Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Need an expert second opinion.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Need an expert second opinion.

Unread postby Deaderpool » June 11th, 2014, 2:15 pm

I had a bad case of malware and tried everything I knew to fix it. I ended up just reinstalling windows. I just tried to install a screen recorder plug in for skype and a warning for F.EXE came up. I was wondering if you could give my logs a look see and let me know if I am cool? Thanks


I just tried to copy/paste both files but they were 2000 characters too long, here is FIRST. Will await instructions before adding an attachment.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-06-2014 01
Ran by Michael (administrator) on NSASCAN on 11-06-2014 14:02:01
Running from D:\1DOWNLOADS
Platform: Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(DivX, LLC) C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\FileManager\FileManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2014-06-05] (Panda Security, S.L.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-549759564-3620167320-2048777180-1001\...\Run: [GoogleChromeAutoLaunch_1D7305B07635F8E0A4CF4B02D1C53C4D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-05-13] (Google Inc.)
HKU\S-1-5-21-549759564-3620167320-2048777180-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-549759564-3620167320-2048777180-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-549759564-3620167320-2048777180-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21822128 2014-01-30] (Google)
HKU\S-1-5-21-549759564-3620167320-2048777180-1001\...\Run: [DellSystemDetect] => C:\Users\Michael\AppData\Local\Apps\2.0\4LJ33A7O.KAR\74BEV836.8Q6\dell..tion_0f612f649c4a10af_0005.0008_b3168e842b9276ec\DellSystemDetect.exe [262720 2014-06-01] (Dell)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=U160&ocid=U160DHP&dt=081113
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

Chrome:
=======
CHR HomePage: https://news.google.com/
CHR StartupUrls: "https://mail.google.com/mail/u/0/?ui=2#inbox", "https://www.facebook.com/home.php?ref=home", "https://news.google.com/"
CHR Extension: (Angry Birds) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-05-06]
CHR Extension: (Google Docs) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-06]
CHR Extension: (Google Drive) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-06]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-06]
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-06]
CHR Extension: (Google Search) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-06]
CHR Extension: (Search by Image (by Google)) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2014-05-06]
CHR Extension: (VUDU Movies) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\daomabnenlgkenegngdblacoobnncgib [2014-05-06]
CHR Extension: (Netflix) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2014-05-06]
CHR Extension: (Google Calendar) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-05-06]
CHR Extension: (Google Play Music) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-05-31]
CHR Extension: (Cloudy for Gmail™) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfnjfpcmnoabmbhponbioedjceaddaa [2014-05-06]
CHR Extension: (iCloud Bookmarks) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-05-26]
CHR Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2014-05-06]
CHR Extension: (Chrome Web Store Launcher (by Google)) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej [2014-06-09]
CHR Extension: (Spotify Chrome Extension) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbjmlahipheaaghllkabfkpolljilkjb [2014-05-06]
CHR Extension: (Flixster) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgbpjlnkjhllfgfdmieompodgaefjcfh [2014-05-06]
CHR Extension: (Don't Starve) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-05-06]
CHR Extension: (Marvel Comics) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjhfaknohpjconjoefidanhihokmkice [2014-05-06]
CHR Extension: (Crackle) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-05-06]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-05-06]
CHR Extension: (Google Play Music) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-05-06]
CHR Extension: (Google Forms) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2014-05-06]
CHR Extension: (Hangouts call) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbpgddbgniojgndnhlkjbkpknjhppkbk [2014-05-06]
CHR Extension: (HootSuite) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij [2014-05-06]
CHR Extension: (Evernote Web) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2014-05-06]
CHR Extension: (Google Maps) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-05-06]
CHR Extension: (Contract Killer) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\meklndaflopgghbomkdpofehonfclipi [2014-05-06]
CHR Extension: (Google Mail Checker) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-05-06]
CHR Extension: (Google Drawings) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkaakpdehdafacodkgkpghoibnmamcme [2014-05-06]
CHR Extension: (Ghostery) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-05-06]
CHR Extension: (Google Play Books) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmimngoggfoobjdlefbcabngfnmieonb [2014-05-06]
CHR Extension: (Hangouts) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-06-09]
CHR Extension: (Save to Pocket) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-06-09]
CHR Extension: (Norton Identity Safe) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom [2014-05-06]
CHR Extension: (Google Wallet) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-06]
CHR Extension: (Evernote Web Clipper) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-05-06]
CHR Extension: (Gmail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-06]

==================== Services (Whitelisted) =================

R2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473792 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-05-06] (BitRaider, LLC)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [141560 2014-05-28] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [61688 2014-06-05] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-06-05] (Panda Security, S.L.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2185528 2014-04-15] (AVG)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
S2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [X]
S2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [X]
S4 AntiVirWebService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe" [X]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-25] (Avira Operations GmbH & Co. KG)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [274712 2014-03-31] (AVG Technologies CZ, s.r.o.)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-05-06] (BitRaider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [47360 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [160800 2014-06-06] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [120352 2014-06-05] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-06-05] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-06-05] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-06-06] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [106016 2014-06-05] (Panda Security, S.L.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-03-26] (TuneUp Software)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-05-06] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-11 14:01 - 2014-06-11 14:02 - 00000000 ____D () C:\FRST
2014-06-11 05:33 - 2014-06-11 05:33 - 00000000 ____D () C:\WINDOWS\LastGood
2014-06-11 05:31 - 2014-06-11 05:31 - 00001456 _____ () C:\WINDOWS\PFRO.log
2014-06-11 05:27 - 2014-06-11 05:27 - 00001282 _____ () C:\WINDOWS\SysWOW64\BroomData.bit
2014-06-11 05:27 - 2013-04-08 16:30 - 00022752 _____ () C:\WINDOWS\system32\PCloudBroom64.exe
2014-06-10 17:15 - 2014-06-10 17:15 - 00001298 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-06-10 17:14 - 2014-06-10 17:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-06-10 16:04 - 2014-06-10 16:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Global Protection
2014-06-10 16:03 - 2014-06-10 17:14 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-06-09 06:44 - 2014-06-09 06:44 - 00046080 ___SH () C:\Users\Michael\Desktop\Thumbs.db
2014-06-09 03:54 - 2014-06-11 05:33 - 00000000 ___RD () C:\Users\Michael\Google Drive
2014-06-09 03:54 - 2014-06-09 03:54 - 00001730 _____ () C:\Users\Michael\Desktop\Google Drive.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002058 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002056 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002046 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-06-07 23:38 - 2014-06-07 23:39 - 01564580 _____ () C:\Users\Michael\Downloads\IMG_5194.MOV
2014-06-06 06:45 - 2014-06-06 06:45 - 00132128 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2014-06-06 04:07 - 2014-06-06 04:07 - 00160800 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00195616 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00122400 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00120352 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00106016 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00306720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSProt.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00261152 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSStrm.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00169504 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPrv.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00162336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSHttp.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00125984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPop3.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00115744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSSmtp.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00115232 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSIds.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00112160 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSHttps.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00109088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNStlsc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00096800 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSAlpc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00095776 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSpicc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00070176 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPihsw.sys
2014-06-02 16:28 - 2014-06-02 16:28 - 00324056 _____ () C:\Users\Michael\Downloads\F4C_Rewards_Yoda.zip
2014-06-01 22:59 - 2014-01-10 04:36 - 00033616 _____ (Intel Corporation ) C:\WINDOWS\system32\Drivers\iqvw64e.sys
2014-06-01 20:38 - 2014-06-01 20:38 - 00005418 _____ () C:\Users\Michael\Downloads\Chris Pirillo Active Patron-only Bonuses.ods
2014-06-01 15:07 - 2014-06-01 15:07 - 04462440 _____ (AVG Technologies) C:\Users\Michael\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe
2014-05-30 03:20 - 2014-05-30 03:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-05-30 02:55 - 2014-05-30 02:55 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-30 02:55 - 2014-05-30 02:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-30 02:54 - 2014-05-30 02:55 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-30 02:54 - 2014-05-30 02:55 - 00000000 ____D () C:\Program Files\iTunes
2014-05-30 02:54 - 2014-05-30 02:55 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-30 02:54 - 2014-05-30 02:54 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 07:28 - 2014-05-29 07:28 - 00000900 _____ () C:\Users\Michael\Downloads\[kickass.to]movie.magic.screenwriter.6.crack.only.torrent
2014-05-29 07:16 - 2014-05-29 07:16 - 00033818 _____ () C:\Users\Michael\Downloads\Movie Magic Screenwriter.torrent
2014-05-29 06:52 - 2014-05-29 06:52 - 00000000 ____D () C:\Users\Michael\Documents\Scripts
2014-05-29 00:22 - 2014-05-29 08:40 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\DivX
2014-05-29 00:22 - 2014-05-29 00:22 - 00001632 _____ () C:\Users\Michael\Desktop\DivX Movies.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00001143 _____ () C:\Users\Public\Desktop\DivX Converter.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00001078 _____ () C:\Users\Public\Desktop\DivX Player.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00000000 ____D () C:\Program Files\DivX
2014-05-29 00:21 - 2014-05-29 00:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-05-29 00:21 - 2014-05-29 00:22 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-05-29 00:20 - 2014-05-29 00:22 - 00000000 ____D () C:\ProgramData\DivX
2014-05-29 00:20 - 2014-05-29 00:20 - 01001280 _____ (DivX, LLC) C:\Users\Michael\Downloads\DivXInstaller.exe
2014-05-24 22:49 - 2014-05-24 22:49 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\OpenOffice
2014-05-24 02:15 - 2014-05-24 02:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-24 01:19 - 2014-06-11 05:26 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\ClassicShell
2014-05-24 01:19 - 2014-05-24 01:19 - 00000214 _____ () C:\Users\Michael\Documents\Menu Settings.xml
2014-05-24 01:19 - 2014-05-24 01:19 - 00000000 ____D () C:\ProgramData\ClassicShell
2014-05-23 23:39 - 2014-05-23 23:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2014-05-23 23:39 - 2014-05-23 23:39 - 00000000 ____D () C:\Program Files\Classic Shell
2014-05-23 23:37 - 2014-05-23 23:37 - 06791360 _____ (IvoSoft) C:\Users\Michael\Downloads\ClassicShellSetup_4_1_0.exe
2014-05-23 13:29 - 2014-05-23 13:35 - 71062364 _____ () C:\Users\Michael\Downloads\com_182.rar
2014-05-23 12:22 - 2014-05-23 12:26 - 54544448 _____ () C:\Users\Michael\Downloads\com_144.rar
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\WinRAR
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-23 12:19 - 2014-05-23 12:20 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-05-23 12:19 - 2014-05-23 12:19 - 01769680 _____ () C:\Users\Michael\Downloads\wrar501.exe
2014-05-23 12:06 - 2014-05-23 12:16 - 17656554 _____ () C:\Users\Michael\Downloads\com_071.rar
2014-05-23 05:42 - 2014-05-23 05:43 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\IObit
2014-05-23 05:42 - 2014-05-23 05:42 - 02201632 _____ (IObit ) C:\Users\Michael\Downloads\rpg-setup.exe
2014-05-23 05:42 - 2014-05-23 05:42 - 00001333 _____ () C:\Users\Public\Desktop\Random Password Generator.lnk
2014-05-23 05:42 - 2014-05-23 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Random Password Generator
2014-05-23 05:42 - 2014-05-23 05:42 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-05-23 01:32 - 2014-06-01 06:20 - 00000000 ____D () C:\Users\Michael\Downloads\Gravity (2013) [1080p]
2014-05-23 01:31 - 2014-05-23 01:31 - 00013550 _____ () C:\Users\Michael\Downloads\[kickass.to]gravity.2013.1080p.brrip.x264.yify.torrent
2014-05-23 01:28 - 2014-06-01 06:20 - 00000000 ____D () C:\Users\Michael\Downloads\The Wolverine (2013) [1080p]
2014-05-23 01:27 - 2014-05-23 01:27 - 00021631 _____ () C:\Users\Michael\Downloads\[kickassto.come.in]the.wolverine.2013.extended.1080p.brrip.x264.yify.torrent
2014-05-23 01:24 - 2014-06-01 06:20 - 00000000 ____D () C:\Users\Michael\Downloads\[ExtremlymTorrents.Me] JLA Adventures Trapped In Time 2014 720p XviD XTRTeam
2014-05-23 01:23 - 2014-05-23 01:23 - 01673296 _____ (BitTorrent Inc.) C:\Users\Michael\Downloads\uTorrent.exe
2014-05-23 01:22 - 2014-05-23 01:22 - 00018971 _____ () C:\Users\Michael\Downloads\[kickass.to]jla.adventures.trapped.in.time.2014.720p.xvid.xtrteam.torrent
2014-05-21 11:53 - 2014-06-11 05:26 - 00000000 ____D () C:\Program Files (x86)\VUDUToGo
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\com.vudu.air.Downloader
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-21 11:52 - 2014-05-21 11:52 - 00000000 ____D () C:\Users\Michael\AppData\Local\Adobe
2014-05-21 11:52 - 2014-05-21 11:52 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-21 11:51 - 2014-05-21 11:51 - 03402240 _____ () C:\Users\Michael\Downloads\VUDUToGo.exe
2014-05-20 01:22 - 2014-05-20 01:22 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-05-19 10:40 - 2014-05-28 05:34 - 00000000 ____D () C:\Users\Michael\Tracing
2014-05-19 10:40 - 2014-05-19 10:40 - 00001390 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-05-19 10:40 - 2014-05-19 10:40 - 00001321 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-19 10:40 - 2014-05-19 10:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-19 10:40 - 2014-05-19 10:40 - 00000000 ____D () C:\WINDOWS\en
2014-05-19 10:39 - 2014-05-19 10:39 - 00002502 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-05-19 10:39 - 2014-05-19 10:39 - 00001474 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files\Windows Live
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-19 10:38 - 2014-05-19 10:38 - 00003098 _____ () C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-549759564-3620167320-2048777180-1001
2014-05-19 10:38 - 2014-05-19 10:38 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-05-19 10:38 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2014-05-19 10:38 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-05-19 10:38 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-05-19 10:38 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2014-05-19 10:38 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-05-19 10:38 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-05-19 10:38 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-05-19 10:38 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2014-05-19 10:38 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2014-05-19 10:38 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-05-19 10:38 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2014-05-19 10:37 - 2014-05-26 22:43 - 00000000 ____D () C:\Users\Michael\AppData\Local\Windows Live
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files\MSBuild
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-05-19 10:35 - 2014-05-19 10:35 - 06342103 _____ () C:\Users\Michael\Downloads\FireMarcSchroeder.themepack
2014-05-19 10:34 - 2013-08-03 00:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-05-19 10:34 - 2013-08-03 00:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-19 10:34 - 2013-08-03 00:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-05-19 10:34 - 2013-08-03 00:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-05-19 10:34 - 2013-08-03 00:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-19 10:34 - 2013-08-03 00:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-05-19 10:33 - 2014-05-19 10:33 - 01239752 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\wlsetup-web.exe
2014-05-19 10:27 - 2014-05-19 10:27 - 00770048 _____ () C:\Users\Michael\Downloads\image.jpeg
2014-05-19 09:58 - 2014-05-19 09:58 - 00962450 _____ () C:\Users\Michael\Downloads\Sketch 2014-05-19 13_48_44.psd
2014-05-19 07:34 - 2014-04-18 04:09 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-19 07:34 - 2014-04-06 12:31 - 21268952 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-19 07:34 - 2014-04-06 07:55 - 16872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-19 07:34 - 2014-04-06 07:54 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-05-19 07:33 - 2014-04-18 10:57 - 00032600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-05-19 07:33 - 2014-04-18 10:44 - 01466856 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-05-19 07:33 - 2014-04-18 09:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-05-19 07:33 - 2014-04-18 05:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2014-05-19 07:33 - 2014-04-18 05:32 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-05-19 07:33 - 2014-04-18 04:58 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-05-19 07:33 - 2014-04-18 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-05-19 07:33 - 2014-04-18 04:21 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-05-19 07:33 - 2014-04-18 03:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-05-19 07:33 - 2014-04-18 03:49 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-05-19 07:33 - 2014-04-14 05:20 - 00324888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-19 07:33 - 2014-04-14 04:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-05-19 07:33 - 2014-04-11 02:13 - 01200128 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-05-19 07:33 - 2014-04-11 00:51 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-05-19 07:33 - 2014-04-11 00:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-05-19 07:33 - 2014-04-10 23:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-05-19 07:33 - 2014-04-09 07:53 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-05-19 07:33 - 2014-04-09 02:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-05-19 07:33 - 2014-04-09 01:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-05-19 07:33 - 2014-04-09 00:35 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-05-19 07:33 - 2014-04-08 23:33 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-05-19 07:33 - 2014-04-07 22:01 - 00589656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-05-19 07:33 - 2014-04-06 12:34 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-05-19 07:33 - 2014-04-06 12:34 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2014-05-19 07:33 - 2014-04-06 12:32 - 00125496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-05-19 07:33 - 2014-04-06 12:30 - 00201920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-19 07:33 - 2014-04-06 12:24 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-05-19 07:33 - 2014-04-06 12:20 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 01403856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 01379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00609448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00491744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00467496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00463256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00244880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-05-19 07:33 - 2014-04-06 12:20 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-05-19 07:33 - 2014-04-06 12:20 - 00028408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2014-05-19 07:33 - 2014-04-06 11:23 - 00098584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-05-19 07:33 - 2014-04-06 11:22 - 18755672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-19 07:33 - 2014-04-06 11:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-05-19 07:33 - 2014-04-06 11:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-05-19 07:33 - 2014-04-06 10:10 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-05-19 07:33 - 2014-04-06 08:58 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-05-19 07:33 - 2014-04-06 08:51 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-05-19 07:33 - 2014-04-06 08:33 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-05-19 07:33 - 2014-04-06 08:24 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-05-19 07:33 - 2014-04-06 08:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2014-05-19 07:33 - 2014-04-06 07:26 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-05-19 07:33 - 2014-04-06 07:20 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-19 07:33 - 2014-04-06 07:01 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-05-19 07:33 - 2014-04-06 06:52 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-19 07:33 - 2014-04-06 06:51 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-05-19 07:33 - 2014-04-06 06:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-05-19 07:33 - 2014-04-06 06:36 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-05-19 07:33 - 2014-04-06 06:05 - 01222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-19 07:33 - 2014-04-06 05:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-05-19 07:33 - 2014-04-03 04:12 - 02124840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-05-19 07:33 - 2014-04-03 04:12 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-05-19 07:33 - 2014-04-03 04:12 - 00130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2014-05-19 07:33 - 2014-04-03 00:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-05-19 07:33 - 2014-04-03 00:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2014-05-19 07:33 - 2014-04-02 23:53 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-05-19 07:33 - 2014-04-02 22:53 - 04269056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-05-19 07:33 - 2014-04-02 22:53 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-05-19 07:33 - 2014-04-02 22:51 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-05-19 07:33 - 2014-04-02 22:23 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-05-19 07:33 - 2014-04-02 22:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-05-19 07:33 - 2014-04-02 22:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll
2014-05-19 07:33 - 2014-04-02 22:22 - 03359744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-05-19 07:33 - 2014-04-02 22:22 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll
2014-05-19 07:33 - 2014-04-01 02:23 - 00384856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-05-19 07:33 - 2014-03-31 01:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-05-19 07:33 - 2014-03-31 01:35 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-05-19 07:33 - 2014-03-31 01:35 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-05-19 07:33 - 2014-03-30 20:41 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-05-19 07:33 - 2014-03-30 20:01 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-19 07:33 - 2014-03-30 19:43 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-19 07:33 - 2014-03-30 18:54 - 01308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-05-19 07:33 - 2014-03-30 18:49 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-05-19 07:33 - 2014-03-30 18:35 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-05-19 07:33 - 2014-03-30 18:11 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-19 07:33 - 2014-03-30 17:47 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-05-19 07:33 - 2014-03-28 11:58 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2014-05-19 07:33 - 2014-03-27 02:16 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-05-19 07:33 - 2014-03-27 01:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-05-19 07:33 - 2014-03-27 00:59 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-05-19 07:33 - 2014-03-27 00:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2014-05-19 07:33 - 2014-03-27 00:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-05-19 07:33 - 2014-03-26 23:46 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-05-19 07:33 - 2014-03-26 23:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-05-19 07:33 - 2014-03-26 23:10 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-05-19 07:33 - 2014-03-24 18:58 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-05-19 07:33 - 2014-03-19 23:48 - 00263424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-19 07:33 - 2014-03-19 20:44 - 06645248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-05-19 07:33 - 2014-03-19 19:33 - 05774848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-05-19 07:33 - 2014-03-19 04:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-05-19 07:33 - 2014-03-19 04:07 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-05-19 07:33 - 2014-03-19 03:24 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-05-19 07:33 - 2014-03-19 03:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-05-19 07:33 - 2014-03-19 02:36 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-05-19 07:33 - 2014-03-19 01:56 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-05-19 07:33 - 2014-03-19 01:45 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-05-19 07:33 - 2014-03-19 01:19 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-05-19 07:33 - 2014-03-19 01:07 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-05-19 07:33 - 2014-03-19 01:02 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-05-19 07:33 - 2014-03-19 01:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-05-19 07:33 - 2014-03-19 00:51 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-05-19 07:33 - 2014-03-19 00:31 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-19 07:33 - 2014-03-19 00:18 - 02688000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-19 07:33 - 2014-03-18 04:19 - 00077312 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-05-19 07:33 - 2014-03-18 01:00 - 07173120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-19 07:33 - 2014-03-18 00:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-05-19 07:33 - 2014-03-17 01:09 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-19 07:33 - 2014-03-17 00:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-05-19 07:33 - 2014-03-16 23:01 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-05-19 07:33 - 2014-03-16 22:47 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-05-19 07:33 - 2014-03-16 22:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-05-19 07:33 - 2014-03-14 02:26 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-19 07:33 - 2014-03-14 02:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-05-19 07:33 - 2014-03-06 08:42 - 00310616 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-05-19 07:33 - 2014-01-27 14:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-05-19 06:54 - 2014-05-19 06:54 - 00002241 _____ () C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00002227 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00002215 _____ () C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\AVG
2014-05-19 06:54 - 2014-05-19 06:54 - 00000000 ____D () C:\Users\Michael\AppData\Local\AVG
2014-05-19 06:54 - 2014-04-15 16:23 - 00040248 _____ (AVG) C:\WINDOWS\system32\TURegOpt.exe
2014-05-19 06:54 - 2014-04-15 16:23 - 00029496 _____ (AVG) C:\WINDOWS\system32\authuitu.dll
2014-05-19 06:54 - 2014-04-15 16:23 - 00025400 _____ (AVG) C:\WINDOWS\SysWOW64\authuitu.dll
2014-05-19 06:53 - 2014-05-19 06:58 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-19 06:53 - 2014-05-19 06:56 - 00000000 ____D () C:\ProgramData\AVG
2014-05-19 06:51 - 2014-05-19 06:52 - 70431144 _____ (AVG) C:\Users\Michael\Downloads\avg_tuh_stf_all_2014_423_24c4.exe
2014-05-19 06:46 - 2014-05-19 06:46 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-05-19 06:46 - 2014-05-19 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-05-19 06:42 - 2014-05-19 06:42 - 04485528 _____ (AVG Technologies) C:\Users\Michael\Downloads\avg_free_stb_all_2014_4577_cnet.exe
2014-05-19 06:37 - 2014-05-19 06:37 - 00001088 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-05-19 06:33 - 2014-05-01 16:30 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-05-19 06:33 - 2014-05-01 16:30 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-19 04:55 - 2014-05-19 04:55 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\AVG2014
2014-05-19 04:54 - 2014-05-19 06:54 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-05-19 04:54 - 2014-05-19 04:55 - 00000000 ____D () C:\ProgramData\AVG2014
2014-05-19 04:54 - 2014-05-19 04:54 - 00000000 ___HD () C:\$AVG
2014-05-19 04:54 - 2014-05-19 04:54 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\TuneUp Software
2014-05-19 04:52 - 2014-06-11 12:05 - 00000000 ____D () C:\ProgramData\MFAData
2014-05-19 04:52 - 2014-05-19 05:02 - 00000000 ____D () C:\Users\Michael\AppData\Local\Avg2014
2014-05-19 04:52 - 2014-05-19 04:52 - 00000000 ____D () C:\Users\Michael\AppData\Local\MFAData
2014-05-19 04:24 - 2014-05-19 04:24 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\LavasoftStatistics
2014-05-19 03:47 - 2014-05-19 03:47 - 00000000 ____D () C:\ProgramData\BitDefender
2014-05-19 03:36 - 2014-05-19 03:36 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-05-19 03:16 - 2014-05-19 06:28 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Wise Registry Cleaner
2014-05-19 03:16 - 2014-05-19 03:16 - 00000000 ____D () C:\Program Files (x86)\Wise
2014-05-19 02:41 - 2014-05-19 02:41 - 00000000 ____D () C:\Users\Michael\Documents\ProcAlyzer Dumps
2014-05-18 23:44 - 2014-05-18 23:46 - 00000000 ___HD () C:\$WINDOWS.~BT
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 ____D () C:\sh4ldr
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 _____ () C:\autoexec.bat
2014-05-18 21:01 - 2014-05-18 21:01 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-05-18 20:53 - 2014-05-19 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
2014-05-18 20:53 - 2014-05-18 20:53 - 00000000 ____D () C:\Program Files\Reason
2014-05-18 14:48 - 2014-05-18 14:48 - 00000000 ____D () C:\ProgramData\panda_url_filtering
2014-05-18 14:48 - 2014-05-18 14:48 - 00000000 ____D () C:\ProgramData\Panda Security URL Filtering
2014-05-18 14:47 - 2014-05-18 14:47 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Panda Security
2014-05-18 14:45 - 2014-05-18 14:47 - 00000000 ____D () C:\ProgramData\Panda Security
2014-05-18 10:13 - 2014-05-18 10:13 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\SUPERAntiSpyware.com
2014-05-18 10:12 - 2014-05-18 10:12 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-18 01:55 - 2014-05-18 01:55 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-05-18 01:54 - 2014-05-19 06:28 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-17 20:58 - 2014-05-17 20:58 - 00000000 ____D () C:\Users\Michael\AppData\Local\WMTools Downloaded Files
2014-05-17 20:50 - 2014-05-19 06:28 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\solidloader
2014-05-17 20:50 - 2014-05-19 06:28 - 00000000 ____D () C:\ProgramData\Optimizer
2014-05-17 20:35 - 2014-05-17 20:35 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2014-05-17 19:22 - 2014-05-17 19:24 - 184095722 _____ () C:\Users\Michael\Downloads\Nikki.zip
2014-05-17 14:41 - 2014-05-17 14:42 - 127745550 _____ () C:\Users\Michael\Downloads\DoctorWhoVol1_Fugitive.mobi
2014-05-17 14:19 - 2014-05-17 14:19 - 00000290 _____ () C:\Users\Michael\Downloads\admhelper
2014-05-16 12:23 - 2014-05-16 12:24 - 23108194 _____ () C:\Users\Michael\Downloads\Alan_Moores_Writing_for_Comics_231.cbr
2014-05-16 12:20 - 2014-05-30 03:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\uTorrent
2014-05-15 22:55 - 2014-05-15 23:01 - 511477686 _____ () C:\Users\Michael\Downloads\Epic+History-+House+Baratheon-HD.mp4
2014-05-14 00:43 - 2014-05-19 06:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-05-14 00:43 - 2014-05-19 06:20 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-05-14 00:43 - 2014-05-14 00:43 - 13084896 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\Silverlight_x64.exe
2014-05-14 00:43 - 2014-05-14 00:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-13 22:25 - 2014-03-23 22:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-05-13 22:25 - 2014-03-23 22:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-05-13 22:25 - 2014-03-23 22:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-05-13 22:25 - 2014-03-13 03:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-05-13 22:25 - 2014-03-13 02:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-05-13 22:24 - 2014-05-06 00:40 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-13 22:24 - 2014-05-05 23:25 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-13 22:24 - 2014-05-05 23:00 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-13 22:24 - 2014-05-05 22:10 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-13 22:24 - 2014-04-11 06:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-05-13 22:24 - 2014-04-11 04:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-13 22:24 - 2014-04-11 02:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-05-13 22:24 - 2014-04-11 01:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-05-13 22:24 - 2014-04-11 01:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-05-13 22:24 - 2014-04-10 23:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-05-13 22:24 - 2014-04-10 23:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-13 22:24 - 2014-04-10 23:05 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-13 22:24 - 2014-04-10 23:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-13 22:24 - 2014-04-10 23:02 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-13 22:24 - 2014-04-10 23:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-05-13 22:24 - 2014-04-10 23:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-05-13 22:24 - 2014-04-10 23:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-13 22:24 - 2014-04-10 22:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-13 22:24 - 2014-04-10 22:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-05-13 22:24 - 2014-04-10 22:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-13 22:24 - 2014-04-10 22:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-05-13 22:24 - 2014-04-10 22:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-05-13 22:24 - 2014-04-10 22:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-05-13 22:24 - 2014-04-10 22:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-13 22:24 - 2014-04-10 22:34 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-13 22:24 - 2014-04-10 22:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-05-13 22:24 - 2014-04-10 22:25 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-05-13 22:24 - 2014-04-08 18:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-05-13 22:24 - 2014-04-08 18:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-05-13 22:24 - 2014-04-08 14:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-13 22:24 - 2014-04-08 14:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-13 18:12 - 2014-05-13 18:13 - 71402358 _____ () C:\Users\Michael\Downloads\Space Oddity.mp4
2014-05-13 14:20 - 2014-05-13 14:20 - 00235800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgldx64.sys
2014-05-13 14:06 - 2014-05-13 14:06 - 00323352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgloga.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00191768 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsha.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00152344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgdiska.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00130328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2014-05-13 14:04 - 2014-05-13 14:04 - 00236312 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2014-05-13 14:04 - 2014-05-13 14:04 - 00031512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgrkx64.sys

==================== One Month Modified Files and Folders =======

2014-06-11 14:02 - 2014-06-11 14:01 - 00000000 ____D () C:\FRST
2014-06-11 14:02 - 2014-05-06 13:55 - 00000000 ____D () C:\Users\Michael\AppData\Local\Temp
2014-06-11 13:50 - 2014-05-06 14:01 - 01435837 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-11 13:11 - 2014-05-06 00:01 - 00000916 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-11 13:00 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-11 12:05 - 2014-05-19 04:52 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-11 09:51 - 2014-05-11 19:21 - 00003930 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D4840780-F4C4-43CF-B4F3-AF228DF2CEEE}
2014-06-11 06:08 - 2014-05-06 00:03 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-549759564-3620167320-2048777180-1001
2014-06-11 05:42 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-11 05:34 - 2014-05-06 00:02 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-11 05:33 - 2014-06-11 05:33 - 00000000 ____D () C:\WINDOWS\LastGood
2014-06-11 05:33 - 2014-06-09 03:54 - 00000000 ___RD () C:\Users\Michael\Google Drive
2014-06-11 05:32 - 2014-05-06 14:06 - 00000000 __RDO () C:\Users\Michael\OneDrive
2014-06-11 05:32 - 2014-05-06 00:01 - 00000912 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-11 05:32 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-11 05:31 - 2014-06-11 05:31 - 00001456 _____ () C:\WINDOWS\PFRO.log
2014-06-11 05:31 - 2013-08-22 10:44 - 00407336 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-11 05:31 - 2013-08-22 09:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-06-11 05:30 - 2014-05-06 13:55 - 00000000 ____D () C:\Users\Michael
2014-06-11 05:27 - 2014-06-11 05:27 - 00001282 _____ () C:\WINDOWS\SysWOW64\BroomData.bit
2014-06-11 05:26 - 2014-05-24 01:19 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\ClassicShell
2014-06-11 05:26 - 2014-05-21 11:53 - 00000000 ____D () C:\Program Files (x86)\VUDUToGo
2014-06-10 21:46 - 2012-07-26 03:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-06-10 17:15 - 2014-06-10 17:15 - 00001298 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-06-10 17:15 - 2014-06-10 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-06-10 17:14 - 2014-06-10 16:03 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-06-10 16:11 - 2014-05-06 17:49 - 00000000 ___DC () C:\WINDOWS\Panther
2014-06-10 16:04 - 2014-06-10 16:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Global Protection
2014-06-10 13:31 - 2014-05-07 17:44 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Audacity
2014-06-09 19:30 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-06-09 06:44 - 2014-06-09 06:44 - 00046080 ___SH () C:\Users\Michael\Desktop\Thumbs.db
2014-06-09 03:54 - 2014-06-09 03:54 - 00001730 _____ () C:\Users\Michael\Desktop\Google Drive.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002058 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002056 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00002046 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-06-09 03:52 - 2014-06-09 03:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-06-09 03:52 - 2014-05-06 00:01 - 00000000 ____D () C:\Users\Michael\AppData\Local\Google
2014-06-09 03:52 - 2014-05-06 00:01 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-07 23:50 - 2014-05-07 18:00 - 00514048 ___SH () C:\Users\Michael\Downloads\Thumbs.db
2014-06-07 23:39 - 2014-06-07 23:38 - 01564580 _____ () C:\Users\Michael\Downloads\IMG_5194.MOV
2014-06-06 06:45 - 2014-06-06 06:45 - 00132128 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2014-06-06 04:07 - 2014-06-06 04:07 - 00160800 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00195616 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00122400 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00120352 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2014-06-05 15:51 - 2014-06-05 15:51 - 00106016 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00306720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSProt.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00261152 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSStrm.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00169504 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPrv.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00162336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSHttp.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00125984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPop3.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00115744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSSmtp.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00115232 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSIds.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00112160 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSHttps.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00109088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNStlsc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00096800 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSAlpc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00095776 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSpicc.sys
2014-06-04 11:59 - 2014-06-04 11:59 - 00070176 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\NNSPihsw.sys
2014-06-02 16:28 - 2014-06-02 16:28 - 00324056 _____ () C:\Users\Michael\Downloads\F4C_Rewards_Yoda.zip
2014-06-01 23:34 - 2014-03-18 06:03 - 00863592 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-01 22:59 - 2014-05-07 20:18 - 00000000 ____D () C:\ProgramData\PCDr
2014-06-01 22:56 - 2014-05-07 20:14 - 00000000 ____D () C:\Users\Michael\AppData\Local\Deployment
2014-06-01 20:38 - 2014-06-01 20:38 - 00005418 _____ () C:\Users\Michael\Downloads\Chris Pirillo Active Patron-only Bonuses.ods
2014-06-01 15:07 - 2014-06-01 15:07 - 04462440 _____ (AVG Technologies) C:\Users\Michael\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe
2014-06-01 06:20 - 2014-05-23 01:32 - 00000000 ____D () C:\Users\Michael\Downloads\Gravity (2013) [1080p]
2014-06-01 06:20 - 2014-05-23 01:28 - 00000000 ____D () C:\Users\Michael\Downloads\The Wolverine (2013) [1080p]
2014-06-01 06:20 - 2014-05-23 01:24 - 00000000 ____D () C:\Users\Michael\Downloads\[ExtremlymTorrents.Me] JLA Adventures Trapped In Time 2014 720p XviD XTRTeam
2014-05-30 03:37 - 2014-05-07 04:57 - 00000000 ____D () C:\Users\Michael\AppData\Local\Apple
2014-05-30 03:36 - 2014-05-07 05:01 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Apple Computer
2014-05-30 03:24 - 2014-05-07 05:01 - 00000000 ____D () C:\Users\Michael\AppData\Local\Apple Computer
2014-05-30 03:20 - 2014-05-30 03:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-05-30 03:20 - 2014-05-16 12:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\uTorrent
2014-05-30 03:19 - 2014-05-07 04:57 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-30 02:55 - 2014-05-30 02:55 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-30 02:55 - 2014-05-30 02:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-30 02:55 - 2014-05-30 02:54 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-30 02:55 - 2014-05-30 02:54 - 00000000 ____D () C:\Program Files\iTunes
2014-05-30 02:55 - 2014-05-30 02:54 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-30 02:54 - 2014-05-30 02:54 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 08:40 - 2014-05-29 00:22 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\DivX
2014-05-29 07:28 - 2014-05-29 07:28 - 00000900 _____ () C:\Users\Michael\Downloads\[kickass.to]movie.magic.screenwriter.6.crack.only.torrent
2014-05-29 07:16 - 2014-05-29 07:16 - 00033818 _____ () C:\Users\Michael\Downloads\Movie Magic Screenwriter.torrent
2014-05-29 06:52 - 2014-05-29 06:52 - 00000000 ____D () C:\Users\Michael\Documents\Scripts
2014-05-29 00:22 - 2014-05-29 00:22 - 00001632 _____ () C:\Users\Michael\Desktop\DivX Movies.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00001143 _____ () C:\Users\Public\Desktop\DivX Converter.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00001078 _____ () C:\Users\Public\Desktop\DivX Player.lnk
2014-05-29 00:22 - 2014-05-29 00:22 - 00000000 ____D () C:\Program Files\DivX
2014-05-29 00:22 - 2014-05-29 00:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-05-29 00:22 - 2014-05-29 00:21 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-05-29 00:22 - 2014-05-29 00:20 - 00000000 ____D () C:\ProgramData\DivX
2014-05-29 00:20 - 2014-05-29 00:20 - 01001280 _____ (DivX, LLC) C:\Users\Michael\Downloads\DivXInstaller.exe
2014-05-28 05:34 - 2014-05-19 10:40 - 00000000 ____D () C:\Users\Michael\Tracing
2014-05-27 07:50 - 2014-05-06 02:45 - 00000000 ____D () C:\ProgramData\BitRaider
2014-05-26 22:43 - 2014-05-19 10:37 - 00000000 ____D () C:\Users\Michael\AppData\Local\Windows Live
2014-05-24 23:28 - 2014-05-05 23:55 - 00000000 ____D () C:\Users\Michael\AppData\Local\Packages
2014-05-24 22:49 - 2014-05-24 22:49 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\OpenOffice
2014-05-24 02:15 - 2014-05-24 02:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-24 02:15 - 2014-05-06 01:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dawngate
2014-05-24 02:15 - 2014-05-06 00:23 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-05-24 01:19 - 2014-05-24 01:19 - 00000214 _____ () C:\Users\Michael\Documents\Menu Settings.xml
2014-05-24 01:19 - 2014-05-24 01:19 - 00000000 ____D () C:\ProgramData\ClassicShell
2014-05-23 23:39 - 2014-05-23 23:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2014-05-23 23:39 - 2014-05-23 23:39 - 00000000 ____D () C:\Program Files\Classic Shell
2014-05-23 23:37 - 2014-05-23 23:37 - 06791360 _____ (IvoSoft) C:\Users\Michael\Downloads\ClassicShellSetup_4_1_0.exe
2014-05-23 13:59 - 2014-05-06 02:31 - 00000000 ____D () C:\Users\Michael\Documents\Comics
2014-05-23 13:35 - 2014-05-23 13:29 - 71062364 _____ () C:\Users\Michael\Downloads\com_182.rar
2014-05-23 12:26 - 2014-05-23 12:22 - 54544448 _____ () C:\Users\Michael\Downloads\com_144.rar
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\WinRAR
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-23 12:20 - 2014-05-23 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-23 12:20 - 2014-05-23 12:19 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-05-23 12:19 - 2014-05-23 12:19 - 01769680 _____ () C:\Users\Michael\Downloads\wrar501.exe
2014-05-23 12:16 - 2014-05-23 12:06 - 17656554 _____ () C:\Users\Michael\Downloads\com_071.rar
2014-05-23 05:43 - 2014-05-23 05:42 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\IObit
2014-05-23 05:42 - 2014-05-23 05:42 - 02201632 _____ (IObit ) C:\Users\Michael\Downloads\rpg-setup.exe
2014-05-23 05:42 - 2014-05-23 05:42 - 00001333 _____ () C:\Users\Public\Desktop\Random Password Generator.lnk
2014-05-23 05:42 - 2014-05-23 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Random Password Generator
2014-05-23 05:42 - 2014-05-23 05:42 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-05-23 01:31 - 2014-05-23 01:31 - 00013550 _____ () C:\Users\Michael\Downloads\[kickass.to]gravity.2013.1080p.brrip.x264.yify.torrent
2014-05-23 01:27 - 2014-05-23 01:27 - 00021631 _____ () C:\Users\Michael\Downloads\[kickassto.come.in]the.wolverine.2013.extended.1080p.brrip.x264.yify.torrent
2014-05-23 01:23 - 2014-05-23 01:23 - 01673296 _____ (BitTorrent Inc.) C:\Users\Michael\Downloads\uTorrent.exe
2014-05-23 01:22 - 2014-05-23 01:22 - 00018971 _____ () C:\Users\Michael\Downloads\[kickass.to]jla.adventures.trapped.in.time.2014.720p.xvid.xtrteam.torrent
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\com.vudu.air.Downloader
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-05-21 11:53 - 2014-05-21 11:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-21 11:52 - 2014-05-21 11:52 - 00000000 ____D () C:\Users\Michael\AppData\Local\Adobe
2014-05-21 11:52 - 2014-05-21 11:52 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-21 11:52 - 2014-05-05 23:55 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Adobe
2014-05-21 11:51 - 2014-05-21 11:51 - 03402240 _____ () C:\Users\Michael\Downloads\VUDUToGo.exe
2014-05-20 12:35 - 2014-05-05 23:55 - 00000000 ____D () C:\Users\Michael\AppData\Local\VirtualStore
2014-05-20 03:29 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-05-20 01:22 - 2014-05-20 01:22 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-05-19 10:40 - 2014-05-19 10:40 - 00001390 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-05-19 10:40 - 2014-05-19 10:40 - 00001321 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-19 10:40 - 2014-05-19 10:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-19 10:40 - 2014-05-19 10:40 - 00000000 ____D () C:\WINDOWS\en
2014-05-19 10:39 - 2014-05-19 10:39 - 00002502 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-05-19 10:39 - 2014-05-19 10:39 - 00001474 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files\Windows Live
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-19 10:39 - 2014-05-19 10:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-19 10:39 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-05-19 10:38 - 2014-05-19 10:38 - 00003098 _____ () C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-549759564-3620167320-2048777180-1001
2014-05-19 10:38 - 2014-05-19 10:38 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files\MSBuild
2014-05-19 10:36 - 2014-05-19 10:36 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-05-19 10:35 - 2014-05-19 10:35 - 06342103 _____ () C:\Users\Michael\Downloads\FireMarcSchroeder.themepack
2014-05-19 10:33 - 2014-05-19 10:33 - 01239752 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\wlsetup-web.exe
2014-05-19 10:27 - 2014-05-19 10:27 - 00770048 _____ () C:\Users\Michael\Downloads\image.jpeg
2014-05-19 09:58 - 2014-05-19 09:58 - 00962450 _____ () C:\Users\Michael\Downloads\Sketch 2014-05-19 13_48_44.psd
2014-05-19 09:24 - 2014-05-05 23:55 - 00000000 ___RD () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 09:24 - 2014-05-05 23:55 - 00000000 ___RD () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 09:21 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-19 09:21 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-05-19 09:21 - 2013-08-22 09:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-05-19 06:58 - 2014-05-19 06:53 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-19 06:56 - 2014-05-19 06:53 - 00000000 ____D () C:\ProgramData\AVG
2014-05-19 06:54 - 2014-05-19 06:54 - 00002241 _____ () C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00002227 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00002215 _____ () C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2014-05-19 06:54 - 2014-05-19 06:54 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\AVG
2014-05-19 06:54 - 2014-05-19 06:54 - 00000000 ____D () C:\Users\Michael\AppData\Local\AVG
2014-05-19 06:54 - 2014-05-19 04:54 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-05-19 06:52 - 2014-05-19 06:51 - 70431144 _____ (AVG) C:\Users\Michael\Downloads\avg_tuh_stf_all_2014_423_24c4.exe
2014-05-19 06:46 - 2014-05-19 06:46 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-05-19 06:46 - 2014-05-19 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-05-19 06:46 - 2012-07-26 04:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-05-19 06:42 - 2014-05-19 06:42 - 04485528 _____ (AVG Technologies) C:\Users\Michael\Downloads\avg_free_stb_all_2014_4577_cnet.exe
2014-05-19 06:37 - 2014-05-19 06:37 - 00001088 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-05-19 06:37 - 2014-05-08 23:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-05-19 06:37 - 2014-05-08 23:14 - 00000000 ____D () C:\ProgramData\Avira
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-19 06:30 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-19 06:29 - 2014-05-09 09:34 - 00000000 ____D () C:\Users\Michael\Downloads\KSP_demo_win
2014-05-19 06:29 - 2014-05-06 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CBR Reader
2014-05-19 06:29 - 2014-05-06 02:38 - 00000000 ____D () C:\Program Files (x86)\CBR Reader
2014-05-19 06:29 - 2014-05-06 00:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-19 06:29 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Macromed
2014-05-19 06:29 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-05-19 06:29 - 2013-08-22 09:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-05-19 06:29 - 2013-08-22 09:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-05-19 06:28 - 2014-05-19 03:16 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Wise Registry Cleaner
2014-05-19 06:28 - 2014-05-18 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
2014-05-19 06:28 - 2014-05-18 01:54 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-19 06:28 - 2014-05-17 20:50 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\solidloader
2014-05-19 06:28 - 2014-05-17 20:50 - 00000000 ____D () C:\ProgramData\Optimizer
2014-05-19 06:22 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\registration
2014-05-19 06:21 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-05-19 06:21 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-05-19 06:20 - 2014-05-14 00:43 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-05-19 06:20 - 2014-05-14 00:43 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-05-19 06:20 - 2014-05-11 22:28 - 00000000 ____D () C:\Program Files\Smith Micro
2014-05-19 06:20 - 2014-05-11 22:28 - 00000000 ____D () C:\Program Files (x86)\Smith Micro
2014-05-19 06:20 - 2014-05-09 12:05 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-19 06:20 - 2014-05-09 00:52 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-05-19 06:20 - 2014-05-07 20:18 - 00000000 ____D () C:\Program Files\My Dell
2014-05-19 06:20 - 2014-05-06 13:52 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-05-19 06:20 - 2014-05-06 00:22 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-05-19 06:20 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-05-19 06:20 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-05-19 06:20 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows NT
2014-05-19 06:19 - 2014-05-07 17:44 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-05-19 06:19 - 2014-05-07 04:57 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-19 05:15 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-05-19 05:02 - 2014-05-19 04:52 - 00000000 ____D () C:\Users\Michael\AppData\Local\Avg2014
2014-05-19 04:55 - 2014-05-19 04:55 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\AVG2014
2014-05-19 04:55 - 2014-05-19 04:54 - 00000000 ____D () C:\ProgramData\AVG2014
2014-05-19 04:54 - 2014-05-19 04:54 - 00000000 ___HD () C:\$AVG
2014-05-19 04:54 - 2014-05-19 04:54 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\TuneUp Software
2014-05-19 04:52 - 2014-05-19 04:52 - 00000000 ____D () C:\Users\Michael\AppData\Local\MFAData
2014-05-19 04:24 - 2014-05-19 04:24 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\LavasoftStatistics
2014-05-19 03:47 - 2014-05-19 03:47 - 00000000 ____D () C:\ProgramData\BitDefender
2014-05-19 03:36 - 2014-05-19 03:36 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-05-19 03:16 - 2014-05-19 03:16 - 00000000 ____D () C:\Program Files (x86)\Wise
2014-05-19 02:41 - 2014-05-19 02:41 - 00000000 ____D () C:\Users\Michael\Documents\ProcAlyzer Dumps
2014-05-18 23:46 - 2014-05-18 23:44 - 00000000 ___HD () C:\$WINDOWS.~BT
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 ____D () C:\sh4ldr
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-18 22:36 - 2014-05-18 22:36 - 00000000 _____ () C:\autoexec.bat
2014-05-18 21:01 - 2014-05-18 21:01 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-05-18 20:53 - 2014-05-18 20:53 - 00000000 ____D () C:\Program Files\Reason
2014-05-18 14:48 - 2014-05-18 14:48 - 00000000 ____D () C:\ProgramData\panda_url_filtering
2014-05-18 14:48 - 2014-05-18 14:48 - 00000000 ____D () C:\ProgramData\Panda Security URL Filtering
2014-05-18 14:47 - 2014-05-18 14:47 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Panda Security
2014-05-18 14:47 - 2014-05-18 14:45 - 00000000 ____D () C:\ProgramData\Panda Security
2014-05-18 10:13 - 2014-05-18 10:13 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\SUPERAntiSpyware.com
2014-05-18 10:12 - 2014-05-18 10:12 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-18 01:55 - 2014-05-18 01:55 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-05-17 20:58 - 2014-05-17 20:58 - 00000000 ____D () C:\Users\Michael\AppData\Local\WMTools Downloaded Files
2014-05-17 20:35 - 2014-05-17 20:35 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2014-05-17 19:24 - 2014-05-17 19:22 - 184095722 _____ () C:\Users\Michael\Downloads\Nikki.zip
2014-05-17 14:42 - 2014-05-17 14:41 - 127745550 _____ () C:\Users\Michael\Downloads\DoctorWhoVol1_Fugitive.mobi
2014-05-17 14:19 - 2014-05-17 14:19 - 00000290 _____ () C:\Users\Michael\Downloads\admhelper
2014-05-16 12:24 - 2014-05-16 12:23 - 23108194 _____ () C:\Users\Michael\Downloads\Alan_Moores_Writing_for_Comics_231.cbr
2014-05-15 23:01 - 2014-05-15 22:55 - 511477686 _____ () C:\Users\Michael\Downloads\Epic+History-+House+Baratheon-HD.mp4
2014-05-15 06:33 - 2014-05-06 06:22 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-15 06:32 - 2014-05-06 06:22 - 93223848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-14 09:17 - 2012-07-26 04:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2014-05-14 06:06 - 2014-05-07 05:50 - 00000000 ____D () C:\Users\Michael\AppData\Local\PackageStaging
2014-05-14 00:43 - 2014-05-14 00:43 - 13084896 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\Silverlight_x64.exe
2014-05-14 00:43 - 2014-05-14 00:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-13 18:13 - 2014-05-13 18:12 - 71402358 _____ () C:\Users\Michael\Downloads\Space Oddity.mp4
2014-05-13 14:20 - 2014-05-13 14:20 - 00235800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgldx64.sys
2014-05-13 14:06 - 2014-05-13 14:06 - 00323352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgloga.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00191768 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsha.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00152344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgdiska.sys
2014-05-13 14:05 - 2014-05-13 14:05 - 00130328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2014-05-13 14:04 - 2014-05-13 14:04 - 00236312 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2014-05-13 14:04 - 2014-05-13 14:04 - 00031512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgrkx64.sys

Some content of TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\{DDAB2B55-285A-4AD6-9284-1191CC1E5AE7}.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-06 04:09

==================== End Of Log ============================
Deaderpool
Active Member
 
Posts: 2
Joined: June 11th, 2014, 1:54 pm
Advertisement
Register to Remove

Re: Need an expert second opinion.

Unread postby nunped » June 14th, 2014, 9:22 am

Hello Deaderpool, and welcome to the forum.

My name is nunped and I'll be helping you with any malware problems.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Here are some guidelines for the cleaning process to run as easy as possible.

  1. Please read this topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.
  2. The instructions being given are for YOUR computer and system only! Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  3. You must have Administrator rights permissions for this computer.
  4. DO NOT run any other fix or removal tools unless instructed to do so!
  5. DO NOT install any other software (or hardware) during the cleaning process. This adds more items to be researched.
  6. Only post your problem at one help site. Applying fixes from multiple help sites can cause problems.
  7. Only reply to this thread. Do not start another thread.
  8. The absence of symptoms does not imply the absence of malware. Please continue responding until I give you the "All Clean".
  9. No Reply Within 3 Days will result in your topic being closed!


Read through these instructions with your full attention.
Please ask first if you have any doubts.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Need an expert second opinion.

Unread postby nunped » June 14th, 2014, 9:30 am

Hi Deaderpool,

Not much showing in your log. Can you post the addition.txt file generated when you ran FRST?

Also, run this next scan:
CKScanner
Please download CKScanner ... Save it to your desktop.
This program should only be run once!
Make sure that CKScanner.exe is on the your desktop before running the application!

  1. Right-click on the CKScanner.exe icon and select "Run as Administrator", then click the Search For Files button.
  2. When the scan is finished (the cursor hourglass disappears) click the Save List To File button.
    A text file will be created on your desktop named "ckfiles.txt"
  3. Click OK at the file saved message box. Double-click on the ckfiles.txt icon on your desktop.
  4. Please copy/paste the contents of ckfiles.txt in your next reply.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Need an expert second opinion.

Unread postby Deaderpool » June 14th, 2014, 11:36 am

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\program files (x86)\steam\steamapps\common\dont_starve\data\anim\nightmare_crack_base.zip
c:\program files (x86)\steam\steamapps\common\dont_starve\data\anim\nightmare_crack_ruins.zip
c:\program files (x86)\steam\steamapps\common\dont_starve\data\anim\nightmare_crack_ruins_fx.zip
c:\program files (x86)\steam\steamapps\common\dont_starve\data\anim\nightmare_crack_upper.zip
c:\program files (x86)\steam\steamapps\common\dont_starve\data\anim\nightmare_crack_upper_fx.zip
c:\program files (x86)\steam\steamapps\common\dont_starve\data\levels\textures\noise_cracked.tex
c:\program files (x86)\steam\steamapps\common\dont_starve\data\scripts\components\wisecracker.lua
c:\program files (x86)\steam\steamapps\common\dont_starve\mods\screecher\levels\textures\noise_cracked.tex
c:\users\michael\downloads\[kickass.to]movie.magic.screenwriter.6.crack.only.torrent
c:\users\michael\onedrive\documents\cracked.odt
c:\users\michael\onedrive\documents\dw-have-a-cracking-ny.pdf
c:\users\michael\onedrive\favorites\info\7 common foods that can actually get you high cracked.com.url
c:\users\michael\onedrive\favorites\psp, 360 and games\crackdown game guide - features at gamespot.url
scanner sequence 3.DI.11.KEAPGZ
----- EOF -----
Deaderpool
Active Member
 
Posts: 2
Joined: June 11th, 2014, 1:54 pm

Re: Need an expert second opinion.

Unread postby NonSuch » June 14th, 2014, 2:12 pm

It is the policy of this site that our volunteers do not assist with computers on which pirated, counterfeit, and/or cracked software is installed. Therefore, this topic will be closed.

This topic is now closed.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 629 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware