\Staritza\Downloads\http://www.filmikz.ch-Totem.and.Tabo...y.x264.mSD.mkv
    2014-10-29 06:51 - 2014-10-29 06:51 - 00000489 _____ () C:\Users\Staritza\Desktop\Action Center - Shortcut (2).lnk
    2014-10-29 06:50 - 2014-10-29 06:50 - 00000489 _____ () C:\Users\Staritza\Desktop\Action Center - Shortcut.lnk
    2014-10-29 06:50 - 2014-10-29 06:50 - 00000485 _____ () C:\Users\Staritza\Desktop\Administrative Tools - Shortcut.lnk
    2014-10-28 22:29 - 2014-10-28 23:19 - 734097408 _____ () C:\Users\Staritza\Downloads\The Hunter + Hermit.avi
    2014-10-28 22:24 - 2014-10-28 22:24 - 00001952 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WordWeb.lnk
    2014-10-28 22:24 - 2014-09-14 08:50 - 02935936 ____N (WordWeb Software) C:\Windows\wweb32.dll
    2014-10-28 22:22 - 2014-10-28 22:24 - 21947320 _____ () C:\Users\Staritza\Downloads\wordweb7.exe
    2014-10-28 21:29 - 2014-10-28 22:24 - 734272388 _____ () C:\Users\Staritza\Downloads\The Haunting Of Brian Beckett.avi
    2014-10-28 21:12 - 2014-10-28 21:12 - 00000000 ___RD () C:\Users\Staritza\Desktop\MOVIE STUFF
    2014-10-28 20:45 - 2014-10-28 20:45 - 00000863 _____ () C:\Users\Staritza\SoundVolumeView.cfg
    2014-10-28 20:43 - 2014-10-28 20:43 - 00000000 ____D () C:\Users\Staritza\Downloads\soundvolumeview-x64
    2014-10-28 20:10 - 2014-10-28 20:23 - 00000000 ____D () C:\Users\Staritza\Desktop\GRAPHICS
    2014-10-28 19:23 - 2014-10-28 19:23 - 00004096 ___SH () C:\{F2E82A87-F953-4278-82B6-E56C2E662659}.CBM
    2014-10-28 18:54 - 2014-10-28 18:58 - 00477696 ___SH () C:\EUMONBMP.SYS
    2014-10-28 18:36 - 2014-10-14 11:14 - 00188936 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys
    2014-10-28 18:36 - 2014-10-14 11:14 - 00048136 _____ () C:\Windows\system32\Drivers\EUBKMON.sys
    2014-10-28 18:36 - 2014-10-14 11:14 - 00018440 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys
    2014-10-28 18:36 - 2014-10-14 11:13 - 00060936 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys
    2014-10-28 18:35 - 2014-10-28 18:35 - 00002129 _____ () C:\Users\Public\Desktop\EaseUS Todo Backup Free 7.5 .lnk
    2014-10-28 18:35 - 2014-10-28 18:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Free 7.5
    2014-10-28 18:33 - 2014-10-28 18:34 - 00000000 ____D () C:\Program Files (x86)\EaseUS
    2014-10-28 18:33 - 2014-10-14 10:44 - 00024072 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\fbnative.exe
    2014-10-28 18:31 - 2014-10-29 22:31 - 00000000 ____D () C:\Users\Staritza\firemin_2086
    2014-10-28 18:31 - 2014-10-29 22:31 - 00000000 ____D () C:\Users\Staritza\Downloads\firemin_2086
    2014-10-28 18:14 - 2014-10-28 18:14 - 00634328 _____ (SpeedyFox) C:\Users\Staritza\Downloads\speedyfox.exe
    2014-10-28 17:59 - 2014-10-28 18:02 - 96829560 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Staritza\Downloads\tb_free.exe
    2014-10-28 13:40 - 2014-10-28 13:40 - 00000000 ___RD () C:\Users\Staritza\Desktop\HOME-BREWING
    2014-10-28 13:02 - 2014-10-28 13:53 - 732895550 _____ () C:\Users\Staritza\Downloads\aqos-4.dead.girls.the.sould.taker.2012.dvdrip.xvid.avi
    2014-10-28 07:27 - 2014-10-28 07:27 - 00000489 _____ () C:\Users\Staritza\Desktop\User Accounts - Shortcut.lnk
    2014-10-28 07:27 - 2014-10-28 07:27 - 00000477 _____ () C:\Users\Staritza\Desktop\System - Shortcut.lnk
    2014-10-28 07:27 - 2014-10-28 07:27 - 00000146 _____ () C:\Users\Staritza\Desktop\Sound - Shortcut.lnk
    2014-10-27 20:12 - 2014-10-27 20:12 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
    2014-10-27 15:34 - 2014-10-29 21:19 - 00000000 ____D () C:\Program Files\Marble
    2014-10-27 15:34 - 2014-10-29 21:18 - 00000000 ____D () C:\ProgramData\Package Cache
    2014-10-26 16:37 - 2014-10-26 16:37 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\MPC-HC
    2014-10-26 16:16 - 2014-10-26 16:16 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\PicPick
    2014-10-26 16:16 - 2014-10-26 16:16 - 00000000 ____D () C:\ProgramData\PicPick
    2014-10-26 16:15 - 2014-10-28 22:24 - 00000000 ____D () C:\Program Files (x86)\WordWeb
    2014-10-26 16:15 - 2014-10-28 18:30 - 00000000 ____D () C:\Users\Staritza\PicPick
    2014-10-26 16:15 - 2014-10-28 18:29 - 00000000 ____D () C:\Users\Staritza\Downloads\PicPick
    2014-10-26 14:57 - 2014-10-26 14:57 - 01412551 _____ () C:\Users\Staritza\Downloads\faststone_capture_v5.3.zip
    2014-10-26 14:56 - 2014-10-26 14:56 - 11419642 _____ () C:\Users\Staritza\Downloads\PicPick.zip
    2014-10-26 14:29 - 2014-10-26 14:29 - 06142695 _____ (DuckLink Software ) C:\Users\Staritza\Downloads\Install_DuckCapture_Standard.exe
    2014-10-26 10:16 - 2014-10-26 10:16 - 05051876 _____ () C:\Users\Staritza\Downloads\calmag184.zip
    2014-10-26 10:08 - 2014-10-26 10:08 - 03807181 _____ (Ashok P. Nadkarni) C:\Users\Staritza\Downloads\setup-wits-3.2.3(64 bit).exe
    2014-10-26 09:57 - 2014-10-26 09:57 - 00081288 _____ () C:\Users\Staritza\Downloads\soundvolumeview-x64.zip
    2014-10-26 09:52 - 2014-10-26 09:54 - 55573484 _____ () C:\Users\Staritza\Downloads\marble-setup_1.9.1_x64.exe
    2014-10-26 09:47 - 2014-10-26 09:47 - 00000000 ___RD () C:\Users\Staritza\Desktop\VIEWER FILES
    2014-10-26 09:46 - 2014-10-26 09:47 - 00000000 ___RD () C:\Users\Staritza\Desktop\PDF FILES
    2014-10-25 17:37 - 2014-10-07 15:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2014-10-25 17:37 - 2014-10-07 15:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2014-10-25 17:37 - 2014-09-26 11:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2014-10-25 17:37 - 2014-09-26 11:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2014-10-25 17:37 - 2014-09-26 11:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2014-10-25 17:37 - 2014-09-26 11:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2014-10-25 17:37 - 2014-09-26 11:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2014-10-25 17:37 - 2014-09-26 11:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2014-10-25 17:37 - 2014-09-26 11:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2014-10-25 17:37 - 2014-09-19 15:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2014-10-25 17:37 - 2014-09-19 14:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2014-10-25 17:37 - 2014-09-19 14:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2014-10-25 17:37 - 2014-09-19 14:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2014-10-25 17:37 - 2014-09-19 14:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2014-10-25 17:37 - 2014-09-19 14:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2014-10-25 17:37 - 2014-09-19 14:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2014-10-25 17:37 - 2014-09-19 14:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2014-10-25 17:37 - 2014-09-19 14:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2014-10-25 17:37 - 2014-09-19 14:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2014-10-25 17:37 - 2014-09-19 14:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2014-10-25 17:37 - 2014-09-19 14:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2014-10-25 17:37 - 2014-09-19 14:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2014-10-25 17:37 - 2014-09-19 14:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2014-10-25 17:37 - 2014-09-19 14:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2014-10-25 17:37 - 2014-09-19 14:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2014-10-25 17:37 - 2014-09-19 14:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2014-10-25 17:37 - 2014-09-19 14:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2014-10-25 17:37 - 2014-09-19 14:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2014-10-25 17:37 - 2014-09-19 14:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2014-10-25 17:37 - 2014-09-19 14:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2014-10-25 17:37 - 2014-09-19 14:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2014-10-25 17:37 - 2014-09-19 14:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2014-10-25 17:37 - 2014-09-19 14:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2014-10-25 17:37 - 2014-09-19 14:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2014-10-25 17:37 - 2014-09-19 14:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2014-10-25 17:37 - 2014-09-19 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2014-10-25 17:37 - 2014-09-19 13:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2014-10-25 17:37 - 2014-09-19 13:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2014-10-25 17:37 - 2014-09-19 13:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2014-10-25 17:37 - 2014-09-19 13:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2014-10-25 17:37 - 2014-09-19 13:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2014-10-25 17:37 - 2014-09-19 13:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2014-10-25 17:37 - 2014-09-19 13:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2014-10-25 17:37 - 2014-09-19 13:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2014-10-25 17:37 - 2014-09-19 13:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2014-10-25 17:37 - 2014-09-19 13:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2014-10-25 17:37 - 2014-09-19 13:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2014-10-25 17:37 - 2014-09-19 13:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2014-10-25 17:37 - 2014-09-19 13:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2014-10-25 17:37 - 2014-09-19 13:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2014-10-25 17:37 - 2014-09-19 13:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2014-10-25 17:37 - 2014-09-19 13:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2014-10-25 17:37 - 2014-09-19 12:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2014-10-25 17:37 - 2014-09-19 12:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2014-10-25 17:37 - 2014-09-19 12:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2014-10-25 17:37 - 2014-09-19 12:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2014-10-25 17:35 - 2013-12-25 12:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2014-10-25 17:35 - 2013-12-25 11:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2014-10-25 17:35 - 2013-11-26 21:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2014-10-25 17:35 - 2013-11-23 11:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2014-10-25 17:17 - 2014-10-25 17:20 - 00000000 ____D () C:\Windows\system32\MRT
    2014-10-25 17:17 - 2014-10-03 10:02 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2014-10-25 14:28 - 2014-10-26 15:47 - 00000000 ____D () C:\Windows\Panther
    2014-10-25 13:32 - 2014-10-25 13:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
    2014-10-25 13:32 - 2014-10-25 13:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
    2014-10-25 13:31 - 2014-10-30 08:13 - 01559067 _____ () C:\Windows\WindowsUpdate.log
    2014-10-25 01:21 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
    2014-10-25 01:17 - 2014-10-25 01:17 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
    2014-10-25 01:17 - 2014-10-25 01:17 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2014-10-25 01:17 - 2014-10-25 01:17 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2014-10-25 01:17 - 2014-10-25 01:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2014-10-25 01:17 - 2014-10-25 01:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2014-10-25 01:17 - 2014-10-25 01:17 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
    2014-10-25 01:17 - 2014-10-25 01:17 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
    2014-10-25 01:17 - 2014-10-25 01:17 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2014-10-25 01:17 - 2014-10-25 01:17 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
    2014-10-25 01:15 - 2014-10-25 01:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2014-10-25 01:15 - 2014-10-25 01:15 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2014-10-25 01:15 - 2014-10-25 01:15 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2014-10-25 01:15 - 2014-10-25 01:15 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2014-10-25 01:15 - 2014-10-25 01:15 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
    2014-10-25 01:15 - 2014-10-25 01:15 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2014-10-25 01:14 - 2014-10-25 01:14 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2014-10-25 01:14 - 2014-10-25 01:14 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2014-10-25 01:08 - 2014-10-25 01:08 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2014-10-25 01:06 - 2014-10-25 01:06 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2014-10-25 01:06 - 2014-10-25 01:06 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
    2014-10-25 00:29 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2014-10-25 00:29 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2014-10-25 00:29 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
    2014-10-25 00:25 - 2014-07-01 11:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2014-10-25 00:25 - 2014-07-01 11:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
    2014-10-25 00:25 - 2014-03-10 10:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2014-10-25 00:25 - 2014-03-10 10:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2014-10-25 00:25 - 2014-03-10 10:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
    2014-10-25 00:25 - 2014-03-10 10:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
    2014-10-25 00:24 - 2014-06-06 19:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2014-10-25 00:24 - 2014-06-06 19:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2014-10-24 22:00 - 2011-04-09 19:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
    2014-10-24 22:00 - 2011-04-09 18:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
    2014-10-24 21:28 - 2011-06-15 23:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
    2014-10-24 21:28 - 2011-06-15 23:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
    2014-10-24 21:28 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
    2014-10-24 21:28 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
    2014-10-24 21:28 - 2011-06-15 21:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
    2014-10-24 21:28 - 2011-06-15 21:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
    2014-10-24 21:28 - 2011-06-15 21:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
    2014-10-24 21:28 - 2011-06-15 21:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
    2014-10-24 21:28 - 2011-06-15 21:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
    2014-10-24 21:27 - 2013-07-05 01:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
    2014-10-24 21:27 - 2013-07-05 00:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
    2014-10-24 21:24 - 2014-03-25 15:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2014-10-24 21:24 - 2014-03-25 15:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2014-10-24 21:24 - 2013-07-09 18:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2014-10-24 21:24 - 2013-07-09 17:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2014-10-24 21:23 - 2010-12-23 23:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
    2014-10-24 21:23 - 2010-12-23 23:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
    2014-10-24 21:23 - 2010-12-23 23:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
    2014-10-24 21:23 - 2010-12-23 18:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
    2014-10-24 21:23 - 2010-12-23 18:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
    2014-10-24 21:23 - 2010-12-23 18:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
    2014-10-24 21:22 - 2011-10-26 18:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2014-10-24 21:22 - 2011-10-26 18:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2014-10-24 21:22 - 2011-10-26 17:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
    2014-10-24 21:22 - 2011-10-26 17:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
    2014-10-24 21:20 - 2011-07-09 15:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2014-10-24 21:20 - 2011-04-27 15:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2014-10-24 21:20 - 2011-04-27 15:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2014-10-24 21:19 - 2014-09-29 13:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2014-10-24 21:19 - 2014-04-25 15:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
    2014-10-24 21:19 - 2014-04-25 15:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
    2014-10-24 21:18 - 2011-11-17 19:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
    2014-10-24 21:18 - 2011-11-17 18:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
    2014-10-24 21:15 - 2014-10-24 21:15 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Macromedia
    2014-10-24 21:15 - 2014-10-24 21:15 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Adobe
    2014-10-24 21:15 - 2014-10-24 21:15 - 00000000 ____D () C:\Users\Staritza\AppData\Local\Macromedia
    2014-10-24 21:14 - 2014-06-19 11:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
    2014-10-24 21:14 - 2014-06-19 11:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
    2014-10-24 21:14 - 2014-06-19 11:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
    2014-10-24 21:14 - 2014-06-19 11:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
    2014-10-24 21:14 - 2014-06-19 11:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
    2014-10-24 21:14 - 2014-06-19 11:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
    2014-10-24 21:13 - 2013-10-06 09:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2014-10-24 21:13 - 2013-10-06 08:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
    2014-10-24 21:13 - 2013-07-09 18:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2014-10-24 21:13 - 2013-07-09 18:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2014-10-24 21:13 - 2013-07-09 17:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
    2014-10-24 21:13 - 2013-07-09 17:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
    2014-10-24 21:13 - 2013-04-13 03:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2014-10-24 21:12 - 2014-04-05 15:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2014-10-24 21:12 - 2014-04-05 15:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
    2014-10-24 21:12 - 2014-01-29 15:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
    2014-10-24 21:12 - 2014-01-29 15:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
    2014-10-24 21:12 - 2013-11-27 00:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
    2014-10-24 21:12 - 2013-10-19 15:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
    2014-10-24 21:12 - 2013-10-19 14:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
    2014-10-24 21:10 - 2014-03-27 03:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2014-10-24 21:10 - 2014-03-27 03:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2014-10-24 21:10 - 2014-03-27 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2014-10-24 21:10 - 2014-03-27 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2014-10-24 21:10 - 2014-03-27 03:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2014-10-24 21:10 - 2014-03-27 03:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2014-10-24 21:10 - 2014-03-27 03:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
    2014-10-24 21:10 - 2014-03-27 03:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2014-10-24 21:09 - 2013-10-04 15:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
    2014-10-24 21:09 - 2013-10-04 14:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
    2014-10-24 21:08 - 2014-06-18 15:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
    2014-10-24 21:08 - 2014-06-18 14:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
    2014-10-24 21:07 - 2013-06-06 18:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2014-10-24 21:07 - 2013-06-06 18:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2014-10-24 21:07 - 2013-06-06 18:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2014-10-24 21:07 - 2013-06-06 18:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2014-10-24 21:07 - 2013-06-06 17:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2014-10-24 21:07 - 2013-06-06 17:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2014-10-24 21:07 - 2013-06-06 17:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2014-10-24 21:07 - 2013-06-06 16:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2014-10-24 21:07 - 2013-06-06 16:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2014-10-24 21:07 - 2013-06-06 16:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2014-10-24 21:06 - 2013-11-27 14:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2014-10-24 21:06 - 2013-11-27 14:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2014-10-24 21:06 - 2013-11-27 14:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2014-10-24 21:06 - 2013-11-27 14:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2014-10-24 21:06 - 2013-11-27 14:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
    2014-10-24 21:06 - 2013-11-27 14:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
    2014-10-24 21:06 - 2011-03-11 19:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
    2014-10-24 21:06 - 2011-03-11 19:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
    2014-10-24 21:06 - 2011-03-11 18:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
    2014-10-24 21:06 - 2011-03-11 18:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
    2014-10-24 21:05 - 2014-06-06 23:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
    2014-10-24 21:05 - 2014-06-06 22:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
    2014-10-24 21:04 - 2013-07-25 22:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2014-10-24 21:04 - 2013-07-25 21:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
    2014-10-24 21:04 - 2013-02-12 17:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
    2014-10-24 21:02 - 2014-05-30 19:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
    2014-10-24 21:02 - 2013-06-26 11:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2014-10-24 21:02 - 2012-11-29 11:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
    2014-10-24 21:02 - 2012-11-29 11:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
    2014-10-24 21:02 - 2012-11-29 11:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
    2014-10-24 21:01 - 2013-07-12 23:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
    2014-10-24 21:01 - 2013-07-03 17:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
    2014-10-24 21:01 - 2013-07-03 17:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2014-10-24 21:01 - 2011-03-03 19:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
    2014-10-24 21:01 - 2011-03-03 19:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
    2014-10-24 21:01 - 2011-03-03 19:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
    2014-10-24 21:01 - 2011-03-03 18:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
    2014-10-24 21:01 - 2011-03-03 18:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
    2014-10-24 21:00 - 2014-10-30 07:50 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-10-24 21:00 - 2014-10-24 21:02 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2014-10-24 21:00 - 2014-10-24 21:02 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2014-10-24 21:00 - 2014-10-24 21:02 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2014-10-24 21:00 - 2014-10-24 21:00 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
    2014-10-24 21:00 - 2014-10-24 21:00 - 00000000 ____D () C:\Windows\system32\Macromed
    2014-10-24 21:00 - 2014-10-24 21:00 - 00000000 ____D () C:\ProgramData\McAfee
    2014-10-24 21:00 - 2014-06-03 23:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
    2014-10-24 21:00 - 2014-06-03 23:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
    2014-10-24 21:00 - 2014-06-03 23:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
    2014-10-24 21:00 - 2014-06-03 23:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
    2014-10-24 21:00 - 2014-06-03 22:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
    2014-10-24 21:00 - 2014-06-03 22:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
    2014-10-24 21:00 - 2014-06-03 22:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
    2014-10-24 21:00 - 2014-03-04 22:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2014-10-24 21:00 - 2014-03-04 22:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
    2014-10-24 21:00 - 2014-03-04 22:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2014-10-24 21:00 - 2014-03-04 22:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
    2014-10-24 21:00 - 2014-03-04 22:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2014-10-24 21:00 - 2014-03-04 22:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2014-10-24 21:00 - 2014-03-04 22:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
    2014-10-24 21:00 - 2014-03-04 22:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
    2014-10-24 21:00 - 2014-03-04 22:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2014-10-24 21:00 - 2013-08-02 15:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2014-10-24 21:00 - 2013-08-02 15:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2014-10-24 21:00 - 2013-08-02 14:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2014-10-24 21:00 - 2013-08-02 13:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2014-10-24 21:00 - 2013-02-27 18:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
    2014-10-24 21:00 - 2012-11-02 18:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
    2014-10-24 21:00 - 2012-11-02 18:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
    2014-10-24 20:59 - 2014-10-24 21:00 - 00000000 ____D () C:\Users\Staritza\AppData\Local\Adobe
    2014-10-24 20:57 - 2011-04-29 16:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
    2014-10-24 20:57 - 2011-04-29 16:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2014-10-24 20:57 - 2011-04-29 16:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
    2014-10-24 20:56 - 2014-06-16 15:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2014-10-24 20:56 - 2013-04-10 19:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2014-10-24 20:56 - 2011-02-04 00:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2014-10-24 20:55 - 2011-08-17 18:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2014-10-24 20:55 - 2011-08-17 18:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2014-10-24 20:55 - 2011-08-17 17:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
    2014-10-24 20:55 - 2011-08-17 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
    2014-10-24 20:53 - 2012-03-17 20:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2014-10-24 20:51 - 2012-09-26 11:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
    2014-10-24 20:51 - 2012-09-26 11:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2014-10-24 20:51 - 2011-02-06 06:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2014-10-24 20:51 - 2011-02-06 06:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
    2014-10-24 20:51 - 2011-02-06 06:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
    2014-10-24 20:51 - 2011-02-06 06:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
    2014-10-24 20:51 - 2011-02-06 06:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2014-10-24 20:51 - 2011-02-06 06:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2014-10-24 20:51 - 2011-02-06 06:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2014-10-24 20:50 - 2013-07-26 15:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2014-10-24 20:50 - 2013-07-26 14:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2014-10-24 20:49 - 2014-09-04 18:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2014-10-24 20:49 - 2014-09-04 18:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
    2014-10-24 20:48 - 2013-04-26 18:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2014-10-24 20:48 - 2013-04-26 17:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
    2014-10-24 20:48 - 2012-11-23 16:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2014-10-24 20:45 - 2011-05-25 00:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
    2014-10-24 20:45 - 2011-05-24 23:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
    2014-10-24 20:45 - 2011-05-24 23:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
    2014-10-24 20:45 - 2011-05-24 23:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
    2014-10-24 20:45 - 2011-05-24 23:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
    2014-10-24 20:44 - 2013-07-20 23:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2014-10-24 20:44 - 2013-07-20 23:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2014-10-24 20:43 - 2014-07-17 15:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2014-10-24 20:43 - 2014-07-17 15:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2014-10-24 20:43 - 2014-07-17 15:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2014-10-24 20:43 - 2014-07-17 14:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
    2014-10-24 20:43 - 2014-07-17 14:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2014-10-24 20:43 - 2014-07-17 14:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2014-10-24 20:43 - 2014-07-17 14:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
    2014-10-24 20:43 - 2014-07-17 14:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2014-10-24 20:43 - 2014-07-17 14:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2014-10-24 20:43 - 2014-07-17 14:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2014-10-24 20:43 - 2014-07-17 14:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2014-10-24 20:43 - 2014-07-07 15:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2014-10-24 20:43 - 2014-07-07 15:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2014-10-24 20:43 - 2014-07-07 14:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2014-10-24 20:43 - 2014-07-07 14:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2014-10-24 20:43 - 2014-07-07 14:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2014-10-24 20:43 - 2014-05-30 21:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2014-10-24 20:43 - 2014-05-30 21:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2014-10-24 20:43 - 2014-05-30 21:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2014-10-24 20:43 - 2014-05-30 21:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2014-10-24 20:43 - 2014-05-30 20:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2014-10-24 20:43 - 2014-05-30 20:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2014-10-24 20:43 - 2014-05-30 20:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2014-10-24 20:43 - 2014-05-30 20:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2014-10-24 20:43 - 2013-02-15 19:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2014-10-24 20:43 - 2013-02-15 19:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
    2014-10-24 20:43 - 2013-02-15 16:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2014-10-24 20:43 - 2012-04-26 18:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2014-10-24 20:43 - 2012-04-26 18:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2014-10-24 20:42 - 2014-03-04 22:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2014-10-24 20:42 - 2014-03-04 22:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2014-10-24 20:42 - 2014-03-04 22:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2014-10-24 20:42 - 2014-03-04 22:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2014-10-24 20:42 - 2014-03-04 22:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2014-10-24 20:42 - 2014-03-04 22:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2014-10-24 20:42 - 2014-03-04 22:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2014-10-24 20:42 - 2014-03-04 22:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2014-10-24 20:42 - 2014-03-04 22:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2014-10-24 20:42 - 2014-03-04 21:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2014-10-24 20:42 - 2014-03-04 21:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2014-10-24 20:42 - 2013-08-02 15:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2014-10-24 20:42 - 2013-08-02 13:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 13:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 13:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2014-10-24 20:42 - 2013-08-02 13:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2014-10-24 20:42 - 2012-07-05 11:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2014-10-24 20:42 - 2012-07-05 11:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2014-10-24 20:42 - 2012-07-05 11:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2014-10-24 20:42 - 2012-07-05 10:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
    2014-10-24 20:42 - 2012-07-05 10:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
    2014-10-24 20:41 - 2011-05-03 18:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
    2014-10-24 20:41 - 2011-05-03 17:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
    2014-10-24 20:41 - 2011-02-13 00:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2014-10-24 20:40 - 2013-05-13 18:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
    2014-10-24 20:40 - 2013-05-13 16:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2014-10-24 20:40 - 2013-05-13 16:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
    2014-10-24 20:40 - 2013-05-13 16:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
    2014-10-24 20:40 - 2011-12-16 21:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2014-10-24 20:40 - 2011-12-16 20:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
    2014-10-24 20:39 - 2014-04-12 15:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2014-10-24 20:39 - 2013-10-12 15:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
    2014-10-24 20:39 - 2013-10-12 15:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
    2014-10-24 20:39 - 2013-10-12 15:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
    2014-10-24 20:39 - 2013-10-12 15:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
    2014-10-24 20:39 - 2013-10-12 14:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
    2014-10-24 20:39 - 2013-10-12 14:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
    2014-10-24 20:39 - 2013-10-12 14:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
    2014-10-24 20:39 - 2013-10-12 14:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
    2014-10-24 20:39 - 2013-07-05 01:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2014-10-24 20:38 - 2014-09-13 14:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2014-10-24 20:38 - 2014-09-13 14:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
    2014-10-24 20:38 - 2014-04-12 15:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2014-10-24 20:38 - 2014-04-12 15:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2014-10-24 20:38 - 2014-04-12 15:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2014-10-24 20:38 - 2014-04-12 15:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2014-10-24 20:38 - 2014-04-12 15:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2014-10-24 20:37 - 2014-08-23 15:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2014-10-24 20:37 - 2014-08-23 14:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
    2014-10-24 20:37 - 2012-05-14 18:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
    2014-10-24 20:36 - 2011-10-15 19:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
    2014-10-24 20:36 - 2011-10-15 18:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
    2014-10-24 20:36 - 2011-08-27 18:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
    2014-10-24 20:36 - 2011-08-27 18:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
    2014-10-24 20:36 - 2011-08-27 17:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
    2014-10-24 20:36 - 2011-08-27 17:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
    2014-10-24 20:36 - 2011-02-23 17:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
    2014-10-24 20:34 - 2012-06-06 19:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
    2014-10-24 20:34 - 2012-06-06 18:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
    2014-10-24 20:33 - 2013-10-12 15:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
    2014-10-24 20:33 - 2013-10-12 15:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2014-10-24 20:33 - 2013-10-12 15:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
    2014-10-24 20:33 - 2013-10-12 15:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
    2014-10-24 20:33 - 2013-10-12 15:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
    2014-10-24 20:32 - 2014-07-14 15:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2014-10-24 20:32 - 2014-07-14 14:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
    2014-10-24 20:03 - 2014-10-29 21:16 - 00001274 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk
    2014-10-24 20:03 - 2014-10-29 21:16 - 00001262 _____ () C:\Users\Public\Desktop\Absolute Uninstaller.lnk
    2014-10-24 20:03 - 2014-10-24 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
    2014-10-24 20:03 - 2014-10-24 20:03 - 00000000 ____D () C:\Program Files (x86)\Glarysoft
    2014-10-24 20:02 - 2014-10-24 20:02 - 00001018 _____ () C:\Users\Public\Desktop\PDF-Viewer.lnk
    2014-10-24 20:02 - 2014-10-24 20:02 - 00000000 ____D () C:\Program Files\Tracker Software
    2014-10-24 19:57 - 2014-10-24 19:57 - 00001109 _____ () C:\Users\Public\Desktop\FastStone Image Viewer.lnk
    2014-10-24 19:57 - 2014-10-24 19:57 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\FastStone
    2014-10-24 19:57 - 2014-10-24 19:57 - 00000000 ____D () C:\Users\Staritza\AppData\Local\DDMSettings
    2014-10-24 19:57 - 2014-10-24 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
    2014-10-24 19:57 - 2014-10-24 19:57 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
    2014-10-24 19:56 - 2014-10-24 19:56 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\NVIDIA
    2014-10-24 19:55 - 2014-10-24 19:55 - 00001578 _____ () C:\Users\Staritza\Desktop\DivX Movies.lnk
    2014-10-24 19:55 - 2014-10-24 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
    2014-10-24 19:55 - 2014-10-24 19:55 - 00000000 ____D () C:\Program Files\DivX
    2014-10-24 19:54 - 2014-10-24 19:55 - 00000000 ____D () C:\Program Files (x86)\DivX
    2014-10-24 19:53 - 2014-10-24 19:55 - 00000000 ____D () C:\ProgramData\DivX
    2014-10-24 19:47 - 2014-10-24 19:47 - 00003100 _____ () C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
    2014-10-24 19:47 - 2014-10-24 19:47 - 00002892 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator
    2014-10-24 19:47 - 2014-10-24 19:47 - 00001232 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
    2014-10-24 19:47 - 2014-10-24 19:47 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Apple Computer
    2014-10-24 19:46 - 2014-10-30 07:31 - 00000000 ____D () C:\ProgramData\IObit
    2014-10-24 19:46 - 2014-10-28 17:47 - 00002209 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
    2014-10-24 19:46 - 2014-10-24 19:47 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\IObit
    2014-10-24 19:46 - 2014-10-24 19:46 - 00002860 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Staritza
    2014-10-24 19:46 - 2014-10-24 19:46 - 00000000 ____D () C:\ProgramData\ProductData
    2014-10-24 19:46 - 2014-10-24 19:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
    2014-10-24 19:46 - 2014-10-24 19:46 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
    2014-10-24 19:46 - 2014-10-24 19:46 - 00000000 ____D () C:\Program Files (x86)\IObit
    2014-10-24 19:44 - 2014-10-24 19:44 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Cybertron
    2014-10-24 19:40 - 2014-10-24 19:44 - 00001184 _____ () C:\Users\Staritza\Desktop\Privacy Eraser.lnk
    2014-10-24 19:40 - 2014-10-24 19:40 - 00000000 ____D () C:\Windows\System32\Tasks\Cybertron
    2014-10-24 19:40 - 2014-10-24 19:40 - 00000000 ____D () C:\Program Files\Cybertron
    2014-10-24 19:38 - 2014-10-29 07:05 - 00000000 ____D () C:\ProgramData\TEMP
    2014-10-24 19:38 - 2014-10-29 07:05 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
    2014-10-24 19:38 - 2014-10-27 16:27 - 00000000 ____D () C:\ProgramData\Licenses
    2014-10-24 19:38 - 2014-10-24 19:38 - 00001083 _____ () C:\Users\Public\Desktop\SpywareBlaster.lnk
    2014-10-24 19:38 - 2014-10-24 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
    2014-10-24 19:38 - 2011-11-04 05:13 - 01070352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
    2014-10-24 19:38 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
    2014-10-24 19:33 - 2014-10-24 19:33 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\SUPERAntiSpyware.com
    2014-10-24 19:32 - 2014-10-25 10:59 - 00001965 _____ () C:\Users\Staritza\Desktop\SUPERAntiSpyware Free Edition.lnk
    2014-10-24 19:32 - 2014-10-24 19:33 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2014-10-24 19:32 - 2014-10-24 19:32 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2014-10-24 19:32 - 2014-10-24 19:32 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
    2014-10-24 19:29 - 2014-10-27 16:27 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\QFX Software
    2014-10-24 19:29 - 2014-10-27 16:27 - 00000000 ____D () C:\ProgramData\QFX Software
    2014-10-24 19:26 - 2012-02-17 19:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
    2014-10-24 19:26 - 2012-02-17 18:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
    2014-10-24 19:26 - 2012-02-17 17:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
    2014-10-24 19:24 - 2014-10-24 19:24 - 01283840 _____ () C:\Users\Staritza\Downloads\KeyScrambler_Setup.exe
    2014-10-24 19:18 - 2014-05-15 05:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2014-10-24 19:18 - 2014-05-15 05:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2014-10-24 19:18 - 2014-05-15 05:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2014-10-24 19:18 - 2014-05-15 05:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2014-10-24 19:17 - 2014-05-15 05:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2014-10-24 19:17 - 2014-05-15 05:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2014-10-24 19:17 - 2014-05-15 05:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2014-10-24 19:17 - 2014-05-15 05:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
    2014-10-24 19:17 - 2014-05-15 05:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2014-10-24 19:17 - 2014-05-15 05:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
    2014-10-24 19:17 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2014-10-24 19:17 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
    2014-10-24 19:17 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2014-10-24 19:17 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
    2014-10-24 19:14 - 2014-10-24 19:14 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
    2014-10-24 19:14 - 2014-10-24 19:14 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
    2014-10-24 19:14 - 2014-10-24 19:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
    2014-10-24 19:14 - 2014-10-24 19:14 - 00000000 ____D () C:\Program Files\CCleaner
    2014-10-24 19:11 - 2014-10-30 07:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2014-10-24 19:04 - 2014-10-24 19:04 - 00057560 _____ () C:\Users\Staritza\AppData\Local\GDIPFONTCACHEV1.DAT
    2014-10-24 19:03 - 2014-10-25 09:14 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT
    2014-10-24 19:02 - 2014-10-24 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
    2014-10-24 19:02 - 2014-10-24 19:25 - 00000000 ____D () C:\Program Files (x86)\KeyScrambler
    2014-10-24 19:02 - 2013-06-01 03:53 - 00222200 _____ (QFX Software Corporation) C:\Windows\system32\Drivers\keyscrambler.sys
    2014-10-24 18:39 - 2014-10-24 18:39 - 00001322 _____ () C:\Users\Staritza\Desktop\Wordpad.lnk
    2014-10-24 18:35 - 2014-10-24 18:35 - 00001056 _____ () C:\Users\Staritza\Desktop\Documents - Shortcut.lnk
    2014-10-24 18:35 - 2014-10-24 18:35 - 00000863 _____ () C:\Users\Staritza\Desktop\Downloads.lnk
    2014-10-24 18:26 - 2014-10-27 16:27 - 00000000 ____D () C:\Users\Staritza\system-ninja-portable-3.0.2
    2014-10-24 18:25 - 2014-10-30 08:24 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\vlc
    2014-10-24 18:25 - 2014-10-24 18:25 - 00001070 _____ () C:\Users\Public\Desktop\VLC media player.lnk
    2014-10-24 18:25 - 2014-10-24 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
    2014-10-24 18:25 - 2014-10-24 18:25 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
    2014-10-24 18:24 - 2014-10-24 18:24 - 00001702 _____ () C:\Users\Staritza\Desktop\MPC-HC x64.lnk
    2014-10-24 18:24 - 2014-10-24 18:24 - 00000000 ____D () C:\Program Files\MPC-HC
    2014-10-24 18:23 - 2014-10-24 18:23 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\CrystalIdea Software
    2014-10-24 18:22 - 2014-10-24 18:22 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2014-10-24 18:22 - 2014-10-24 18:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
    2014-10-24 18:22 - 2014-10-24 18:22 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
    2014-10-24 18:22 - 2014-10-01 11:39 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2014-10-24 18:22 - 2014-10-01 11:39 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2014-10-24 18:22 - 2014-10-01 11:39 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
    2014-10-24 18:20 - 2014-10-30 06:57 - 00000000 ____D () C:\Users\Staritza\AppData\Local\PrivaZer
    2014-10-24 18:20 - 2014-10-24 18:20 - 00001901 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk
    2014-10-24 18:20 - 2014-10-24 18:20 - 00001889 _____ () C:\Users\Public\Desktop\PrivaZer.lnk
    2014-10-24 18:20 - 2014-10-24 18:20 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer
    2014-10-24 18:20 - 2014-10-24 18:20 - 00000000 ____D () C:\ProgramData\privazer
    2014-10-24 18:20 - 2014-10-24 18:20 - 00000000 ____D () C:\Program Files (x86)\PrivaZer
    2014-10-24 18:16 - 2014-10-24 16:57 - 00000618 _____ () C:\Users\Staritza\Documents\indexfile.txt
    2014-10-24 18:14 - 2014-10-24 18:14 - 00001031 _____ () C:\Users\Public\Desktop\MozBackup.lnk
    2014-10-24 18:14 - 2014-10-24 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
    2014-10-24 18:14 - 2014-10-24 18:14 - 00000000 ____D () C:\Program Files (x86)\MozBackup
    2014-10-24 18:13 - 2014-10-24 19:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2014-10-24 18:13 - 2014-10-24 18:13 - 00002090 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
    2014-10-24 18:13 - 2014-10-24 18:13 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Thunderbird
    2014-10-24 18:13 - 2014-10-24 18:13 - 00000000 ____D () C:\Users\Staritza\AppData\Local\Thunderbird
    2014-10-24 18:12 - 2014-10-24 19:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2014-10-24 18:12 - 2014-10-24 18:12 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2014-10-24 18:12 - 2014-10-24 18:12 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\Mozilla
    2014-10-24 18:12 - 2014-10-24 18:12 - 00000000 ____D () C:\Users\Staritza\AppData\Local\Mozilla
    2014-10-24 18:10 - 2014-10-24 18:10 - 00001268 _____ () C:\Users\Staritza\Desktop\Revo Uninstaller.lnk
    2014-10-24 18:10 - 2014-10-24 18:10 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
    2014-10-24 18:09 - 2014-10-24 18:09 - 00000000 ____D () C:\Users\Staritza\AppData\Roaming\WinPatrol
    2014-10-24 18:09 - 2014-10-24 18:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
    2014-10-24 18:09 - 2014-10-24 18:09 - 00000000 ____D () C:\ProgramData\InstallMate
    2014-10-24 18:09 - 2014-10-24 18:09 - 00000000 ____D () C:\Program Files (x86)\Ruiware
    2014-10-24 18:06 - 2014-10-25 00:35 - 00002117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
    2014-10-24 18:06 - 2014-10-25 00:35 - 00001945 _____ () C:\Windows\epplauncher.mif
    2014-10-24 18:06 - 2014-10-24 18:06 - 00002117 _____ () C:\Users\Staritza\Desktop\Microsoft Security Essentials.lnk
    2014-10-24 18:05 - 2014-10-25 00:35 - 00000000 ____D () C:\Program Files\Microsoft Security Client
    2014-10-24 18:05 - 2014-10-25 00:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
    2014-10-24 17:51 - 2014-10-30 07:21 - 00004378 _____ () C:\Windows\system32\InstallUtil.InstallLog
    2014-10-24 17:51 - 2014-10-30 07:21 - 00000000 ____D () C:\Program Files (x86)\TinyWall
    2014-10-24 17:48 - 2014-10-30 07:11 - 00000000 ____D () C:\Program Files (x86)\InstallShield Installation Information
    2014-10-24 17:47 - 2014-10-30 07:10 - 00000000 ____D () C:\Program Files (x86)\VIA
    2014-10-24 17:47 - 2009-09-11 15:50 - 00531968 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
    2014-10-24 17:47 - 2009-07-29 14:36 - 00601088 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO64.DLL
    2014-10-24 17:47 - 2009-07-29 14:36 - 00524288 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO32.DLL
    2014-10-24 17:47 - 2009-07-29 14:36 - 00057856 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD64.DLL
    2014-10-24 17:47 - 2009-07-23 21:21 - 00072704 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP64.DLL
    2014-10-24 17:47 - 2009-07-23 21:20 - 00053760 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN64.DLL
    2014-10-24 17:47 - 2009-06-01 15:10 - 00242176 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
    2014-10-24 17:47 - 2009-03-04 21:42 - 00084992 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
    2014-10-24 17:47 - 2009-01-20 02:32 - 00193024 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\ViaMicArrayAPO.dll
    2014-10-24 17:47 - 2009-01-20 02:32 - 00076288 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
    2014-10-24 17:47 - 2007-12-04 16:28 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
    2014-10-24 17:47 - 2007-12-04 16:28 - 00082432 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
    2014-10-24 17:47 - 2007-04-11 20:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll
    2014-10-24 17:43 - 2014-10-24 17:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
    2014-10-24 17:41 - 2014-10-30 07:13 - 00000000 ____D () C:\ProgramData\NVIDIA
    2014-10-24 17:41 - 2014-10-24 17:41 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
    2014-10-24 17:41 - 2014-10-24 17:41 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
    2014-10-24 17:41 - 2012-07-04 04:25 - 00189288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
    2014-10-24 17:41 - 2012-07-04 04:25 - 00031080 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
    2014-10-24 17:41 - 2012-07-03 20:37 - 01472360 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
    2014-10-24 17:41 - 2009-07-14 17:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2014-10-24 17:41 - 2009-07-14 17:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2014-10-24 17:40 - 2014-10-24 17:40 - 00000000 ____D () C:\temp
    2014-10-24 17:40 - 2014-10-24 17:40 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
    2014-10-24 17:40 - 2012-08-31 08:14 - 01760104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll
    2014-10-24 17:40 - 2012-08-31 08:14 - 01482600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco64.dll
    2014-10-24 17:40 - 2012-08-31 08:14 - 00060776 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
    2014-10-24 17:40 - 2012-08-31 08:14 - 00052584 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
    2014-10-24 17:40 - 2012-08-31 08:14 - 00016366 _____ () C:\Windows\system32\nvinfo.pb
    2014-10-24 17:40 - 2012-08-31 05:18 - 03266920 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
    2014-10-24 17:40 - 2012-08-31 05:18 - 02557800 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
    2014-10-24 17:40 - 2012-08-31 05:18 - 00891240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
    2014-10-24 17:40 - 2012-08-31 05:18 - 00118120 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
    2014-10-24 17:40 - 2012-08-31 05:18 - 00063336 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
    2014-10-24 17:40 - 2012-08-31 05:17 - 06198120 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 26228072 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 25256296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 19828584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 18229096 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 17559912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 15291752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 14879080 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 13391720 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
    2014-10-24 17:39 - 2012-08-31 08:14 - 12465512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 09066344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 07626088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 07397736 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 06109032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 02745192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 02725224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 02573672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 02422120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 02216808 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
    2014-10-24 17:39 - 2012-08-31 08:14 - 01866088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
    2014-10-24 17:38 - 2014-10-24 17:41 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
    2014-10-24 17:36 - 2014-10-25 09:21 - 00001417 _____ () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2014-10-24 17:35 - 2014-10-29 14:56 - 00000000 ____D () C:\Users\Staritza
    2014-10-24 17:35 - 2014-10-24 17:35 - 00000020 ___SH () C:\Users\Staritza\ntuser.ini
    2014-10-24 17:35 - 2014-10-24 17:35 - 00000000 __SHD () C:\Recovery
    2014-10-24 17:35 - 2014-10-24 17:35 - 00000000 ____D () C:\Users\Staritza\AppData\Local\VirtualStore
    2014-10-24 17:35 - 2009-07-14 17:54 - 00000000 ___RD () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2014-10-24 17:35 - 2009-07-14 17:49 - 00000000 ___RD () C:\Users\Staritza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2014-10-23 15:45 - 2014-10-28 20:43 - 00018164 _____ () C:\Users\Staritza\SoundVolumeView.chm
    2014-10-23 15:45 - 2014-10-28 20:43 - 00010477 _____ () C:\Users\Staritza\readme.txt
    2014-10-23 15:43 - 2014-10-28 20:43 - 00138240 _____ (NirSoft) C:\Users\Staritza\SoundVolumeView.exe
    2014-10-14 13:37 - 2014-10-24 20:00 - 16864480 _____ (Tracker Software Products Ltd ) C:\Users\Staritza\PDFXVwer.exe

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-10-30 08:17 - 2009-07-14 17:45 - 00020816 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2014-10-30 08:17 - 2009-07-14 17:45 - 00020816 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2014-10-30 07:18 - 2009-07-14 18:13 - 00713888 _____ () C:\Windows\system32\PerfStringBackup.INI
    2014-10-30 07:13 - 2009-07-14 18:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2014-10-29 21:38 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2014-10-29 14:38 - 2014-05-02 06:41 - 00000000 ___RD () C:\Users\Staritza\Desktop\FIXIT 50202
    2014-10-28 20:55 - 2012-11-16 12:21 - 00000000 ___RD () C:\Users\Staritza\Desktop\MOVIE SITES + URLS
    2014-10-27 18:11 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\rescache
    2014-10-27 16:27 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\registration
    2014-10-27 16:27 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\AppCompat
    2014-10-26 15:41 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2014-10-25 14:28 - 2009-07-14 18:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
    2014-10-25 13:32 - 2009-07-14 18:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
    2014-10-25 13:32 - 2009-07-14 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
    2014-10-25 13:31 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\sysprep
    2014-10-25 09:11 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
    2014-10-25 09:11 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
    2014-10-25 09:11 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\zh-HK
    2014-10-25 09:11 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\System
    2014-10-25 09:10 - 2011-04-12 21:28 - 00000000 ____D () C:\Program Files\Windows Journal
    2014-10-25 09:10 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Defender
    2014-10-25 09:10 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
    2014-10-25 09:10 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\tr-TR
    2014-10-24 20:00 - 2011-12-14 12:32 - 00026759 _____ () C:\Users\Staritza\PDFXVW1.xml
    2014-10-24 17:47 - 2009-07-14 18:32 - 00000000 ____D () C:\Windows\system32\restore
    2014-10-24 17:40 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\Help

    Files to move or delete:
    ====================
    C:\Users\Staritza\PDFXVwer.exe
    C:\Users\Staritza\SoundVolumeView.exe


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2014-10-27 18:03

    ==================== End Of Log ============================



    Joe, should add that the PC was being stored at a friends place while a new flat was being moved into; am certain the computer has been either given a heavy knock, or else has been dropped, because when it was collected and rigged up in the new place it sounded like a concrete-mixer when it was booting up (clattering, grinding sounds, huge vibration) and even though things have settled down a lot (but not entirely) in this respect, the computer is in no way going right, with all kinds of "instability pointers" happening.

    For example am a big fan of "TinyWall" (an excellent "hardening" program for the Windows Firewall - TinyWall also provides an intuitive GUI) but nowadays TinyWall often will not load (it's Icon fails to appear on the Task-Bar, and there is sometimes a popup message saying the TinyWall file could not be located - or words to that effect) when booting up, and has to be reinstalled. When starting the computer up this morning (lot of noise and vibration) TinyWall failed to load, and the Audio System Driver failed to load - the first time this has ever happened.

    Should have mentioned this stuff from the outset, but am so used to the noise/vibration that it often seems "normal"!!! After booting, things quieten down with the only noise being the fan in the crummy ISO PSU (PC is an AsRock, and unfortunately ISO Power Supply Units seem to be standard with them: have got another AsRock which is a lot newer and more powerful than the present one, but it does not go. Am planning to install a new PSU in it as soon as possible).

    Will leave it at that for the time being, so will be awaiting your verdict Joe with much trepidation!!!

    Many Thanks,

    "Staritza"
    Last edited by Staritza; 10-29-2014 at 03:10 PM.

  4. #4
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello.

    either given a heavy knock, or else has been dropped, because when it was collected and rigged up in the new place it sounded like a concrete-mixer when it was booting up (clattering, grinding sounds, huge vibration) and even though things have settled down a lot (but not entirely) in this respect, the computer is in no way going right, with all kinds of "instability pointers" happening.
    You need to take it in then and have it looked at. Anything may have occurred, if the Hard drive pointer (arm) got jarred and slid across the drive it may have damaged the drive, The Ram memory when subjected to shock can damage it. Even the motherboard could have been cracked.

    Knowing this information, it's not logical for me to spend time on it.

    Your computer is exhibiting symptoms of hard drive and or possible Ram Memory issues.

    Your FRST Log is clean.

    For the explorer.exe issue, if you want you could recreate the file:

    Open Task manager, click on File, click New Task, enter explorer.exe

    I'd rather not run Hard drive test scans until you have it looked at.

    Joe

  5. #5
    Member Staritza's Avatar
    Join Date
    Aug 2012
    Posts
    31
    Points
    0

    Default

    Thanks Joe, that's a scary collection of possible things wrong that you list, but one, some, or all of them are looking to be a high probability; as said, should have mentioned in the opening post that the PC had certainly been "bashed" (my friend was messing around with all the electronic gear i had stored at his place because for some reason he had individually wrapped quite a lot of the equipment up, and am thinking that he picked up the PC to get it out of the way and banged it against something or tripped and dropped it: he is 75 years old by the way!!!) as it would have saved you a lot of hassle, but in self-defence have to say the post was written in a hurry and not clear-headedly due to having been grappling with more tiresome program-loading failures (having to reinstall failed loads, and re-do the Permissions in TinyWall get's on the nerves pretty quickly).

    Am going to rate your diagnosis as "Problem Solved" because the trouble obviously has got something to do with componentry and which lucklessly means computer shop!

    Will try out your instructions for recreating the Explorer file, but just want to say that with WE i have had the same trouble with it during previous installations of Win7 (long before the PC was stored at my friends place) and it seems to be an inherent fault within the software/bad programming, but if that was the case surely there would be heaps of people writing about it online as Win7 is an extremely popular and widely-used OS.

    Thanks again Joe and apologies for any unnecessary hassle.

  6. #6
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    You're welcome :

    Not an unnecessary hassle. Just glad you brought to light on what occurred with the computer before we pulled our hair out.

    I moved my computer once, upon arrival and un packing, bang it fell on the living room floor. I was lucky nothing happened.

    From a log file point of view the computer looks well maintained.

    Thanks
    Joe and the Ghost....


  7. #7
    Member Staritza's Avatar
    Join Date
    Aug 2012
    Posts
    31
    Points
    0

    Default

    Cheers Joe, thanks again, and all the very best (good to hear your PC did better than mine when it got walloped!!!)

  8. #8
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Stop back again if any issues develop after it's looked at.

    Cheers

  9. #9
    Member Staritza's Avatar
    Join Date
    Aug 2012
    Posts
    31
    Points
    0

    Default

    Howdy Joe, am probably going to be back on Help2Go fairly soon as am intending to install a new PSU into the other asRock PC (which keeps crashing all the time, it's got a crummy ISO PSU in it which have got an appalling reputation) - something i have never done before, and a bit later shoving everything into a new PC case, which is a daunting prospect but a necessary one due to the abominably badly designed case that is presently extant (the designer must have been a graduate from "The School Of Utter Imbecility").

    Joe, some use i maybe could be here, is to warn people about buying low-end AsRocks (they have a whole range of PC's) as in these hard economic times many people are likely to be attracted to AsRocks because of their (comparatively) low prices. Am not familiar with their high-end stuff, but know a lot about the low-end variety!!! You get an ISO PSU, a Motherboard that has only got one PSIe slot (the other slot being an obsolete basic PSI) and these PC's are USB2 - not a "3" port anywhere. In both AsRock computers only two SATA Motherboard Ports function! Used to have a nine-year old Asus that was far more advanced than the AsRocks and AsRock is now owned by Asus!!!

    Cheers Joe, good talking to you, and that's a pretty good Halloween Ghost you've got!!!
    Last edited by Staritza; 10-31-2014 at 11:19 PM. Reason: Typo's

  10. #10
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Thanks,

    But I'll warn you hardware is not my specialty. I tend to stick with virus and adware removal. I do have sources where I can confer with other hardware techs for information or answers, and there's a few here that can be of better help them myself for hardware related issues.

    Joe

Page 1 of 2 12 LastLast