OTL logfile created on: 11/3/2013 12:20:59 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\kgarr_000\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16384)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
5.89 Gb Total Physical Memory | 2.72 Gb Available Physical Memory | 46.24% Memory free
11.89 Gb Paging File | 8.65 Gb Available in Paging File | 72.75% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 675.08 Gb Total Space | 630.77 Gb Free Space | 93.44% Space Free | Partition Type: NTFS
Computer Name: LAPTOP | User Name: kgarretttgould | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2013/11/03 12:19:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\kgarr_000\Downloads\OTL.exe
PRC - [2013/11/01 09:23:42 | 000,756,840 | ---- | M] (Webroot) -- C:\Program Files\Webroot\WRSA.exe
PRC - [2013/10/21 20:07:30 | 003,018,800 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
PRC - [2013/10/15 15:19:25 | 000,194,224 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
PRC - [2013/10/08 19:02:45 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/09/25 16:37:00 | 020,133,824 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2013/09/11 18:41:24 | 004,728,368 | ---- | M] (SparkTrust) -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\SparkTrustPCCleanerPlus.exe
PRC - [2013/09/05 09:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/08/26 13:18:50 | 001,157,496 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2013/08/26 13:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2013/08/07 13:24:00 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/08/07 13:24:00 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/01/31 20:52:54 | 001,594,416 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
PRC - [2013/01/31 20:52:48 | 000,085,040 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
PRC - [2013/01/14 13:29:50 | 000,165,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2013/01/14 13:29:50 | 000,131,032 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2013/11/03 11:36:51 | 001,175,040 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._core_.pyd
MOD - [2013/11/03 11:36:51 | 001,153,024 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_ssl.pyd
MOD - [2013/11/03 11:36:51 | 000,811,008 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._windows_.pyd
MOD - [2013/11/03 11:36:51 | 000,805,888 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._gdi_.pyd
MOD - [2013/11/03 11:36:51 | 000,735,232 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._misc_.pyd
MOD - [2013/11/03 11:36:51 | 000,711,680 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_hashlib.pyd
MOD - [2013/11/03 11:36:51 | 000,557,056 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\pysqlite2._sqlite.pyd
MOD - [2013/11/03 11:36:51 | 000,504,832 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\windows._cacheinvalidation.pyd
MOD - [2013/11/03 11:36:51 | 000,364,544 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\pythoncom27.dll
MOD - [2013/11/03 11:36:51 | 000,320,512 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32com.shell.shell.pyd
MOD - [2013/11/03 11:36:51 | 000,128,512 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_elementtree.pyd
MOD - [2013/11/03 11:36:51 | 000,110,080 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\pywintypes27.dll
MOD - [2013/11/03 11:36:51 | 000,108,544 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32security.pyd
MOD - [2013/11/03 11:36:51 | 000,098,816 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32api.pyd
MOD - [2013/11/03 11:36:51 | 000,087,040 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_ctypes.pyd
MOD - [2013/11/03 11:36:51 | 000,070,656 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._html2.pyd
MOD - [2013/11/03 11:36:51 | 000,044,032 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_socket.pyd
MOD - [2013/11/03 11:36:51 | 000,035,840 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32process.pyd
MOD - [2013/11/03 11:36:51 | 000,026,624 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\_multiprocessing.pyd
MOD - [2013/11/03 11:36:51 | 000,025,600 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32pdh.pyd
MOD - [2013/11/03 11:36:51 | 000,022,528 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32ts.pyd
MOD - [2013/11/03 11:36:51 | 000,017,408 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32profile.pyd
MOD - [2013/11/03 11:36:51 | 000,011,264 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32crypt.pyd
MOD - [2013/11/03 11:36:50 | 001,062,400 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._controls_.pyd
MOD - [2013/11/03 11:36:50 | 000,686,080 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\unicodedata.pyd
MOD - [2013/11/03 11:36:50 | 000,127,488 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\pyexpat.pyd
MOD - [2013/11/03 11:36:50 | 000,122,368 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\wx._wizard.pyd
MOD - [2013/11/03 11:36:50 | 000,119,808 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32file.pyd
MOD - [2013/11/03 11:36:50 | 000,038,912 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32inet.pyd
MOD - [2013/11/03 11:36:50 | 000,018,432 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\win32event.pyd
MOD - [2013/11/03 11:36:50 | 000,010,240 | ---- | M] () -- C:\Users\KGARR_~1\AppData\Local\Temp\_MEI44602\select.pyd
MOD - [2013/10/28 08:02:09 | 000,785,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\6f148949888c20d25b9292ea5b80b9cb\System.ServiceModel.Internals.ni.dll
MOD - [2013/10/28 08:02:08 | 000,118,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\347c1cd4d2f491bbf28168f51c3e8da1\SMDiagnostics.ni.dll
MOD - [2013/10/26 09:52:32 | 007,803,392 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\e6b0fac086c9f63921dc57ccb85a0ee4\System.Xml.ni.dll
MOD - [2013/10/26 09:52:21 | 012,856,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\af4e47767c78d7335dc160fbe925558c\System.Windows.Forms.ni.dll
MOD - [2013/10/26 09:52:05 | 019,566,080 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\46b4609a23cd36da267dacc7db3be849\System.ServiceModel.ni.dll
MOD - [2013/10/26 09:51:34 | 002,804,736 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\d5ec652ee752e275276098614a3b07a6\System.Runtime.Serialization.ni.dll
MOD - [2013/10/26 09:51:26 | 001,635,328 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\5d9c806d510ce30645b2118d96589486\System.Drawing.ni.dll
MOD - [2013/10/26 09:51:14 | 000,968,192 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\a651a53f70ec4356e530497679d60d59\System.Configuration.ni.dll
MOD - [2013/10/26 09:50:31 | 006,951,424 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\b23c1312ec0a64893e596e2fc2aa875b\System.Core.ni.dll
MOD - [2013/10/26 09:50:22 | 010,003,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\220f99197372e34d3a6ca5005e7ef1f0\System.ni.dll
MOD - [2013/10/26 09:50:11 | 017,360,384 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\9ce38091b2e714845369c9bc3b5b5395\mscorlib.ni.dll
MOD - [2013/10/15 15:17:11 | 000,359,592 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
MOD - [2013/10/15 15:17:10 | 000,316,584 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll
MOD - [2013/10/08 19:02:43 | 000,415,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppgooglenaclpluginchrome.dll
MOD - [2013/10/08 19:02:41 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll
MOD - [2013/10/08 19:01:50 | 000,698,832 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
MOD - [2013/10/08 19:01:49 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\libegl.dll
MOD - [2013/10/08 19:01:47 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
MOD - [2013/09/11 18:41:42 | 000,045,616 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\LiteZip.dll
MOD - [2013/09/11 18:41:40 | 000,053,296 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\LiteUnzip.dll
MOD - [2013/09/11 18:41:38 | 000,554,032 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\7ZipDLL.dll
MOD - [2013/09/11 18:41:36 | 000,925,744 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\Utility.pxt
MOD - [2013/09/11 18:41:32 | 000,138,800 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\RegHookSpecialist.pxt
MOD - [2013/09/11 18:41:30 | 000,083,504 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\ExtensionManager.dll
MOD - [2013/09/11 18:41:28 | 000,153,648 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\CommonSpecialist.pxt
MOD - [2013/09/11 18:41:24 | 000,155,184 | ---- | M] () -- C:\Program Files (x86)\SparkTrust\SparkTrust PC Cleaner Plus\CommonLoggingExtension.pxt
MOD - [2013/08/22 00:27:39 | 000,762,720 | ---- | M] () -- C:\Windows\SysWOW64\Speech\Engines\TTS\MSTTSEngine.dll
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV:[b]64bit:[/b] - File not found [Auto | Stopped] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:[b]64bit:[/b] - [2013/11/01 09:23:42 | 000,756,840 | ---- | M] (Webroot) [Auto | Running] -- C:\Program Files\Webroot\WRSA.exe -- (WRSVC)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:29 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:28 | 001,555,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:28 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:27 | 001,302,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:27 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2013/09/29 23:03:27 | 000,261,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2013/09/06 17:52:46 | 001,907,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe -- (OfficeSvc)
SRV:[b]64bit:[/b] - [2013/08/23 10:02:40 | 003,667,696 | ---- | M] (Intel® Corporation) [Auto | Stopped] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:[b]64bit:[/b] - [2013/08/23 10:02:18 | 000,284,912 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2013/08/23 10:02:04 | 000,631,024 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:[b]64bit:[/b] - [2013/08/23 10:01:36 | 000,154,864 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:[b]64bit:[/b] - [2013/08/22 07:39:24 | 003,395,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2013/08/22 07:32:01 | 000,346,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2013/08/22 07:32:00 | 000,023,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/08/22 07:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2013/08/22 06:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013/08/22 06:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013/08/22 06:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013/08/22 06:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:03:23 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2013/08/22 05:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013/08/22 05:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2013/08/22 05:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013/08/22 04:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2013/08/22 04:58:42 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2013/08/22 04:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 04:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2013/08/22 04:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2013/08/22 04:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2013/08/07 13:24:00 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2012/12/10 00:31:44 | 000,803,872 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/12/10 00:31:28 | 000,732,160 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV - [2013/10/21 20:07:30 | 003,018,800 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe -- (SWUpdateService)
SRV - [2013/10/03 22:43:02 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/09/29 23:03:26 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/09/19 17:45:18 | 000,038,440 | ---- | M] (Just Develop It) [Auto | Running] -- C:\Program Files (x86)\MyPC Backup\BackupStack.exe -- (BackupStack)
SRV - [2013/09/18 21:38:44 | 000,157,128 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe -- (Intel(R)
SRV - [2013/09/16 11:20:16 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/09/05 09:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/08/26 13:18:50 | 001,157,496 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2013/08/26 13:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2013/08/22 07:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/21 22:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 21:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/01/31 20:52:54 | 001,594,416 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe -- (Easy Launcher)
SRV - [2013/01/14 13:29:50 | 000,165,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2013/01/14 13:29:50 | 000,131,032 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012/04/24 00:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV:[b]64bit:[/b] - [2013/11/01 09:23:43 | 000,114,720 | ---- | M] (Webroot) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WRkrn.sys -- (WRkrn)
DRV:[b]64bit:[/b] - [2013/10/03 22:42:44 | 004,185,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:28 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,371,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2013/09/29 23:03:25 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2013/09/29 22:51:06 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2013/09/29 22:51:01 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013/09/26 04:08:22 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/09/26 04:08:22 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013/09/16 11:20:12 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013/09/05 15:37:40 | 001,390,904 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:[b]64bit:[/b] - [2013/09/04 17:03:50 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 07:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:34 | 000,325,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,056,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2013/08/22 07:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2013/08/22 07:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2013/08/22 07:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2013/08/22 07:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 07:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013/08/22 07:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 07:34:22 | 000,265,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2013/08/22 07:34:22 | 000,124,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:31:28 | 000,034,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:37 | 000,224,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013/08/22 06:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013/08/22 03:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/12 18:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/09 19:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/08/07 13:23:46 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2013/07/30 13:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/26 14:07:30 | 000,827,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2013/07/25 14:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/22 17:56:48 | 000,140,600 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:[b]64bit:[/b] - [2013/05/21 07:14:00 | 000,165,344 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:[b]64bit:[/b] - [2013/04/23 12:24:26 | 000,069,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:[b]64bit:[/b] - [2013/01/22 21:22:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2012/10/16 05:02:04 | 000,457,016 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,188,896 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xHCIPort.sys -- (XHCIPort)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,047,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:[b]64bit:[/b] - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/07/27 07:00:03 | 000,023,408 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioHIDMini.sys -- (RadioHIDMini)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {1BA53427-B6E1-451F-AB82-C73F394352B1}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{1BA53427-B6E1-451F-AB82-C73F394352B1}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {1BA53427-B6E1-451F-AB82-C73F394352B1}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{1BA53427-B6E1-451F-AB82-C73F394352B1}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung13.msn.com
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\..\SearchScopes,DefaultScope = {3DDDEA70-695C-499B-89B4-A0F82AF0B8F4}
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\..\SearchScopes\{3DDDEA70-695C-499B-89B4-A0F82AF0B8F4}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
IE - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
[color=#E56717]========== Chrome ==========[/color]
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\alblmaecejifbilchdofkdanifpmnmfk\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdkpinfdldjdngmgfbifbdbgaoampkan\0.42_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\chdiaibgndcpagmnpkjoelgfkommjbni\3_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo\3.2_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpmbfgodkfcebpgheiedaddoikmljkk\1.0_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\2.2_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn\3.10_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab\2.0.15_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\piiokbhpgldooopjdacdondngonfljoc\19.6_0\
CHR - Extension: No name found = C:\Users\kgarr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2013/08/22 08:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Webroot Vault) - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Webroot Toolbar) - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O4:[b]64bit:[/b] - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BrStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe (brother)
O4 - HKLM..\Run: [WRSVC] C:\Program Files\Webroot\WRSA.exe (Webroot)
O4 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004..\Run: [GoogleChromeAutoLaunch_FE925D4A4232B6DF120A2CEA5831DFFF] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004..\Run: [Quick Starter] C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe (Samsung Electronics CO., LTD.)
O4 - Startup: C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
O4 - Startup: C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - Reg Error: Key error. File not found
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87B14FC2-5E78-47CF-8E06-F6742359975E}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-653373433-2252124362-1593081999-1004\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2013/11/03 12:06:05 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\SparkTrust
[2013/11/03 12:05:28 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SparkTrust
[2013/11/03 12:05:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SparkTrust
[2013/11/03 12:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\SparkTrust
[2013/11/03 12:05:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SparkTrust
[2013/11/03 08:45:28 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\SpeedMaxPc
[2013/11/03 08:45:28 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\DriverCure
[2013/11/03 08:45:19 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedMaxPc
[2013/11/01 09:39:23 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\ElevatedDiagnostics
[2013/10/30 10:05:53 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/10/29 09:18:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2013/10/29 07:27:40 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll
[2013/10/29 07:27:40 | 000,947,248 | ---- | C] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll
[2013/10/29 07:27:39 | 002,809,048 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2013/10/29 07:27:39 | 002,586,840 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll
[2013/10/29 07:27:39 | 001,662,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2013/10/29 07:27:39 | 001,284,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2013/10/29 07:27:39 | 001,021,656 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2013/10/29 07:27:39 | 000,617,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2013/10/29 07:27:38 | 033,917,440 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat
[2013/10/29 07:27:38 | 000,150,744 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2013/10/29 07:27:37 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll
[2013/10/29 07:27:36 | 014,048,512 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek64.dll
[2013/10/29 07:27:35 | 002,032,896 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2013/10/29 07:27:35 | 000,922,880 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll
[2013/10/29 07:27:35 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll
[2013/10/29 07:27:33 | 006,217,904 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPP64A.dll
[2013/10/29 07:27:33 | 002,743,328 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2013/10/29 07:27:33 | 001,938,608 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPD64A.dll
[2013/10/29 07:27:33 | 000,313,520 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPO64A.dll
[2013/10/29 07:27:33 | 000,260,272 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPA64.dll
[2013/10/29 07:27:32 | 000,209,096 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2013/10/29 07:27:32 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2013/10/29 07:21:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2013/10/29 07:17:28 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2013/10/29 07:16:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2013/10/29 07:16:04 | 000,827,096 | ---- | C] (Realtek ) -- C:\WINDOWS\SysNative\drivers\Rt630x64.sys
[2013/10/29 07:16:04 | 000,074,456 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\SysNative\RtNicProp64.dll
[2013/10/29 07:16:01 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Intel Corporation
[2013/10/29 07:15:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\RSTLog
[2013/10/29 06:58:09 | 003,154,552 | ---- | C] (Samsung Electronics CO.,LTD) -- C:\Users\kgarr_000\Desktop\SecSWMgrGuide.exe
[2013/10/29 06:27:27 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Brother
[2013/10/29 05:18:57 | 000,872,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2013/10/29 05:18:57 | 000,698,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2013/10/27 18:23:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2013/10/27 18:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2013/10/27 18:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2013/10/27 16:54:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2013/10/27 12:46:38 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\OneNote Notebooks
[2013/10/27 10:04:05 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\My Received Files
[2013/10/27 10:01:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2013/10/27 10:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel.sav
[2013/10/26 09:08:14 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\No Company Name
[2013/10/26 08:41:03 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Cyberlink
[2013/10/26 08:40:58 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\CyberLink
[2013/10/26 08:14:59 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Adobe
[2013/10/26 00:22:22 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013/10/26 00:22:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2013/10/26 00:20:16 | 002,144,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2013/10/26 00:20:16 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2013/10/26 00:20:16 | 001,765,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2013/10/26 00:20:16 | 001,765,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2013/10/26 00:20:16 | 001,286,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2013/10/26 00:20:16 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2013/10/26 00:20:16 | 000,977,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2013/10/26 00:20:16 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2013/10/26 00:20:16 | 000,837,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2013/10/26 00:20:16 | 000,698,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2013/10/26 00:20:16 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2013/10/26 00:20:16 | 000,516,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2013/10/26 00:20:16 | 000,382,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2013/10/26 00:20:16 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2013/10/26 00:20:16 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/10/26 00:20:16 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2013/10/26 00:20:16 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/10/26 00:16:14 | 000,000,000 | ---D | C] -- C:\inetpub
[2013/10/26 00:15:11 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2013/10/26 00:15:11 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2013/10/26 00:15:10 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2013/10/26 00:15:09 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2013/10/26 00:15:08 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2013/10/26 00:15:07 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2013/10/25 21:02:56 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\SkyDrive
[2013/10/25 21:00:43 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Synaptics
[2013/10/25 20:29:32 | 000,000,000 | --SD | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Saved Games
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Favorites
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Documents
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Desktop
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/10/25 20:29:32 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\AppData\Local\Temporary Internet Files
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Templates
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Start Menu
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\SendTo
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Recent
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\PrintHood
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\NetHood
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Documents\My Videos
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Documents\My Pictures
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Documents\My Music
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\My Documents
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Local Settings
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\AppData\Local\History
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Cookies
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\Application Data
[2013/10/25 20:29:32 | 000,000,000 | -HSD | C] -- C:\Users\kgarr_000\AppData\Local\Application Data
[2013/10/25 20:29:32 | 000,000,000 | -H-D | C] -- C:\Users\kgarr_000\AppData
[2013/10/25 20:29:32 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Temp
[2013/10/25 20:29:32 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Microsoft
[2013/10/25 20:29:32 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/10/25 20:25:09 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2013/10/25 20:25:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2013/10/25 20:25:03 | 000,064,000 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2013/10/25 20:25:03 | 000,060,416 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2013/10/25 20:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2013/10/25 20:24:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SRSLabs
[2013/10/25 20:24:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2013/10/25 20:24:09 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/25 20:23:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/10/25 17:45:50 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
[2013/10/25 17:45:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyPC Backup
[2013/10/25 10:14:11 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Diagnostics
[2013/10/25 10:09:00 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\Odd things in odd places
[2013/10/24 16:52:15 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Documents\Scanned Documents
[2013/10/24 16:52:14 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\Fax
[2013/10/24 16:28:46 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Apple Computer
[2013/10/24 16:23:51 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Searches
[2013/10/24 13:14:41 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2013/10/22 12:10:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/10/22 12:09:48 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/10/22 12:09:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/10/22 12:09:48 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/10/22 12:09:48 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/10/22 11:34:53 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Documents\Notes
[2013/10/22 11:26:45 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Mozilla
[2013/10/22 10:20:04 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Google Drive
[2013/10/17 13:56:12 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Intel
[2013/10/17 13:55:46 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Intel WiDi
[2013/10/15 17:10:22 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\LogMeIn Rescue Applet
[2013/10/15 15:33:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2013/10/15 15:32:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
[2013/10/15 15:26:01 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\SkyDrive.old
[2013/10/15 15:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
[2013/10/15 15:10:08 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Identities
[2013/10/15 14:50:32 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\ED_191 Papers
[2013/10/15 14:43:12 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\Custom Office Templates
[2013/10/15 14:08:49 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Microsoft Help
[2013/10/15 13:17:38 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\LAPTOP
[2013/10/15 13:05:05 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Macromedia
[2013/10/15 13:03:59 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Samsung
[2013/10/15 13:03:18 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Apple Computer
[2013/10/15 13:02:54 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/10/15 13:02:54 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/10/15 13:02:53 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Contacts
[2013/10/15 13:02:42 | 000,000,000 | -H-D | C] -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2013/10/15 13:02:42 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Adobe
[2013/10/15 13:02:32 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\VirtualStore
[2013/10/15 13:02:26 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Packages
[2013/10/15 13:02:13 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Roaming\Intel
[2013/10/15 13:02:11 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Videos
[2013/10/15 13:02:11 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Pictures
[2013/10/15 13:02:11 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Music
[2013/10/15 13:02:11 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Links
[2013/10/15 13:02:11 | 000,000,000 | R--D | C] -- C:\Users\kgarr_000\Downloads
[2013/10/15 13:02:11 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Roaming
[2013/10/15 13:02:11 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\AppData\Local\Google
[2013/10/15 08:42:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2013/10/11 16:21:52 | 000,829,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr100.dll
[2013/10/11 16:21:52 | 000,608,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcp100.dll
[2013/10/08 10:06:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
[2013/10/08 07:50:12 | 000,000,000 | ---D | C] -- C:\Users\kgarr_000\Documents\Related to ED191
[2013/04/16 01:43:42 | 002,064,264 | ---- | C] (Samsung Electronics) -- C:\ProgramData\MakeMarkerFile.exe
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2013/11/03 12:24:54 | 000,000,568 | ---- | M] () -- C:\Users\kgarr_000\Desktop\Geek Squad Remote Support.website
[2013/11/03 12:06:11 | 000,000,496 | ---- | M] () -- C:\WINDOWS\tasks\SparkTrust Registration3.job
[2013/11/03 12:05:27 | 000,000,630 | ---- | M] () -- C:\WINDOWS\tasks\SparkTrust PC Cleaner Plus Startup.job
[2013/11/03 12:05:26 | 000,001,369 | ---- | M] () -- C:\Users\kgarr_000\Desktop\SparkTrust PC Cleaner Plus.lnk
[2013/11/03 12:05:26 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\SparkTrust Update Version3 Startup Task.job
[2013/11/03 12:05:26 | 000,000,454 | ---- | M] () -- C:\WINDOWS\tasks\SparkTrust Update Version3.job
[2013/11/03 12:05:24 | 000,000,554 | ---- | M] () -- C:\WINDOWS\tasks\SparkTrust PC Cleaner Plus.job
[2013/11/03 11:41:24 | 000,921,134 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2013/11/03 11:41:24 | 000,775,240 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2013/11/03 11:41:24 | 000,148,354 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2013/11/03 11:37:20 | 000,000,906 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/03 11:36:40 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/11/03 11:35:01 | 000,000,759 | ---- | M] () -- C:\Users\Public\Desktop\Webroot SecureAnywhere.lnk
[2013/11/03 11:34:36 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/11/03 11:34:35 | 763,097,087 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/03 10:27:00 | 000,000,910 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/01 09:31:00 | 000,002,319 | ---- | M] () -- C:\Users\kgarr_000\Desktop\Chrome App Launcher.lnk
[2013/11/01 09:23:43 | 000,154,312 | ---- | M] (Webroot) -- C:\WINDOWS\SysWow64\WRusr.dll
[2013/11/01 09:23:43 | 000,114,720 | ---- | M] (Webroot) -- C:\WINDOWS\SysNative\drivers\WRkrn.sys
[2013/11/01 09:23:43 | 000,104,872 | ---- | M] (Webroot) -- C:\WINDOWS\SysNative\WRusr.dll
[2013/10/29 09:18:43 | 000,002,039 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/10/29 07:42:02 | 000,000,002 | ---- | M] () -- C:\WINDOWS\MSetup.pas
[2013/10/29 07:28:17 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2013/10/29 07:16:11 | 000,935,790 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2013/10/29 07:14:54 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2013/10/29 06:58:10 | 003,154,552 | ---- | M] (Samsung Electronics CO.,LTD) -- C:\Users\kgarr_000\Desktop\SecSWMgrGuide.exe
[2013/10/29 06:29:11 | 000,000,672 | ---- | M] () -- C:\WINDOWS\BRRBCOM.INI
[2013/10/28 20:29:49 | 000,001,115 | ---- | M] () -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
[2013/10/27 17:38:36 | 000,000,296 | ---- | M] () -- C:\WINDOWS\Brownie.ini
[2013/10/27 12:18:18 | 000,000,000 | -H-- | M] () -- C:\Users\kgarr_000\Documents\Default.rdp
[2013/10/27 09:30:33 | 002,247,704 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2013/10/26 08:11:35 | 000,000,626 | RHS- | M] () -- C:\Users\kgarr_000\ntuser.pol
[2013/10/26 00:20:28 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2013/10/26 00:20:28 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/26 00:20:16 | 002,144,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2013/10/26 00:20:16 | 002,140,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2013/10/26 00:20:16 | 001,765,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2013/10/26 00:20:16 | 001,765,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2013/10/26 00:20:16 | 001,286,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2013/10/26 00:20:16 | 001,217,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2013/10/26 00:20:16 | 000,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2013/10/26 00:20:16 | 000,909,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2013/10/26 00:20:16 | 000,837,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2013/10/26 00:20:16 | 000,698,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2013/10/26 00:20:16 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2013/10/26 00:20:16 | 000,516,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2013/10/26 00:20:16 | 000,382,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2013/10/26 00:20:16 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2013/10/26 00:20:16 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/10/26 00:20:16 | 000,225,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2013/10/26 00:20:16 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/10/25 21:03:10 | 000,002,054 | ---- | M] () -- C:\Users\Public\Desktop\Support Center.lnk
[2013/10/25 20:44:59 | 000,028,578 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2013/10/25 20:44:59 | 000,028,578 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2013/10/25 20:44:35 | 000,022,744 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2013/10/25 20:25:25 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/25 20:25:19 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job
[2013/10/25 20:25:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/25 17:45:50 | 000,001,097 | ---- | M] () -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
[2013/10/25 17:45:50 | 000,001,087 | ---- | M] () -- C:\Users\kgarr_000\Desktop\MyPC Backup.lnk
[2013/10/25 11:09:05 | 001,110,476 | ---- | M] () -- C:\Users\kgarr_000\7z920.exe
[2013/10/24 15:48:32 | 001,118,208 | ---- | M] () -- C:\Users\kgarr_000\Documents\alluserinstallagent.evtx
[2013/10/24 15:02:01 | 011,542,528 | ---- | M] () -- C:\Users\kgarr_000\Documents\SRUDB.dat
[2013/10/24 14:51:30 | 000,041,883 | ---- | M] () -- C:\Users\kgarr_000\AppData\Local\Perfmon.PerfmonCfg
[2013/10/24 13:18:43 | 032,505,856 | ---- | M] () -- C:\Users\kgarr_000\Documents\COMPONENTS
[2013/10/23 06:01:19 | 000,872,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2013/10/23 03:59:16 | 000,698,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2013/10/22 12:10:23 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/22 10:20:05 | 000,002,021 | ---- | M] () -- C:\Users\kgarr_000\Desktop\Google Drive.lnk
[2013/10/22 07:46:59 | 000,001,946 | ---- | M] () -- C:\Users\Public\Desktop\SW Update.lnk
[2013/10/18 10:01:15 | 000,394,925 | ---- | M] () -- C:\Users\kgarr_000\Documents\codes of power.pdf
[2013/10/17 13:06:26 | 000,002,056 | ---- | M] () -- C:\Users\kgarr_000\Desktop\Support Center.lnk
[2013/10/16 18:42:15 | 000,000,184 | ---- | M] () -- C:\Users\kgarr_000\Documents\Amazon.gdoc
[2013/10/15 13:17:34 | 000,002,279 | ---- | M] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/15 13:17:34 | 000,002,255 | ---- | M] () -- C:\Users\kgarr_000\Desktop\Google Chrome.lnk
[2013/10/15 13:04:43 | 000,001,424 | ---- | M] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/15 13:04:43 | 000,000,223 | -HS- | M] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop (1).ini
[2013/10/11 16:21:52 | 000,829,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr100.dll
[2013/10/11 16:21:52 | 000,608,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcp100.dll
[2013/10/11 16:21:52 | 000,569,424 | ---- | M] () -- C:\Users\kgarr_000\Desktop\SupportCenterSetup.exe
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2013/11/03 12:06:10 | 000,000,496 | ---- | C] () -- C:\WINDOWS\tasks\SparkTrust Registration3.job
[2013/11/03 12:05:27 | 000,000,630 | ---- | C] () -- C:\WINDOWS\tasks\SparkTrust PC Cleaner Plus Startup.job
[2013/11/03 12:05:26 | 000,001,369 | ---- | C] () -- C:\Users\kgarr_000\Desktop\SparkTrust PC Cleaner Plus.lnk
[2013/11/03 12:05:26 | 000,000,506 | ---- | C] () -- C:\WINDOWS\tasks\SparkTrust Update Version3 Startup Task.job
[2013/11/03 12:05:25 | 000,000,454 | ---- | C] () -- C:\WINDOWS\tasks\SparkTrust Update Version3.job
[2013/11/03 12:05:24 | 000,000,554 | ---- | C] () -- C:\WINDOWS\tasks\SparkTrust PC Cleaner Plus.job
[2013/10/30 10:05:53 | 000,002,319 | ---- | C] () -- C:\Users\kgarr_000\Desktop\Chrome App Launcher.lnk
[2013/10/29 09:18:43 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013/10/29 09:18:43 | 000,002,039 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/10/29 07:42:02 | 000,000,002 | ---- | C] () -- C:\WINDOWS\MSetup.pas
[2013/10/29 07:28:17 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/10/29 07:27:40 | 005,681,192 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtvienna.dat
[2013/10/29 07:27:38 | 000,653,829 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2013/10/29 07:16:11 | 000,935,790 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2013/10/29 07:14:54 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2013/10/28 20:29:49 | 000,001,115 | ---- | C] () -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
[2013/10/27 12:18:18 | 000,000,000 | -H-- | C] () -- C:\Users\kgarr_000\Documents\Default.rdp
[2013/10/25 21:03:10 | 000,002,054 | ---- | C] () -- C:\Users\Public\Desktop\Support Center.lnk
[2013/10/25 20:59:12 | 000,001,442 | ---- | C] () -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/10/25 20:59:02 | 000,000,626 | RHS- | C] () -- C:\Users\kgarr_000\ntuser.pol
[2013/10/25 20:44:36 | 000,022,744 | ---- | C] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2013/10/25 20:37:06 | 000,000,759 | ---- | C] () -- C:\Users\Public\Desktop\Webroot SecureAnywhere.lnk
[2013/10/25 20:33:38 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2013/10/25 20:29:32 | 000,000,352 | ---- | C] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/10/25 20:29:32 | 000,000,334 | ---- | C] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/10/25 20:29:23 | 000,028,578 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2013/10/25 20:29:23 | 000,028,578 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2013/10/25 20:25:25 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/25 20:25:19 | 000,000,264 | ---- | C] () -- C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job
[2013/10/25 20:25:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/25 17:45:50 | 000,001,097 | ---- | C] () -- C:\Users\kgarr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
[2013/10/25 17:45:50 | 000,001,087 | ---- | C] () -- C:\Users\kgarr_000\Desktop\MyPC Backup.lnk
[2013/10/25 11:08:52 | 001,110,476 | ---- | C] () -- C:\Users\kgarr_000\7z920.exe
[2013/10/25 10:32:16 | 000,919,220 | ---- | C] () -- C:\Users\kgarr_000\Documents\Thank you for agreeing to serve as Article Editor on SO-11-0322
[2013/10/24 15:48:18 | 001,118,208 | ---- | C] () -- C:\Users\kgarr_000\Documents\alluserinstallagent.evtx
[2013/10/24 15:21:46 | 011,542,528 | ---- | C] () -- C:\Users\kgarr_000\Documents\SRUDB.dat
[2013/10/24 15:21:09 | 000,000,940 | ---- | C] () -- C:\Users\kgarr_000\Documents\SP_87CE74B7D3B44BFE92B1F8F7D548E3D3.dat
[2013/10/24 15:19:27 | 032,505,856 | ---- | C] () -- C:\Users\kgarr_000\Documents\COMPONENTS
[2013/10/24 14:53:34 | 000,004,136 | ---- | C] () -- C:\Users\kgarr_000\Documents\c2rheartbeatconfig.xml
[2013/10/24 13:41:37 | 000,000,007 | ---- | C] () -- C:\Users\kgarr_000\Documents\Desktop (create shortcut).DeskLink
[2013/10/24 13:41:37 | 000,000,004 | ---- | C] () -- C:\Users\kgarr_000\Documents\Mail Recipient.MAPIMail
[2013/10/24 13:41:37 | 000,000,003 | ---- | C] () -- C:\Users\kgarr_000\Documents\Compressed (zipped) Folder.ZFSendToTarget
[2013/10/22 12:10:23 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/22 11:26:31 | 000,041,883 | ---- | C] () -- C:\Users\kgarr_000\AppData\Local\Perfmon.PerfmonCfg
[2013/10/22 10:25:48 | 000,000,568 | ---- | C] () -- C:\Users\kgarr_000\Desktop\Geek Squad Remote Support.website
[2013/10/22 10:22:53 | 000,000,184 | ---- | C] () -- C:\Users\kgarr_000\Documents\Amazon.gdoc
[2013/10/22 10:20:05 | 000,002,021 | ---- | C] () -- C:\Users\kgarr_000\Desktop\Google Drive.lnk
[2013/10/22 07:46:59 | 000,001,946 | ---- | C] () -- C:\Users\Public\Desktop\SW Update.lnk
[2013/10/18 10:01:15 | 000,394,925 | ---- | C] () -- C:\Users\kgarr_000\Documents\codes of power.pdf
[2013/10/17 13:06:26 | 000,002,056 | ---- | C] () -- C:\Users\kgarr_000\Desktop\Support Center.lnk
[2013/10/17 13:04:37 | 000,002,101 | ---- | C] () -- C:\Users\kgarr_000\Desktop\Quick Starter.lnk
[2013/10/15 13:04:43 | 000,001,424 | ---- | C] () -- C:\Users\kgarr_000\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer