Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-08-2015 Ran by Anthony Kidd (administrator) on PIEDMONT-00BMF6 (10-08-2015 19:57:12) Running from F:\Documents and Settings\Anthony Kidd\Desktop Loaded Profiles: Anthony Kidd & Administrator (Available Profiles: Anthony Kidd & Administrator) Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States) Internet Explorer Version 6 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) F:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (AVAST Software) F:\Program Files\AVAST Software\Avast\AvastUI.exe (Safer-Networking Ltd.) F:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Creative Technology Ltd) F:\WINDOWS\system32\CTSVCCDA.EXE () F:\Program Files\RegServe\RSListener.exe (Sysinternals - www.sysinternals.com) F:\Documents and Settings\Anthony Kidd\Desktop\procexp.exe (Piriform Ltd) F:\Program Files\CCleaner\CCleaner.exe (Microsoft Corporation) F:\WINDOWS\system32\wbem\unsecapp.exe (Mozilla Corporation) F:\Program Files\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [EKIJ5000StatusMonitor] => F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EKIJ5000MUI.exe [1634304 2010-02-12] (Eastman Kodak Company) HKLM\...\Run: [DWQueuedReporting] => F:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [39264 2007-03-13] (Microsoft Corporation) HKLM\...\Run: [DivXUpdate] => F:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM\...\Run: [AvastUI.exe] => F:\Program Files\AVAST Software\Avast\AvastUI.exe [6127840 2015-07-26] (AVAST Software) HKLM\...\Run: [Conime] => F:\WINDOWS\system32\conime.exe [27648 2008-04-14] (Microsoft Corporation) HKLM\...\Run: [SDTray] => F:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM\...\Run: [SchedulingAgent] => mstinit.exe /firstlogon HKLM\...\Run: [RSListener] => F:\Program Files\RegServe\RSListener.exe [164288 2013-02-19] () Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X] HKLM\...\Policies\Explorer: [MemCheckBoxInRunDlg] 1 HKU\S-1-5-21-220523388-1060284298-839522115-1003\...\Run: [Process Explorer] => F:\DOCUMENTS AND SETTINGS\ANTHONY KIDD\DESKTOP\PROCEXP.EXE [2925760 2014-07-31] (Sysinternals - www.sysinternals.com) HKU\S-1-5-21-220523388-1060284298-839522115-1003\...\Run: [Spybot-S&D Cleaning] => F:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.) HKU\S-1-5-21-220523388-1060284298-839522115-1003\...\Run: [CCleaner Monitoring] => F:\Program Files\CCleaner\CCleaner.exe [6453528 2015-07-17] (Piriform Ltd) HKU\S-1-5-21-220523388-1060284298-839522115-500\...\Run: [CCleaner Monitoring] => F:\Program Files\CCleaner\CCleaner.exe [6453528 2015-07-17] (Piriform Ltd) HKU\S-1-5-21-220523388-1060284298-839522115-500\...\RunOnce: [TSClientMSIUninstaller] => cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" HKU\S-1-5-21-220523388-1060284298-839522115-500\...\RunOnce: [TSClientAXDisabler] => F:\WINDOWS\Installer\TSClientMsiTrans\tscdsbl.bat [2247 2008-01-18] () HKU\S-1-5-21-220523388-1060284298-839522115-500\...\RunOnce: [Report] => F:\AdwCleaner\AdwCleaner[S22].txt [1190 2015-07-31] () HKU\S-1-5-18\...\RunOnce: [tscuninstall] => F:\WINDOWS\system32\tscupgrd.exe [44544 2004-08-03] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => F:\Program Files\AVAST Software\Avast\ashShell.dll [2015-07-26] (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => F:\Program Files\Acronis\TrueImageHome\tishell.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => F:\Program Files\Acronis\TrueImageHome\tishell.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => F:\Program Files\Acronis\TrueImageHome\tishell.dll [2013-10-01] () ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => No File ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => No File ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => No File GroupPolicyScripts: Group Policy detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-220523388-1060284298-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKU\S-1-5-21-220523388-1060284298-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mozilla.com/ HKU\S-1-5-21-220523388-1060284298-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01 HKU\S-1-5-21-220523388-1060284298-839522115-1003\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.microsoft.com/isapi/redir.dll?Prd=ie&Pver=5.0&Ar=ie5update&O1=b1 HKU\S-1-5-21-220523388-1060284298-839522115-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp URLSearchHook: HKU\S-1-5-21-220523388-1060284298-839522115-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - F:\WINDOWS\System32\shdocvw.dll (Microsoft Corporation) URLSearchHook: [S-1-5-21-220523388-1060284298-839522115-500] ATTENTION => Default URLSearchHook is missing SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-220523388-1060284298-839522115-1003 -> {08CC12A4-D28C-41A1-BF8F-3F713AC2BEDE} URL = https://www.bing.com/search?q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-220523388-1060284298-839522115-1003 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\S-1-5-21-220523388-1060284298-839522115-1003 -> {a0892e19-6051-4ae6-9a5f-91542a166b2b} URL = SearchScopes: HKU\S-1-5-21-220523388-1060284298-839522115-1003 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> F:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-26] (AVAST Software) DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - F:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{075ADC0F-42AF-438A-BE51-8A81B3A6BB27}: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF ProfilePath: F:\Documents and Settings\Anthony Kidd\Application Data\Mozilla\Firefox\Profiles\w70nkvfb.default-1437921319687 FF Homepage: about:home FF Plugin: @microsoft.com/WPF,version=3.5 -> F:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> F:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> F:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.1.5 -> F:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.0 -> F:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.1 -> F:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - F:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - F:\Program Files\AVAST Software\Avast\WebRep\FF [2015-07-26] Chrome: ======= CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - F:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-07-26] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - F:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-26] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 !SASCORE; F:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-22] (SUPERAntiSpyware.com) S4 AcrSch2Svc; F:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [777016 2013-07-18] (Acronis) S4 afcdpsrv; F:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3873784 2014-07-28] (Acronis) R2 avast! Antivirus; F:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-26] (AVAST Software) R2 Creative Service for CDROM Access; F:\WINDOWS\system32\CTsvcCDA.exe [44032 1999-12-13] (Creative Technology Ltd) [File not signed] S4 MBAMService; F:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S4 SDScannerService; F:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) S4 SDUpdateService; F:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) S4 SDWSCService; F:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S4 SpyHunter 4 Service; F:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771968 2015-07-30] (Enigma Software Group USA, LLC.) S4 syncagentsrv; F:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7142320 2014-02-04] (Acronis) S2 WMPNetworkSvc; F:\Program Files\Windows Media Player\WMPNetwk.exe [913408 2006-10-18] (Microsoft Corporation) [File not signed] S4 BsBackup; f:\program files\bullguard ltd\bullguard\BsBackup.dll [X] S4 BsCache; f:\program files\bullguard ltd\bullguard\BsCache.dll [X] S4 BsFileScan; f:\program files\bullguard ltd\bullguard\BsFileScan.dll [X] S4 BsFire; F:\Program Files\BullGuard Ltd\BullGuard\BsFire.dll [X] S4 BsMailProxy; f:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [X] S2 BsMain; F:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [X] S2 PEVSystemStart; "F:\ComboFix\pev.3XE" EXEC /i "F:\ComboFix\HIDEC.3XE" "F:\ComboFix\SWREG.3XE" ACL "HKEY_LOCAL_MACHINE\System\CurrentControlSet\Enum\Root\LEGACY_Beep" /RESET /Q S2 WmdmPmSN; C:\WINDOWS\system32\mspmsnsv.dll [X] S2 WmdmPmSp; F:\WINDOWS\System32\mspmspsv.dll [X] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; F:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-07-26] (AVAST Software) R2 aswMonFlt; F:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-07-26] (AVAST Software) R1 aswRdr; F:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-07-26] (AVAST Software) R0 aswRvrt; F:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-07-26] (AVAST Software) R1 aswSnx; F:\WINDOWS\system32\drivers\aswSnx.sys [788784 2015-07-26] (AVAST Software) R1 aswSP; F:\WINDOWS\system32\drivers\aswSP.sys [433264 2015-07-26] (AVAST Software) R3 aswStmXP; F:\WINDOWS\system32\drivers\aswStmXP.sys [161472 2015-07-26] (AVAST Software) S3 aswTap; F:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-08-01] (The OpenVPN Project) S3 aswTdi; F:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-07-26] (AVAST Software) R0 aswVmm; F:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-07-26] (AVAST Software) R3 CTUSFSYN; F:\WINDOWS\System32\drivers\ctusfsyn.sys [162176 2006-08-07] (Creative Technology Ltd.) S3 dfg; F:\WINDOWS\system32\drivers\dfg.sys [23552 2014-03-25] (defrag Development Team) [File not signed] R1 epp32; F:\EEK\bin\epp32.sys [112408 2015-07-10] (Emsisoft GmbH) S3 EsgScanner; F:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2015-07-30] () S3 gameenum; F:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation) S3 gfiark; F:\WINDOWS\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security) S3 gfiutil; F:\WINDOWS\System32\drivers\gfiutil.sys [24040 2013-09-04] (ThreatTrack Security) S3 hitmanpro37; F:\WINDOWS\system32\drivers\hitmanpro37.sys [35992 2015-07-25] () R3 HTTP; F:\WINDOWS\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation) [File not signed] S3 mbamchameleon; F:\WINDOWS\system32\drivers\mbamchameleon.sys [121560 2015-06-18] (Malwarebytes Corporation) S3 MBAMProtector; F:\WINDOWS\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) R3 P17xfi; F:\WINDOWS\System32\drivers\P17xfi.sys [1174528 2007-11-21] (Creative Technology Ltd.) R3 p17xfilt; F:\WINDOWS\System32\drivers\p17xfilt.sys [1664384 2007-10-10] (Creative) R2 PDFsFilter; F:\WINDOWS\System32\DRIVERS\PDFsFilter.sys [68464 2014-07-13] (Raxco Software, Inc.) R3 rtl8139; F:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation) R1 SASDIFSV; F:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; F:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com) R0 SI3112r; F:\WINDOWS\System32\DRIVERS\SI3112r.sys [110128 2007-02-01] (Silicon Image, Inc) R0 SiFilter; F:\WINDOWS\System32\DRIVERS\SiWinAcc.sys [17328 2007-02-01] (Silicon Image, Inc.) S0 sptd; F:\WINDOWS\System32\Drivers\sptd.sys [691696 2014-08-05] (Duplex Secure Ltd.) S3 tdrpman; F:\WINDOWS\System32\DRIVERS\tdrpman.sys [889888 2014-07-28] (Acronis International GmbH) R0 tib; F:\WINDOWS\System32\DRIVERS\tib.sys [736192 2014-07-28] (Acronis International GmbH) R0 tib_mounter; F:\WINDOWS\System32\DRIVERS\tib_mounter.sys [143648 2014-07-28] (Acronis International GmbH) U3 TrueSight; F:\WINDOWS\system32\drivers\TrueSight.sys [29160 2015-07-24] () R3 VIAudio; F:\WINDOWS\System32\drivers\ac97via.sys [84480 2002-08-28] (VIA Technologies, Inc.) R0 vididr; F:\WINDOWS\System32\DRIVERS\vididr.sys [116000 2014-07-28] (Acronis International GmbH) R0 vidsflt; F:\WINDOWS\System32\DRIVERS\vidsflt.sys [85280 2014-07-28] (Acronis International GmbH) S3 afw; system32\DRIVERS\afw.sys [X] S3 afwcore; system32\DRIVERS\afwcore.sys [X] S1 BdAgent; system32\DRIVERS\BdAgent.sys [X] S1 BdSpy; system32\drivers\BdSpy.sys [X] S3 catchme; \??\F:\DOCUME~1\ANTHON~1\LOCALS~1\Temp\catchme.sys [X] S3 cpuz134; \??\F:\DOCUME~1\ANTHON~1\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X] S1 NovaShieldFilterDriver; system32\DRIVERS\NSKernel.sys [X] S1 NovaShieldTDIDriver; system32\DRIVERS\NSNetmon.sys [X] S3 Revoflt; system32\DRIVERS\revoflt.sys [X] U5 ScsiPort; F:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) S2 supersafer; \??\F:\WINDOWS\system32\drivers\supersafer.sys [X] S3 TuneUpUtilitiesDrv; \??\F:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Three Months Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-10 11:07 - 2015-08-10 11:07 - 00000000 __HDC F:\WINDOWS\$NtUninstallKB2981580$ 2015-08-10 11:06 - 2015-08-10 11:07 - 00006626 _____ F:\WINDOWS\system32\TZLog.log 2015-08-10 10:22 - 2015-08-10 10:22 - 00000792 _____ F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\Windows Media Player.lnk 2015-08-10 10:10 - 2015-08-10 10:14 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\ParetoLogic 2015-08-09 22:11 - 2015-08-09 22:11 - 00102662 _____ F:\Documents and Settings\Anthony Kidd\Desktop\FRST-#2.txt 2015-08-09 18:44 - 2015-08-09 18:44 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Desktop\FRST-OlderVersion 2015-08-08 01:06 - 2015-08-08 01:11 - 00034560 ____C F:\WINDOWS\system32\dllcache\ntio804.sys 2015-08-08 01:06 - 2015-08-08 01:06 - 00053472 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wuauclt.exe 2015-08-08 01:06 - 2015-08-08 01:06 - 00035648 ____C F:\WINDOWS\system32\dllcache\ntio411.sys 2015-08-08 01:06 - 2015-08-08 01:06 - 00035424 ____C F:\WINDOWS\system32\dllcache\ntio412.sys 2015-08-08 01:06 - 2015-08-08 01:06 - 00034560 ____C F:\WINDOWS\system32\dllcache\ntio404.sys 2015-08-08 01:06 - 2015-08-08 01:06 - 00033840 ____C F:\WINDOWS\system32\dllcache\ntio.sys 2015-08-08 01:05 - 2015-08-08 01:06 - 00044544 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tscupgrd.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00786432 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\migrate.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00407552 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mstsc.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00294912 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\dlimport.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00236032 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\migwiz_a.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00221696 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\seo.dll 2015-08-08 01:05 - 2015-08-08 01:05 - 00189440 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smtpadm.dll 2015-08-08 01:05 - 2015-08-08 01:05 - 00123392 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mplay32.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00092224 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\krnl386.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00053840 ____C F:\WINDOWS\system32\dllcache\dosx.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00004639 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mplayer2.exe 2015-08-08 01:05 - 2015-08-08 01:05 - 00003338 ____C F:\WINDOWS\system32\dllcache\redir.exe 2015-08-08 01:04 - 2015-08-08 01:05 - 00174200 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\xenroll.dll 2015-08-08 01:04 - 2015-08-08 01:04 - 01929952 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wuaueng.dll 2015-08-08 01:04 - 2015-08-08 01:04 - 01001472 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmvdmoe2.dll 2015-08-08 01:04 - 2015-08-08 01:04 - 00327896 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wucltui.dll 2015-08-08 01:04 - 2015-08-08 01:04 - 00209624 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wuweb.dll 2015-08-08 01:03 - 2015-08-08 01:04 - 00303616 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmstream.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 01119744 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmsdmoe2.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 00897024 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmspdmoe.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 00485376 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmspdmod.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 00233472 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmpdxm.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 00221184 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmpns.dll 2015-08-08 01:03 - 2015-08-08 01:03 - 00115200 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmsdmoe.dll 2015-08-08 01:02 - 2015-08-08 01:03 - 00098304 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmpband.dll 2015-08-08 01:02 - 2015-08-08 01:02 - 00114688 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmpasf.dll 2015-08-08 01:01 - 2015-08-08 01:02 - 04874240 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmp.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) F:\WINDOWS\system32\dllcache\npdsplay.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00306176 ____C (Schlumberger Technology Corporation) F:\WINDOWS\system32\dllcache\slbcsp.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00246814 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\strmdll.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00188416 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\script_a.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00168448 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmerror.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00155648 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sysmod_a.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00152064 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\shmedia.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00151552 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wmidx.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00024064 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pidgen.dll 2015-08-08 01:01 - 2015-08-08 01:01 - 00010240 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\npwmsdrm.dll 2015-08-08 01:00 - 2015-08-08 01:01 - 00226816 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\npdrmv2.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00655360 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mstscax.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00384512 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mp4sdmod.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00368640 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mpvis.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00310272 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mp43dmod.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00240640 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mpg4dmod.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00192512 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\migism_a.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00108544 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\guitrn_a.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00068768 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mmsystem.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00052224 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mspmsnsv.dll 2015-08-08 01:00 - 2015-08-08 01:00 - 00004126 ____C F:\WINDOWS\system32\dllcache\msdxmlc.dll 2015-08-08 00:59 - 2015-08-08 01:00 - 00498742 ____C F:\WINDOWS\system32\dllcache\dxmasf.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00102912 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\dpcdll.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00096480 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cdm.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00033792 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\custsat.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00010752 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smtpapi.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00010752 _____ (Microsoft Corporation) F:\WINDOWS\system32\smtpapi.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00009728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\rwnh.dll 2015-08-08 00:59 - 2015-08-08 00:59 - 00009728 _____ (Microsoft Corporation) F:\WINDOWS\system32\rwnh.dll 2015-08-07 10:15 - 2015-08-07 14:47 - 00000000 ____D F:\Program Files\Mozilla Firefox 2015-08-07 08:09 - 2015-08-07 08:09 - 00000000 ____D F:\Documents and Settings\Default User\Application Data\AVAST Software 2015-08-06 22:20 - 2015-08-10 13:28 - 00000159 _____ F:\WINDOWS\wiadebug.log 2015-08-06 22:20 - 2015-08-10 13:28 - 00000049 _____ F:\WINDOWS\wiaservc.log 2015-08-06 22:20 - 2015-08-06 22:20 - 00000000 ____N F:\WINDOWS\Sti_Trace.log 2015-08-06 22:19 - 2015-08-10 17:46 - 00031796 _____ F:\WINDOWS\SchedLgU.Txt 2015-08-06 21:29 - 2015-08-06 21:29 - 00000124 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Control Panel.lnk 2015-08-06 21:08 - 2015-08-10 19:30 - 00171871 _____ F:\WINDOWS\WindowsUpdate.log 2015-08-06 19:17 - 2015-08-06 19:17 - 00003833 _____ F:\Documents and Settings\Anthony Kidd\Desktop\HiJackThis#2 2015-08-06 18:25 - 2015-08-06 18:25 - 00024424 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Farbar Run.txt 2015-08-06 18:20 - 2015-08-06 18:21 - 00024424 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Addition.txt 2015-08-06 18:18 - 2015-08-10 19:58 - 00017620 _____ F:\Documents and Settings\Anthony Kidd\Desktop\FRST.txt 2015-08-06 13:06 - 2015-08-04 19:51 - 05902848 _____ (ShamurShamur) F:\Documents and Settings\Anthony Kidd\Desktop\xbootvs1.0beta14.exe 2015-08-06 13:05 - 2015-08-09 18:44 - 01674752 _____ (Farbar) F:\Documents and Settings\Anthony Kidd\Desktop\FRST.exe 2015-08-06 12:56 - 2015-08-10 19:57 - 00000000 ____D F:\FRST 2015-08-06 10:02 - 2006-12-29 00:31 - 00019569 _____ F:\WINDOWS\005009_.tmp 2015-08-05 18:39 - 2015-08-06 11:24 - 00000792 _____ F:\Documents and Settings\LocalService\Start Menu\Programs\Windows Media Player.lnk 2015-08-05 13:33 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\msxml6.dll 2015-08-05 13:33 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\msxml6r.dll 2015-08-05 13:25 - 2006-12-29 00:31 - 00019569 _____ F:\WINDOWS\006112_.tmp 2015-08-05 12:58 - 2008-04-14 05:42 - 00380416 ____N (Microsoft Corporation) F:\WINDOWS\system32\irprops.cpl 2015-08-05 12:58 - 2008-04-14 05:42 - 00162304 ____N (Microsoft Corporation) F:\WINDOWS\system32\wuaucpl.cpl 2015-08-05 12:53 - 2004-07-17 11:40 - 00019528 _____ F:\WINDOWS\002653_.tmp 2015-08-05 12:50 - 2015-08-06 10:01 - 00000000 __HDC F:\WINDOWS\$NtServicePackUninstall$ 2015-08-05 12:14 - 2015-08-05 12:14 - 00000759 _____ F:\Documents and Settings\Anthony Kidd\Desktop\DllSuite.lnk 2015-08-05 12:14 - 2015-08-05 12:14 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\Dll Suite 2014 2015-08-05 12:13 - 2015-08-05 12:13 - 00000000 ____D F:\Program Files\Dll-Files.com Fixer 2015-08-05 12:13 - 2015-08-05 12:13 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\Dll-Files Fixer 2015-08-05 11:25 - 2015-08-06 22:24 - 00011962 _____ F:\WINDOWS\system32\wpa.bak 2015-08-05 10:43 - 2008-04-14 05:41 - 00156672 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\winzm.ime 2015-08-05 10:43 - 2008-04-14 05:41 - 00156672 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\winsp.ime 2015-08-05 10:43 - 2008-04-14 05:41 - 00156672 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\winpy.ime 2015-08-05 10:43 - 2008-04-14 05:41 - 00079360 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\winar30.ime 2015-08-05 10:43 - 2008-04-14 05:41 - 00072704 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wingb.ime 2015-08-05 10:43 - 2008-04-14 05:41 - 00065536 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\winime.ime 2015-08-05 10:43 - 2003-03-31 08:00 - 00041600 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\weitekp9.dll 2015-08-05 10:43 - 2003-03-31 08:00 - 00031232 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\weitekp9.sys 2015-08-05 10:42 - 2008-04-14 05:41 - 00571392 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tintlgnt.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00482304 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pintlgnt.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00426041 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\voicepad.dll 2015-08-05 10:42 - 2008-04-14 05:41 - 00086073 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\voicesub.dll 2015-08-05 10:42 - 2008-04-14 05:41 - 00079360 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\phon.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00077824 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\quick.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00076288 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\uniime.dll 2015-08-05 10:42 - 2008-04-14 05:41 - 00065024 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\unicdime.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\romanime.ime 2015-08-05 10:42 - 2008-04-14 05:41 - 00010240 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tmigrate.dll 2015-08-05 10:42 - 2008-04-14 05:40 - 00175104 ____C F:\WINDOWS\system32\dllcache\pintlcsa.dll 2015-08-05 10:42 - 2008-04-14 05:40 - 00067584 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pmigrate.dll 2015-08-05 10:42 - 2008-04-14 05:40 - 00053760 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pintlcsd.dll 2015-08-05 10:42 - 2008-04-14 05:40 - 00015872 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\padrs404.dll 2015-08-05 10:42 - 2008-04-14 05:40 - 00015360 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\padrs804.dll 2015-08-05 10:42 - 2008-04-13 22:13 - 00070144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pintlphr.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00455168 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tintsetp.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00185344 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\thawbrkr.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00143422 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\softkey.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00131584 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pmxviceo.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00101376 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\srusbusd.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00079872 ____C (Ricoh Co., Ltd.) F:\WINDOWS\system32\dllcache\rwia330.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00079872 ____C (Ricoh Co., Ltd.) F:\WINDOWS\system32\dllcache\rwia001.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00073728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\w3ext.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00048256 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\w32.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00044032 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tintlphr.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00038912 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm9aw.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00036927 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\padrs411.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00031744 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smb6w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00031744 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sma3w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00031744 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pagecnt.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00030208 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm87w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00030208 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm81w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00029184 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm8cw.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026624 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm93w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026624 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm92w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm90w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm8dw.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm8aw.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm89w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00025088 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\sm59w.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00021896 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tdipx.sys 2015-08-05 10:42 - 2003-03-31 08:00 - 00020992 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\permchk.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00019464 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tdspx.sys 2015-08-05 10:42 - 2003-03-31 08:00 - 00018944 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\simptcp.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00016896 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\status.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00016384 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\quser.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00015872 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smierrsm.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00014848 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\register.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00014336 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tsprof.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00014336 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\padrs412.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00013192 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\tdasync.sys 2015-08-05 10:42 - 2003-03-31 08:00 - 00011264 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pmxmcro.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00010240 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\snmpstup.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00009728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\query.exe 2015-08-05 10:42 - 2003-03-31 08:00 - 00009216 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wamps51.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\pmxgl.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\w3svapi.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smimsgif.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\smierrsy.dll 2015-08-05 10:42 - 2003-03-31 08:00 - 00004608 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\w3ctrs51.dll 2015-08-05 10:42 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_scripto.dll 2015-08-05 10:42 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_seos.dll 2015-08-05 10:42 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_regtrace.exe 2015-08-05 10:42 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll 2015-08-05 10:42 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00716856 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpcus.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00368696 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpcic.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00315455 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imskf.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00274489 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjputyc.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00102456 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imlang.dll 2015-08-05 10:41 - 2008-04-14 05:39 - 00081976 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpdct.dll 2015-08-05 10:41 - 2004-08-03 22:32 - 00262200 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjputy.exe 2015-08-05 10:41 - 2004-08-03 22:32 - 00233527 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjprw.exe 2015-08-05 10:41 - 2004-08-03 22:32 - 00208952 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpmig.exe 2015-08-05 10:41 - 2004-08-03 22:31 - 00307257 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpdct.exe 2015-08-05 10:41 - 2004-08-03 22:31 - 00196665 ____C F:\WINDOWS\system32\dllcache\imjpinst.exe 2015-08-05 10:41 - 2004-08-03 22:31 - 00155705 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpdsvr.exe 2015-08-05 10:41 - 2003-03-31 08:00 - 01875968 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\msir3jp.lex 2015-08-05 10:41 - 2003-03-31 08:00 - 01158818 ____C F:\WINDOWS\system32\dllcache\korwbrkr.lex 2015-08-05 10:41 - 2003-03-31 08:00 - 00471102 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imskdic.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00229439 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\multibox.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00098304 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\msir3jp.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00092416 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mga.sys 2015-08-05 10:41 - 2003-03-31 08:00 - 00092032 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mga.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00070656 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\korwbrkr.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00059904 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imkrinst.exe 2015-08-05 10:41 - 2003-03-31 08:00 - 00059392 ____C F:\WINDOWS\system32\dllcache\imscinst.exe 2015-08-05 10:41 - 2003-03-31 08:00 - 00057398 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpdadm.exe 2015-08-05 10:41 - 2003-03-31 08:00 - 00053248 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\nextlink.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00045109 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjpuex.exe 2015-08-05 10:41 - 2003-03-31 08:00 - 00026624 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\mdsync.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00022016 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\logscrpt.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00018432 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\jupiw.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00009216 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdnecat.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00009216 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iwrps.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00008704 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\infoctrs.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00007680 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdnecnt.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00007168 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdnec95.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00007168 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\isapips.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdth3.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdth2.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdinpun.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbd101a.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdvntc.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdusa.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdurdu.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdth1.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdth0.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdsyr2.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdsyr1.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdintel.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdintam.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdinmar.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdinkan.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdinhin.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdinguj.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdindev.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdheb.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdfa.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbddiv2.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbddiv1.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbda3.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbda2.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbda1.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005120 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdgeo.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005120 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdarmw.dll 2015-08-05 10:41 - 2003-03-31 08:00 - 00005120 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\kbdarme.dll 2015-08-05 10:41 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll 2015-08-05 10:41 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll 2015-08-05 10:40 - 2008-04-14 05:41 - 00078848 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\dayi.ime 2015-08-05 10:40 - 2008-04-14 05:39 - 13463552 ____C F:\WINDOWS\system32\dllcache\hwxjpn.dll 2015-08-05 10:40 - 2008-04-14 05:39 - 00811064 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjp81k.dll 2015-08-05 10:40 - 2008-04-14 05:39 - 00340023 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imjp81.ime 2015-08-05 10:40 - 2008-04-14 05:39 - 00106496 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imekrcic.dll 2015-08-05 10:40 - 2008-04-14 05:39 - 00094720 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imekr61.ime 2015-08-05 10:40 - 2008-04-14 05:39 - 00086016 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imekrmbx.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 10129408 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\hwxkor.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 10096640 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\hwxcht.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00311359 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imepadsv.exe 2015-08-05 10:40 - 2003-03-31 08:00 - 00134339 ____C F:\WINDOWS\system32\dllcache\imekr.lex 2015-08-05 10:40 - 2003-03-31 08:00 - 00111104 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\fxscfgwz.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00108827 ____C F:\WINDOWS\system32\dllcache\hanja.lex 2015-08-05 10:40 - 2003-03-31 08:00 - 00102463 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imepadsm.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00060928 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iisclex4.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00057856 ____C (SEIKO EPSON CORP.) F:\WINDOWS\system32\dllcache\esuimgd.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00045056 ____C (SEIKO EPSON CORP.) F:\WINDOWS\system32\dllcache\esunid.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00044032 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\imekrmig.exe 2015-08-05 10:40 - 2003-03-31 08:00 - 00036864 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\hanjadic.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00031744 ____C (SEIKO EPSON CORP.) F:\WINDOWS\system32\dllcache\esucmd.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00031744 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\fxsroute.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00025856 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\et4000.sys 2015-08-05 10:40 - 2003-03-31 08:00 - 00019456 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iiscrmap.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00014848 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\flattemp.exe 2015-08-05 10:40 - 2003-03-31 08:00 - 00011264 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\fxssend.exe 2015-08-05 10:40 - 2003-03-31 08:00 - 00007680 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\ftpctrs2.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00006656 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iissync.exe 2015-08-05 10:40 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\ftlx041e.dll 2015-08-05 10:40 - 2003-03-31 08:00 - 00003584 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iismui.dll 2015-08-05 10:39 - 2008-04-14 05:41 - 00078336 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chajei.ime 2015-08-05 10:39 - 2008-04-14 05:41 - 00021504 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cintlgnt.ime 2015-08-05 10:39 - 2008-04-14 05:39 - 00198656 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cintime.dll 2015-08-05 10:39 - 2008-04-14 05:39 - 00173568 ____C F:\WINDOWS\system32\dllcache\chtskf.dll 2015-08-05 10:39 - 2008-04-14 05:39 - 00097792 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chtmbx.dll 2015-08-05 10:39 - 2008-04-14 05:39 - 00056320 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chtskdic.dll 2015-08-05 10:39 - 2004-08-03 22:31 - 00480256 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cintsetp.exe 2015-08-05 10:39 - 2004-08-03 22:31 - 00057399 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cplexe.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 01677824 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chsbrkr.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00838144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chtbrkr.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00056320 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\convlog.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00054528 ____C (Philips Semiconductors GmbH) F:\WINDOWS\system32\dllcache\cap7146.sys 2015-08-05 10:39 - 2003-03-31 08:00 - 00049664 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\adrot.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00045568 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\browscap.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00033792 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\controt.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00029184 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\asptxn.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00020480 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\counters.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00018944 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\cprofile.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00015872 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chgport.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00014336 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chgusr.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00013312 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\chglogon.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00010752 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\c_iscii.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00010240 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\aspperf.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00009728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\change.exe 2015-08-05 10:39 - 2003-03-31 08:00 - 00009216 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\authfilt.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00007168 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\wamregps.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00006656 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\c_is2022.dll 2015-08-05 10:39 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\admxprox.dll 2015-08-05 10:39 - 2001-08-17 22:36 - 00312832 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_aqueue.dll 2015-08-05 10:39 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll 2015-08-05 10:39 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll 2015-08-05 10:38 - 2003-03-31 08:00 - 00169984 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iisui.dll 2015-08-05 10:38 - 2003-03-31 08:00 - 00094720 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\certmap.ocx 2015-08-05 10:38 - 2003-03-31 08:00 - 00014336 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iisreset.exe 2015-08-05 10:38 - 2003-03-31 08:00 - 00007680 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\inetmgr.exe 2015-08-05 10:38 - 2003-03-31 08:00 - 00006144 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\ftpsapi2.dll 2015-08-05 10:38 - 2003-03-31 08:00 - 00005632 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\iisrstap.dll 2015-08-05 10:29 - 2015-08-05 10:29 - 00000749 ___RH F:\WINDOWS\WindowsShell.Manifest 2015-08-05 10:29 - 2015-08-05 10:29 - 00000749 ___RH F:\WINDOWS\system32\wuaucpl.cpl.manifest 2015-08-05 10:29 - 2015-08-05 10:29 - 00000749 ___RH F:\WINDOWS\system32\sapi.cpl.manifest 2015-08-05 10:29 - 2015-08-05 10:29 - 00000749 ___RH F:\WINDOWS\system32\nwc.cpl.manifest 2015-08-05 10:29 - 2015-08-05 10:29 - 00000749 ___RH F:\WINDOWS\system32\ncpa.cpl.manifest 2015-08-05 10:29 - 2015-08-05 10:29 - 00000488 ___RH F:\WINDOWS\system32\logonui.exe.manifest 2015-08-05 10:28 - 2008-04-14 05:42 - 00409088 _____ (Microsoft Corporation) F:\WINDOWS\system32\qmgr.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00239104 _____ (Microsoft Corporation) F:\WINDOWS\system32\srrstr.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00188416 _____ (Microsoft Corporation) F:\WINDOWS\system32\msh261.drv 2015-08-05 10:28 - 2008-04-14 05:42 - 00171008 _____ (Microsoft Corporation) F:\WINDOWS\system32\srsvc.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00069632 _____ (Microsoft Corporation) F:\WINDOWS\system32\msconf.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00067584 _____ (Microsoft Corporation) F:\WINDOWS\system32\srclient.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00045568 _____ (Microsoft Corporation) F:\WINDOWS\system32\safrslv.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00043520 _____ (Microsoft Corporation) F:\WINDOWS\system32\safrcdlg.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00043520 _____ (Microsoft Corporation) F:\WINDOWS\system32\racpldlg.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00032768 _____ (Microsoft Corporation) F:\WINDOWS\system32\mnmsrvc.exe 2015-08-05 10:28 - 2008-04-14 05:42 - 00029696 _____ (Microsoft Corporation) F:\WINDOWS\system32\safrdm.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00028672 _____ (Microsoft Corporation) F:\WINDOWS\system32\nmmkcert.dll 2015-08-05 10:28 - 2008-04-14 05:42 - 00018944 _____ (Microsoft Corporation) F:\WINDOWS\system32\qmgrprxy.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00274432 _____ (Microsoft Corporation) F:\WINDOWS\system32\inetcfg.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00081920 _____ (Microsoft Corporation) F:\WINDOWS\system32\isign32.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00081920 _____ (Microsoft Corporation) F:\WINDOWS\system32\ils.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00073728 _____ (Microsoft Corporation) F:\WINDOWS\system32\icwdial.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00065536 _____ (Microsoft Corporation) F:\WINDOWS\system32\icwphbk.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00034560 _____ (Microsoft Corporation) F:\WINDOWS\system32\mnmdd.dll 2015-08-05 10:28 - 2008-04-14 05:41 - 00032768 _____ (Intel Corporation) F:\WINDOWS\system32\isrdbg32.dll 2015-08-05 10:28 - 2008-04-14 00:06 - 00073472 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\sr.sys 2015-08-05 10:28 - 2008-04-13 21:52 - 00048128 _____ (Microsoft Corporation) F:\WINDOWS\system32\inetres.dll 2015-08-05 10:28 - 2003-03-31 08:00 - 00073728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\icwtutor.exe 2015-08-05 10:28 - 2003-03-31 08:00 - 00061440 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\icwres.dll 2015-08-05 10:28 - 2003-03-31 08:00 - 00040960 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\trialoc.dll 2015-08-05 10:28 - 2003-03-31 08:00 - 00016384 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\isignup.exe 2015-08-05 10:27 - 2008-04-14 05:42 - 00274944 _____ (Microsoft Corporation) F:\WINDOWS\system32\mstask.dll 2015-08-05 10:27 - 2008-04-14 05:42 - 00252928 _____ (Microsoft Corporation) F:\WINDOWS\system32\msoeacct.dll 2015-08-05 10:27 - 2008-04-14 05:42 - 00192512 _____ (Microsoft Corporation) F:\WINDOWS\system32\schedsvc.dll 2015-08-05 10:27 - 2008-04-14 05:42 - 00105984 _____ (Microsoft Corporation) F:\WINDOWS\system32\msoert2.dll 2015-08-05 10:27 - 2008-04-14 05:42 - 00012288 _____ (Microsoft Corporation) F:\WINDOWS\system32\mstinit.exe 2015-08-05 10:27 - 2008-04-14 05:41 - 00691712 _____ (Microsoft Corporation) F:\WINDOWS\system32\inetcomm.dll 2015-08-05 10:26 - 2008-04-14 05:43 - 00139656 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\rdpwd.sys 2015-08-05 10:26 - 2008-04-14 05:43 - 00087176 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdpwsx.dll 2015-08-05 10:26 - 2008-04-14 05:43 - 00021896 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\tdtcp.sys 2015-08-05 10:26 - 2008-04-14 05:43 - 00012040 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\tdpipe.sys 2015-08-05 10:26 - 2008-04-14 05:42 - 01135616 _____ (Microsoft Corporation) F:\WINDOWS\system32\wuaueng.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00956928 _____ (Microsoft Corporation) F:\WINDOWS\system32\msdtctm.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00677888 _____ (Microsoft Corporation) F:\WINDOWS\system32\mstsc.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00538624 _____ (Microsoft Corporation) F:\WINDOWS\system32\spider.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00427008 _____ (Microsoft Corporation) F:\WINDOWS\system32\msdtcprx.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00343040 _____ (Microsoft Corporation) F:\WINDOWS\system32\mspaint.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00295424 _____ (Microsoft Corporation) F:\WINDOWS\system32\termsrv.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00184320 _____ (Microsoft Corporation) F:\WINDOWS\system32\accwiz.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00161792 _____ (Microsoft Corporation) F:\WINDOWS\system32\msdtcuiu.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00147968 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdchost.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00141312 _____ (Microsoft Corporation) F:\WINDOWS\system32\sessmgr.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00131584 _____ (Microsoft Corporation) F:\WINDOWS\system32\sndrec32.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00123392 _____ (Microsoft Corporation) F:\WINDOWS\system32\mplay32.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00111104 _____ (Microsoft Corporation) F:\WINDOWS\system32\wuauclt.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00102912 _____ (Microsoft Corporation) F:\WINDOWS\system32\clipbrd.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00093696 _____ (Microsoft Corporation) F:\WINDOWS\system32\tscfgwmi.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00091648 _____ (Microsoft Corporation) F:\WINDOWS\system32\mtxoci.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00068608 _____ (Microsoft Corporation) F:\WINDOWS\system32\access.cpl 2015-08-05 10:26 - 2008-04-14 05:42 - 00067072 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdshost.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00062976 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdpclip.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00060416 _____ (Microsoft Corporation) F:\WINDOWS\system32\remotepg.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00059392 _____ (Microsoft Corporation) F:\WINDOWS\system32\stclient.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00058880 _____ (Microsoft Corporation) F:\WINDOWS\system32\msdtclog.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00056320 _____ (Microsoft Corporation) F:\WINDOWS\system32\servdeps.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00034304 _____ (Microsoft Corporation) F:\WINDOWS\system32\mtxlegih.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00030720 _____ (Microsoft Corporation) F:\WINDOWS\system32\mtxdm.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00019968 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdpsnd.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00019968 _____ (Microsoft Corporation) F:\WINDOWS\system32\qprocess.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00013824 _____ (Microsoft Corporation) F:\WINDOWS\system32\rdsaddin.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00011776 _____ (Microsoft Corporation) F:\WINDOWS\system32\xolehlp.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00006656 _____ (Microsoft Corporation) F:\WINDOWS\system32\wuauserv.dll 2015-08-05 10:26 - 2008-04-14 05:42 - 00006144 _____ (Microsoft Corporation) F:\WINDOWS\system32\msdtc.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00006144 _____ (Microsoft Corporation) F:\WINDOWS\system32\dcomcnfg.exe 2015-08-05 10:26 - 2008-04-14 05:42 - 00004096 _____ (Microsoft Corporation) F:\WINDOWS\system32\mtxex.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 02061824 _____ (Microsoft Corporation) F:\WINDOWS\system32\mstscax.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 01267200 _____ (Microsoft Corporation) F:\WINDOWS\system32\comsvcs.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00625664 _____ (Microsoft Corporation) F:\WINDOWS\system32\catsrvut.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00539648 _____ (Microsoft Corporation) F:\WINDOWS\system32\comuid.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00498688 _____ (Microsoft Corporation) F:\WINDOWS\system32\clbcatq.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00347136 _____ (Hilgraeve, Inc.) F:\WINDOWS\system32\hypertrm.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00226304 _____ (Microsoft Corporation) F:\WINDOWS\system32\catsrv.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00185344 _____ (Microsoft Corporation) F:\WINDOWS\system32\cmprops.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00167424 _____ (Microsoft Corporation) F:\WINDOWS\system32\comsnap.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00110592 _____ (Microsoft Corporation) F:\WINDOWS\system32\clbcatex.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00097792 _____ (Microsoft Corporation) F:\WINDOWS\system32\comrepl.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00085504 _____ (Microsoft Corporation) F:\WINDOWS\system32\catsrvps.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00060416 _____ (Microsoft Corporation) F:\WINDOWS\system32\colbact.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00058880 _____ (Microsoft Corporation) F:\WINDOWS\system32\licwmi.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00038912 _____ (Microsoft Corporation) F:\WINDOWS\system32\cfgbkend.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00028160 _____ (Microsoft Corporation) F:\WINDOWS\system32\comaddin.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00017408 _____ (Microsoft Corporation) F:\WINDOWS\system32\mmfutil.dll 2015-08-05 10:26 - 2008-04-14 05:41 - 00011264 _____ (Microsoft Corporation) F:\WINDOWS\system32\icaapi.dll 2015-08-05 10:19 - 2008-04-14 00:17 - 00025856 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\usbprint.sys 2015-08-05 10:19 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\dmusic.sys 2015-08-05 10:19 - 2008-04-14 00:15 - 00015104 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\usbscan.sys 2015-08-05 10:19 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\splitter.sys 2015-08-05 10:18 - 2008-04-14 00:10 - 00057600 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\redbook.sys 2015-08-05 10:15 - 2008-04-14 05:42 - 00129536 _____ (Microsoft Corporation) F:\WINDOWS\system32\ksproxy.ax 2015-08-05 10:15 - 2008-04-14 05:41 - 00004096 _____ (Microsoft Corporation) F:\WINDOWS\system32\ksuser.dll 2015-08-05 10:15 - 2004-08-03 22:31 - 00020992 _____ (Realtek Semiconductor Corporation) F:\WINDOWS\system32\Drivers\rtl8139.sys 2015-08-05 10:14 - 2008-04-14 05:43 - 00040840 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\termdd.sys 2015-08-05 10:14 - 2008-04-14 00:02 - 00196224 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\rdpdr.sys 2015-08-05 10:12 - 2008-04-14 05:42 - 00146432 _____ (Microsoft Corporation) F:\WINDOWS\system\winspool.drv 2015-08-05 10:12 - 2008-04-14 05:42 - 00074752 _____ (Microsoft Corporation) F:\WINDOWS\system32\storprop.dll 2015-08-05 10:12 - 2008-04-14 00:24 - 00011264 _____ (Microsoft Corporation) F:\WINDOWS\system32\Drivers\irenum.sys 2015-08-05 10:12 - 2003-03-31 08:00 - 00797189 ____C F:\WINDOWS\system32\dllcache\NT5IIS.CAT 2015-08-05 10:12 - 2003-03-31 08:00 - 00399645 ____C F:\WINDOWS\system32\dllcache\MAPIMIG.CAT 2015-08-05 10:12 - 2003-03-31 08:00 - 00037484 ____C F:\WINDOWS\system32\dllcache\MW770.CAT 2015-08-05 10:12 - 2003-03-31 08:00 - 00024661 ____C (Perle Systems Ltd.) F:\WINDOWS\system32\dllcache\spxcoins.dll 2015-08-05 10:12 - 2003-03-31 08:00 - 00024661 _____ (Perle Systems Ltd.) F:\WINDOWS\system32\spxcoins.dll 2015-08-05 10:12 - 2003-03-31 08:00 - 00013472 ____C F:\WINDOWS\system32\dllcache\HPCRDP.CAT 2015-08-05 10:12 - 2003-03-31 08:00 - 00013312 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\irclass.dll 2015-08-05 10:12 - 2003-03-31 08:00 - 00013312 _____ (Microsoft Corporation) F:\WINDOWS\system32\irclass.dll 2015-08-05 10:12 - 2003-03-31 08:00 - 00008574 ____C F:\WINDOWS\system32\dllcache\IASNT4.CAT 2015-08-05 10:12 - 2003-03-31 08:00 - 00007382 ____C F:\WINDOWS\system32\dllcache\OEMBIOS.CAT 2015-08-04 18:28 - 2015-08-05 10:27 - 00000785 _____ F:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk 2015-08-02 15:05 - 2015-08-02 15:06 - 00004836 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Rkill.txt 2015-08-02 14:54 - 2015-08-02 14:54 - 00000682 _____ F:\Documents and Settings\All Users\Desktop\CCleaner.lnk 2015-08-02 14:54 - 2015-08-02 14:54 - 00000000 ____D F:\Program Files\CCleaner 2015-08-01 17:18 - 2015-08-01 17:18 - 00000724 _____ F:\Documents and Settings\Anthony Kidd\Desktop\RegServe.lnk 2015-08-01 16:50 - 2015-08-02 14:35 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\RegServe 2015-08-01 12:12 - 2013-02-19 07:19 - 00012224 _____ F:\WINDOWS\system32\RSDefrag.exe 2015-08-01 11:51 - 2015-08-10 13:31 - 00000000 ____D F:\Program Files\RegServe 2015-08-01 11:51 - 2015-08-01 12:11 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Start Menu\Programs\RegServe 2015-08-01 11:51 - 2015-08-01 11:51 - 00000758 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Desktop\RegServe.lnk 2015-07-31 23:40 - 2015-08-10 15:00 - 00000588 _____ F:\WINDOWS\Tasks\Auslogics BoostSpeed Scan and Repair.job 2015-07-31 23:40 - 2015-08-10 13:27 - 00000402 _____ F:\WINDOWS\Tasks\Auslogics BoostSpeed Start BoostSpeed оn Anthony Kidd logon.job 2015-07-31 17:57 - 2015-07-31 23:24 - 00000777 _____ F:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk 2015-07-31 17:51 - 2015-07-31 23:24 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware 2015-07-31 17:51 - 2015-06-18 08:41 - 00121560 _____ (Malwarebytes Corporation) F:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-07-31 17:51 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) F:\WINDOWS\system32\Drivers\mbam.sys 2015-07-30 08:55 - 2015-07-30 08:55 - 00000000 _____ F:\autoexec.bat 2015-07-30 08:51 - 2015-07-30 08:51 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\SpyHunter 2015-07-30 08:51 - 2015-07-30 08:51 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\Enigma Software Group 2015-07-30 08:49 - 2015-07-30 08:50 - 00000000 ____D F:\sh4ldr 2015-07-30 08:42 - 2015-07-30 08:42 - 00019984 _____ F:\WINDOWS\system32\Drivers\EsgScanner.sys 2015-07-30 08:41 - 2015-07-30 08:41 - 00000000 ____D F:\Program Files\Enigma Software Group 2015-07-29 21:05 - 2015-07-29 21:06 - 00000000 ____D F:\Program Files\GUMB.tmp 2015-07-29 09:14 - 2015-07-31 18:17 - 00000000 ____D F:\AdwCleaner 2015-07-29 09:09 - 2015-07-29 09:09 - 00000000 ____D F:\Program Files\GUM9.tmp 2015-07-29 09:09 - 2015-07-29 09:09 - 00000000 _____ F:\Program Files\GUTA.tmp 2015-07-28 21:22 - 2015-08-06 18:35 - 00113880 _____ (Malwarebytes Corporation) F:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-07-28 14:17 - 2015-07-28 14:17 - 00091144 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\My Documents\cc_20150728_141749.reg 2015-07-27 22:14 - 2015-08-06 22:57 - 01474832 _____ F:\WINDOWS\system32\Drivers\sfi.dat 2015-07-27 17:11 - 2015-07-28 14:56 - 00000917 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Revo Uninstaller.lnk 2015-07-27 16:04 - 2015-07-27 16:04 - 00000744 _____ F:\Documents and Settings\Anthony Kidd\Desktop\SpeedZooka.lnk 2015-07-27 16:03 - 2015-08-10 17:11 - 00000000 ____D F:\Program Files\SpeedZooka 2015-07-27 16:03 - 2015-07-27 16:04 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\SpeedZooka 2015-07-27 15:52 - 2015-07-27 15:52 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\My Documents\ScreenConnect 2015-07-27 12:42 - 2015-07-27 12:42 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Application Data\AVAST Software 2015-07-27 12:40 - 2015-07-27 12:41 - 00193312 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\My Documents\cc_20150727_124053.reg 2015-07-26 22:05 - 2015-07-26 22:05 - 00001689 _____ F:\Documents and Settings\All Users\Desktop\Avast Free Antivirus.lnk 2015-07-26 22:05 - 2015-07-26 22:05 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\AVAST Software 2015-07-26 22:05 - 2015-07-26 22:05 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\AVAST Software 2015-07-26 22:04 - 2015-08-10 13:39 - 00000376 ____H F:\WINDOWS\Tasks\avast! Emergency Update.job 2015-07-26 22:04 - 2015-07-26 22:03 - 00161472 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswStmXP.sys 2015-07-26 22:04 - 2015-07-26 22:03 - 00057888 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswTdi.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00788784 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswSnx.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00433264 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswSP.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00313472 _____ (AVAST Software) F:\WINDOWS\system32\aswBoot.exe 2015-07-26 22:03 - 2015-07-26 22:03 - 00208664 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswVmm.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00076000 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00055200 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswRdr.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00049776 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-07-26 22:03 - 2015-07-26 22:03 - 00043112 _____ (AVAST Software) F:\WINDOWS\avastSS.scr 2015-07-26 22:03 - 2015-07-26 22:03 - 00024016 _____ (AVAST Software) F:\WINDOWS\system32\Drivers\aswHwid.sys 2015-07-26 22:00 - 2015-07-26 22:00 - 00000000 ____D F:\Program Files\AVAST Software 2015-07-26 21:38 - 2015-07-26 21:38 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\CSIS 2015-07-26 21:30 - 2015-07-26 21:30 - 00000000 ____D F:\Program Files\Microsoft.NET 2015-07-26 18:59 - 2015-07-26 18:59 - 00097145 _____ F:\Documents and Settings\All Users\Application Data\1437951455.bdinstall.bin 2015-07-26 18:57 - 2015-07-26 18:57 - 00037462 _____ F:\Documents and Settings\All Users\Application Data\1437951445.bdinstall.bin 2015-07-26 18:44 - 2015-07-26 18:59 - 00132752 _____ F:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2015-07-26 18:41 - 2015-07-26 18:41 - 00200712 _____ F:\Documents and Settings\All Users\Application Data\1437949210.bdinstall.bin 2015-07-26 18:27 - 2015-07-26 18:27 - 00000000 ____D F:\Documents and Settings\LocalService\Application Data\QuickScan 2015-07-26 18:23 - 2015-07-26 18:23 - 00000000 ____H F:\WINDOWS\system32\Drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2015-07-26 18:23 - 2015-07-26 18:23 - 00000000 ____H F:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2015-07-26 18:22 - 2009-07-14 23:27 - 01461992 _____ (Microsoft Corporation) F:\WINDOWS\system32\WdfCoInstaller01009.dll 2015-07-26 18:20 - 2015-07-26 18:21 - 00022223 _____ F:\Report 2015-07-26 18.20.40.txt 2015-07-26 10:35 - 2015-07-26 10:35 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Desktop\Old Firefox Data 2015-07-26 08:34 - 2015-07-26 08:34 - 00000798 _____ F:\Documents and Settings\Anthony Kidd\Desktop\MaxUtilities.lnk 2015-07-26 08:34 - 2015-07-26 08:34 - 00000000 ____D F:\Program Files\MaxUtilities 2015-07-26 08:34 - 2015-07-26 08:34 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\MaxUtilities 2015-07-26 08:34 - 2015-07-26 08:34 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\KSafe 2015-07-26 08:34 - 2015-07-26 08:34 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\KSafe 2015-07-25 23:00 - 2015-07-25 23:00 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\TweakBit 2015-07-25 22:38 - 2015-07-25 22:38 - 00044079 _____ F:\Documents and Settings\All Users\Application Data\1437878282.1072.bin 2015-07-25 22:38 - 2015-07-25 22:38 - 00002055 _____ F:\Documents and Settings\All Users\Application Data\1437878282.1532.bin 2015-07-25 22:38 - 2015-07-25 22:38 - 00001645 _____ F:\Documents and Settings\All Users\Application Data\1437878282.1420.bin 2015-07-25 22:37 - 2015-07-25 22:37 - 00044948 _____ F:\Documents and Settings\All Users\Application Data\1437878185.bdinstall.bin 2015-07-25 20:09 - 2015-07-25 20:09 - 00000000 ____D F:\WINDOWS\Corel 2015-07-25 20:06 - 2015-07-25 20:06 - 00000047 _____ F:\WINDOWS\winhlp32.ini 2015-07-25 20:06 - 2015-07-25 20:06 - 00000047 _____ F:\WINDOWS\winhelp.ini 2015-07-25 20:05 - 1998-02-03 04:00 - 00621056 ____N (Criterion Software Ltd.) F:\WINDOWS\system32\Rwdlmb21.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00576000 ____N (Criterion Software Ltd.) F:\WINDOWS\system32\Rwdl6b21.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00563712 ____N (Voxware, Inc.) F:\WINDOWS\system32\vdk32116.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00558080 ____N (Criterion Software Ltd.) F:\WINDOWS\system32\Rwdl8b21.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00389120 ____N (Criterion Software Ltd.) F:\WINDOWS\system32\Rwl21.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00264192 ____N (Lucent Technologies) F:\WINDOWS\system32\npacrx.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00158720 ____N (Intel Corporation) F:\WINDOWS\system32\rsx.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00131584 ____N (Netscape ) F:\WINDOWS\system32\mcilau32.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00115200 ____N (Intel Corporation) F:\WINDOWS\system32\rsxdata.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00095296 ____N (Netscape ) F:\WINDOWS\system32\mcilau.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00076800 ____N (Netscape Communications) F:\WINDOWS\system32\mcilma32.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00071168 ____N (Netscape Communications) F:\WINDOWS\system32\lmactl32.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00069632 ____N F:\WINDOWS\system32\sx83p32.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00068096 ____N (Corel Corporation Limited) F:\WINDOWS\system32\QPAUTO8.DLL 2015-07-25 20:05 - 1998-02-03 04:00 - 00067936 ____N (InSoft, Inc.) F:\WINDOWS\system32\isprsht.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00066048 ____N (Intel Corporation) F:\WINDOWS\system32\rsxtool.exe 2015-07-25 20:05 - 1998-02-03 04:00 - 00063488 ____N (Voxware) F:\WINDOWS\system32\vdk32118.acm 2015-07-25 20:05 - 1998-02-03 04:00 - 00055808 ____N (Lucent Technologies) F:\WINDOWS\system32\nsx83p32.acm 2015-07-25 20:05 - 1998-02-03 04:00 - 00045510 ____N F:\WINDOWS\system32\Mcilau.hlp 2015-07-25 20:05 - 1998-02-03 04:00 - 00037856 ____N (Netscape Communications) F:\WINDOWS\system32\mcilma.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00030208 ____N (Netscape Communications) F:\WINDOWS\system32\nspac32.acm 2015-07-25 20:05 - 1998-02-03 04:00 - 00028159 ____N F:\WINDOWS\system32\rsxtool.hlp 2015-07-25 20:05 - 1998-02-03 04:00 - 00022528 ____N (Netscape Communications) F:\WINDOWS\system32\nsmlaw32.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00017552 ____N F:\WINDOWS\system32\TTYTWIN.DRV 2015-07-25 20:05 - 1998-02-03 04:00 - 00015872 ____N (Intel Corporation) F:\WINDOWS\system32\rsxunins.exe 2015-07-25 20:05 - 1998-02-03 04:00 - 00011776 ____N (Intel Corporation) F:\WINDOWS\system32\aaudio.dll 2015-07-25 20:05 - 1998-02-03 04:00 - 00000321 ____N F:\WINDOWS\system32\cosmo.ini 2015-07-25 20:04 - 2003-03-31 08:00 - 00112128 _____ (Microsoft Corporation) F:\WINDOWS\system32\mapi32.dll 2015-07-25 20:04 - 1998-02-03 04:00 - 00068096 ____N (Corel Corporation Limited) F:\WINDOWS\system32\PRAUTO8.DLL 2015-07-25 19:53 - 2015-07-25 19:53 - 00045064 _____ F:\Documents and Settings\All Users\Application Data\1437868375.bdinstall.bin 2015-07-25 19:40 - 2015-07-25 19:40 - 00019968 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\inetsloc.dll 2015-07-25 19:25 - 2015-07-25 19:25 - 00048022 _____ F:\Documents and Settings\All Users\Application Data\1437837294.bdinstall.bin 2015-07-25 11:11 - 2001-08-17 22:36 - 00205824 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_seo.dll 2015-07-25 11:11 - 2001-08-17 22:36 - 00175104 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_smtpadm.dll 2015-07-25 11:11 - 2001-08-17 22:36 - 00009728 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_smtpapi.dll 2015-07-25 11:11 - 2001-08-17 22:36 - 00009216 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_rwnh.dll 2015-07-25 10:45 - 2015-07-25 10:46 - 00042618 _____ F:\Documents and Settings\All Users\Application Data\1437835511.1624.bin 2015-07-25 10:45 - 2015-07-25 10:46 - 00000412 _____ F:\Documents and Settings\All Users\Application Data\1437835511.2324.bin 2015-07-25 10:45 - 2015-07-25 10:45 - 00002070 _____ F:\Documents and Settings\All Users\Application Data\1437835511.2240.bin 2015-07-25 10:38 - 2015-07-25 10:38 - 00045242 _____ F:\Documents and Settings\All Users\Application Data\1437835087.bdinstall.bin 2015-07-25 10:36 - 2002-06-06 23:13 - 01077344 _____ (Microsoft Corporation) F:\WINDOWS\system32\mscomctl.ocx 2015-07-25 10:31 - 2015-07-25 22:22 - 00000000 ____D F:\UBCD4Win 2015-07-25 10:24 - 2015-07-25 10:24 - 00000000 ____D F:\Program Files\Common Files\Bitdefender 2015-07-25 09:03 - 2015-07-25 09:03 - 00043520 ____C (Microsoft Corporation) F:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll 2015-07-25 09:02 - 2015-07-25 09:02 - 00173232 _____ (VMware, Inc.) F:\WINDOWS\system32\vmx_fb.dll 2015-07-25 09:02 - 2015-07-25 09:02 - 00035888 _____ (VMware, Inc.) F:\WINDOWS\system32\vmhgfs.dll 2015-07-25 09:02 - 2015-07-25 09:02 - 00016432 _____ (VMware, Inc.) F:\WINDOWS\system32\vmx_mode.dll 2015-07-25 09:01 - 2015-07-25 09:01 - 00117552 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmhgfs.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00063920 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmx_svga.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00054960 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmci.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00040704 _____ (Creative Technology Ltd.) F:\WINDOWS\system32\Drivers\es1371mp.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00036400 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmxnet.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00035328 _____ (AMD Inc.) F:\WINDOWS\system32\Drivers\pcntpci5.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00019504 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmdebug.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00017968 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmscsi.sys 2015-07-25 09:01 - 2015-07-25 09:01 - 00011696 _____ (VMware, Inc.) F:\WINDOWS\system32\Drivers\vmmouse.sys 2015-07-25 09:00 - 2015-07-25 09:00 - 00000000 ____D F:\WINDOWS\OemDir 2015-07-25 08:58 - 2015-07-25 08:58 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\Weskysoft 2015-07-24 21:26 - 2015-07-25 22:17 - 00035992 _____ F:\WINDOWS\system32\Drivers\hitmanpro37.sys 2015-07-24 16:37 - 2015-08-05 10:31 - 00001024 ____H F:\WINDOWS\system32\config\userdifr.LOG 2015-07-24 14:03 - 2015-08-04 21:36 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\MSN6 2015-07-24 14:03 - 2015-07-24 14:03 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\MSN6 2015-07-24 12:20 - 2015-07-24 12:20 - 00000000 ____H F:\WINDOWS\system32\config\software.tmp.LOG 2015-07-24 12:20 - 2015-07-24 12:20 - 00000000 ____H F:\WINDOWS\system32\config\default.tmp.LOG 2015-07-24 12:19 - 2015-08-05 10:31 - 00001024 ____H F:\WINDOWS\system32\config\userdiff.LOG 2015-07-24 12:19 - 2015-08-05 06:05 - 00001024 ____H F:\WINDOWS\system32\config\TempKey.LOG 2015-07-24 12:19 - 2015-07-24 12:19 - 00000000 ____H F:\WINDOWS\system32\config\system.tmp.LOG 2015-07-24 11:05 - 2015-08-06 11:20 - 00000269 _____ F:\WINDOWS\system32\spupdwxp.log 2015-07-24 09:39 - 2015-07-25 22:16 - 00000000 ____D F:\Program Files\HitmanPro 2015-07-24 09:18 - 2015-07-24 09:18 - 00000000 ____D F:\Program Files\DriverToolkit 2015-07-24 09:18 - 2015-07-24 09:18 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\DriverToolkit 2015-07-24 09:18 - 2015-07-24 09:18 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\DriverToolkit 2015-07-23 19:42 - 2015-07-23 19:42 - 00000637 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Corel WordPerfect 8 (2).LNK 2015-07-21 20:27 - 2015-07-21 20:27 - 00003584 _____ F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-07-21 19:13 - 2015-07-21 19:13 - 00423208 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPSvc.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00348160 _____ (Microsoft Corporation) F:\WINDOWS\system32\msvcr71.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00284016 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMon.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00111856 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMW32.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00079208 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMonUI.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00023960 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMondeu.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00009632 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMonjpn.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00009104 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMonUIjpn.dll 2015-07-21 19:13 - 2015-07-21 19:13 - 00009104 _____ (ThinPrint GmbH) F:\WINDOWS\system32\TPVMMonUIdeu.dll 2015-07-21 18:59 - 2015-07-21 18:59 - 00000000 ____D F:\Program Files\DLLSuite 2015-07-21 18:17 - 2015-08-01 11:45 - 00000000 ____D F:\Program Files\Malwarebytes Anti-Malware 2015-07-21 14:49 - 2015-07-21 14:49 - 00000000 __HDC F:\WINDOWS\$NtUninstallWdf01009$ 2015-07-21 14:49 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) F:\WINDOWS\system32\spmsgXP_2k3.dll 2015-07-21 10:53 - 2015-07-21 10:54 - 00000000 ____D F:\Program Files\GUMA.tmp 2015-07-21 10:53 - 2015-07-21 10:53 - 06420480 _____ F:\Program Files\GUTB.tmp 2015-07-20 04:24 - 2015-07-20 04:24 - 06420480 _____ F:\Program Files\GUT9.tmp 2015-07-20 04:24 - 2015-07-20 04:24 - 00000000 ____D F:\Program Files\GUM8.tmp 2015-07-19 16:54 - 2015-07-19 16:54 - 00000000 ____D F:\TDSSKiller_Quarantine 2015-07-19 15:48 - 2015-07-19 15:48 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Application Data\BullGuard 2015-07-19 14:48 - 2015-07-19 14:48 - 06420480 _____ F:\Program Files\GUT13.tmp 2015-07-19 14:48 - 2015-07-19 14:48 - 00000000 ____D F:\Program Files\GUM12.tmp 2015-07-19 14:00 - 2015-07-19 14:00 - 00001330 _____ F:\WINDOWS\system32\.crusader 2015-07-19 13:49 - 2015-07-19 14:00 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\HitmanPro 2015-07-18 13:02 - 2010-02-12 07:07 - 00409600 _____ (Eastman Kodak Company) F:\WINDOWS\system32\EKIJ5000MON.dll 2015-07-18 13:02 - 2010-02-12 07:07 - 00131072 ____R (Eastman Kodak Company) F:\WINDOWS\system32\EKIJCOINST07.dll 2015-07-18 11:33 - 2015-07-18 11:33 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\FileTypeAssistant 2015-07-18 10:12 - 2015-07-18 10:12 - 00002858 _____ F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\installer.log 2015-07-18 10:02 - 2015-07-18 10:02 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\KODAK AiO Home Center1214376330 2015-07-17 22:57 - 2015-07-17 22:57 - 00000000 ____D F:\Program Files\GUM2A.tmp 2015-07-17 22:33 - 2015-07-17 22:33 - 00000000 ____D F:\Documents and Settings\LocalService\Application Data\BullGuard 2015-07-17 22:32 - 2015-07-21 11:33 - 00000268 _____ F:\WINDOWS\system32\config\afw_hm.conf 2015-07-17 22:32 - 2015-07-21 11:33 - 00000004 _____ F:\WINDOWS\system32\config\afw_db.conf 2015-07-17 22:12 - 2015-07-25 10:22 - 00005528 _____ F:\WINDOWS\defrag.cfg 2015-07-17 22:12 - 2015-07-17 22:12 - 00000000 ____D F:\WINDOWS\options 2015-07-17 22:12 - 2009-04-05 20:01 - 00005632 _____ (defrag Development Team) F:\WINDOWS\defrag_native.exe 2015-07-17 22:12 - 2009-01-12 00:15 - 00015360 _____ (defrag Development Team) F:\WINDOWS\defrag.dll 2015-07-17 22:12 - 2009-01-12 00:15 - 00012800 _____ () F:\WINDOWS\sysutils.dll 2015-07-17 21:56 - 2010-06-24 08:10 - 00081920 ____N (Microsoft Corporation) F:\WINDOWS\system32\ieencode.dll 2015-07-17 09:52 - 2015-07-17 22:31 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\BullGuard 2015-07-17 09:51 - 2015-07-17 09:51 - 00000000 ____D F:\Program Files\Windows Defender 2015-07-17 09:48 - 2015-07-17 15:52 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\Package Cache 2015-07-17 09:48 - 2015-07-17 09:48 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\QuickScan 2015-07-17 09:46 - 2015-07-21 13:32 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\BullGuard 2015-07-16 20:26 - 2015-07-16 20:26 - 24345872 _____ (Malwarebytes Corporation ) F:\Documents and Settings\Anthony Kidd\My Documents\mbam-setup-2.1.8.1057.exe 2015-07-13 22:37 - 2015-07-13 22:37 - 00000000 ____D F:\Program Files\SmartPCFixer 2015-07-13 22:37 - 2015-07-13 22:37 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\SmartPCFixer 2015-07-13 08:23 - 2015-07-13 08:23 - 06420480 _____ F:\Program Files\GUT51.tmp 2015-07-13 08:23 - 2015-07-13 08:23 - 00000000 ____D F:\Program Files\GUM50.tmp 2015-07-13 07:59 - 2015-07-13 07:59 - 00000000 ___HD F:\WINDOWS\PIF 2015-07-12 18:22 - 2015-08-09 02:26 - 00000635 _____ F:\WINDOWS\Tasks\SparkTrust PC Cleaner Plus_sch_78EC96F6-28E4-11E5-BA67-00E02982F49C.job 2015-07-12 18:22 - 2015-07-25 19:55 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\SparkTrust 2015-07-12 18:22 - 2015-07-12 18:22 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\SparkTrust 2015-07-12 17:38 - 2015-07-12 17:40 - 00000000 ____D F:\Program Files\GUM1.tmp 2015-07-12 17:38 - 2015-07-12 17:38 - 06420480 _____ F:\Program Files\GUT2.tmp 2015-07-10 17:31 - 2013-09-04 14:57 - 00024040 _____ (ThreatTrack Security) F:\WINDOWS\system32\Drivers\gfiutil.sys 2015-07-10 17:31 - 2013-05-23 08:39 - 00043368 _____ (ThreatTrack Security) F:\WINDOWS\system32\Drivers\gfiark.sys 2015-07-10 13:41 - 2015-08-10 13:27 - 00000644 _____ F:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job 2015-07-10 13:41 - 2015-07-11 08:27 - 00000616 _____ F:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job 2015-07-10 13:41 - 2015-07-11 08:27 - 00000446 _____ F:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job 2015-07-10 13:41 - 2015-07-10 13:41 - 00001842 _____ F:\Documents and Settings\All Users\Start Menu\Programs\Spybot-S&D Start Center.lnk 2015-07-10 13:41 - 2015-07-10 13:41 - 00001836 _____ F:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk 2015-07-10 13:41 - 2015-07-10 13:41 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\Spybot - Search & Destroy 2 2015-07-10 10:17 - 2015-07-10 10:17 - 00000637 _____ F:\Documents and Settings\Anthony Kidd\Desktop\Start Emsisoft Emergency Kit.lnk 2015-07-08 22:46 - 2015-07-08 22:46 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\iolo 2015-07-08 15:42 - 2015-08-10 19:56 - 00000406 ____H F:\WINDOWS\Tasks\User_Feed_Synchronization-{A7D55245-74A0-46DB-96B6-BB4542047ED8}.job 2015-07-08 14:34 - 2015-08-06 19:31 - 00003771 _____ F:\Documents and Settings\Anthony Kidd\Desktop\hijackthis.log 2015-07-05 16:45 - 2015-07-05 16:45 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Local Settings\Application Data\Zemana 2015-07-05 15:52 - 2015-07-05 15:52 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Application Data\spotmau 2015-07-05 10:31 - 2015-07-05 10:31 - 00004738 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\My Documents\cc_20150705_103106.reg ==================== Three Months Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-10 19:58 - 2014-07-31 18:39 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\temp 2015-08-10 19:36 - 2015-03-29 15:36 - 00000420 _____ F:\WINDOWS\Tasks\At1.job 2015-08-10 13:29 - 2003-03-31 08:00 - 00012020 _____ F:\WINDOWS\system32\wpa.dbl 2015-08-10 13:27 - 2014-07-27 16:23 - 00000006 ____H F:\WINDOWS\Tasks\SA.DAT 2015-08-10 11:17 - 2014-07-27 16:29 - 00000178 ___SH F:\Documents and Settings\Anthony Kidd\ntuser.ini 2015-08-10 10:31 - 2014-07-27 16:29 - 00000000 ____D F:\Documents and Settings\Anthony Kidd 2015-08-09 18:38 - 2014-07-30 20:18 - 00000000 ____D F:\MyFiles 2015-08-08 01:17 - 2003-03-31 08:00 - 00000849 _____ F:\WINDOWS\win.ini 2015-08-08 01:17 - 2003-03-31 08:00 - 00000527 _____ F:\WINDOWS\system.ini 2015-08-08 01:05 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\inetsrv 2015-08-07 20:42 - 2014-09-07 18:23 - 00000000 ____D F:\Program Files\AutoCAD R14 2015-08-07 15:02 - 2014-08-27 14:02 - 00000000 ____D F:\Program Files\Mozilla Maintenance Service 2015-08-06 19:20 - 2014-09-08 18:27 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Desktop\backups 2015-08-06 19:10 - 2014-09-25 13:31 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable) 2015-08-06 19:02 - 2015-04-19 11:20 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Desktop\mbar 2015-08-06 11:25 - 2014-07-27 11:49 - 00618284 _____ F:\WINDOWS\system32\PerfStringBackup.INI 2015-08-06 11:23 - 2014-07-27 16:52 - 00316640 _____ F:\WINDOWS\WMSysPr9.prx 2015-08-06 11:04 - 2014-07-27 16:20 - 00000000 ____D F:\WINDOWS\system32\Restore 2015-08-06 10:04 - 2014-07-27 16:23 - 00001563 _____ F:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk 2015-08-06 10:03 - 2014-07-27 16:18 - 00000000 ___RD F:\Documents and Settings\All Users\Start Menu\Programs\Accessories 2015-08-06 10:03 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\Help 2015-08-06 10:02 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\security 2015-08-05 21:45 - 2014-07-27 16:20 - 00000000 ____D F:\WINDOWS\Registration 2015-08-05 20:09 - 2014-07-31 18:39 - 00000000 ____D F:\Documents and Settings\LocalService\Local Settings\temp 2015-08-05 18:23 - 2014-07-27 11:47 - 00230392 _____ F:\WINDOWS\system32\FNTCACHE.DAT 2015-08-05 13:33 - 2014-07-27 16:47 - 00000000 ____D F:\WINDOWS\peernet 2015-08-05 13:33 - 2014-07-27 16:21 - 00000000 ____D F:\Program Files\Movie Maker 2015-08-05 13:33 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\ime 2015-08-05 13:29 - 2014-07-27 16:21 - 00000000 ____D F:\WINDOWS\srchasst 2015-08-05 13:29 - 2014-07-27 16:20 - 00000000 ____D F:\Program Files\Outlook Express 2015-08-05 13:29 - 2014-07-27 16:20 - 00000000 ____D F:\Program Files\NetMeeting 2015-08-05 13:29 - 2014-07-27 16:20 - 00000000 ____D F:\Program Files\Common Files\System 2015-08-05 13:29 - 2014-07-27 16:19 - 00000000 ____D F:\WINDOWS\system32\Com 2015-08-05 13:29 - 2014-07-27 16:19 - 00000000 ____D F:\Program Files\Windows NT 2015-08-05 13:29 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\npp 2015-08-05 13:29 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\mui 2015-08-05 13:29 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\msagent 2015-08-05 13:28 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\usmt 2015-08-05 13:28 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system 2015-08-05 13:27 - 2003-03-31 08:00 - 00250048 __RSH F:\ntldr 2015-08-05 13:11 - 2014-08-04 21:03 - 00000000 ____D F:\WINDOWS\pss 2015-08-05 12:58 - 2014-08-10 18:30 - 00000000 ____D F:\Program Files\Messenger 2015-08-05 12:58 - 2014-07-27 11:44 - 00000281 __RSH F:\boot.ini 2015-08-05 12:54 - 2014-07-27 11:38 - 00000000 ___RD F:\WINDOWS\Web 2015-08-05 12:54 - 2003-03-31 08:00 - 00047564 __RSH F:\NTDETECT.COM 2015-08-05 10:38 - 2014-07-27 16:23 - 00000792 _____ F:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk 2015-08-05 10:31 - 2014-08-10 18:04 - 00262144 _____ F:\WINDOWS\system32\config\userdifr 2015-08-05 10:31 - 2014-07-27 16:23 - 00001599 _____ F:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk 2015-08-05 10:31 - 2014-07-27 16:23 - 00001507 _____ F:\Documents and Settings\All Users\Start Menu\Windows Update.lnk 2015-08-05 10:31 - 2014-07-27 16:23 - 00000398 _____ F:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk 2015-08-05 10:31 - 2014-07-27 11:44 - 00262144 _____ F:\WINDOWS\system32\config\userdiff 2015-08-05 10:30 - 2014-07-28 18:23 - 00000584 _____ F:\WINDOWS\system32\settingsbkup.sfm 2015-08-05 10:30 - 2014-07-28 18:23 - 00000584 _____ F:\WINDOWS\system32\settings.sfm 2015-08-05 10:30 - 2014-07-27 16:23 - 00299552 _____ F:\WINDOWS\WMSysPrx.prx 2015-08-05 10:30 - 2014-07-27 16:23 - 00025065 _____ F:\WINDOWS\system32\wmpscheme.xml 2015-08-05 10:30 - 2014-07-27 16:23 - 00023392 _____ F:\WINDOWS\system32\nscompat.tlb 2015-08-05 10:30 - 2014-07-27 16:23 - 00016832 _____ F:\WINDOWS\system32\amcompat.tlb 2015-08-05 10:30 - 2014-07-27 11:49 - 00004161 _____ F:\WINDOWS\ODBCINST.INI 2015-08-05 10:29 - 2014-07-27 16:22 - 00000749 ___RH F:\WINDOWS\system32\cdplayer.exe.manifest 2015-08-05 10:29 - 2014-07-27 16:22 - 00000488 ___RH F:\WINDOWS\system32\WindowsLogon.manifest 2015-08-05 10:28 - 2014-07-27 16:22 - 00000000 ___RD F:\Documents and Settings\Default User\Start Menu\Programs\Accessories 2015-08-05 10:27 - 2014-07-27 16:20 - 00022776 _____ F:\WINDOWS\system32\emptyregdb.dat 2015-08-05 10:26 - 2014-07-27 16:20 - 00001846 _____ F:\Documents and Settings\All Users\Start Menu\Programs\MSN Explorer.lnk 2015-08-05 09:41 - 2014-07-27 16:26 - 00262144 _____ F:\WINDOWS\system32\config\security.sav 2015-08-05 09:31 - 2014-07-28 19:20 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\vlc 2015-08-05 09:02 - 2014-07-27 19:24 - 00000000 __SHD F:\WINDOWS\CSC 2015-08-05 06:06 - 2014-07-27 16:26 - 20971520 _____ F:\WINDOWS\system32\config\software.sav 2015-08-05 06:06 - 2014-07-27 16:26 - 05767168 _____ F:\WINDOWS\system32\config\system.sav 2015-08-05 06:06 - 2014-07-27 11:44 - 00524288 _____ F:\WINDOWS\system32\config\default.sav 2015-08-05 06:01 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\twain_32 2015-08-05 06:01 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\icsxml 2015-08-05 06:01 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\Media 2015-08-05 06:00 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\ias 2015-08-05 05:59 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\system32\1033 2015-08-05 05:57 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\Driver Cache 2015-08-01 13:18 - 2014-07-27 17:46 - 00000000 ____D F:\Program Files\NVIDIA Corporation 2015-08-01 12:12 - 2014-07-28 11:56 - 00000178 ___SH F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\ntuser.ini 2015-08-01 12:11 - 2014-07-31 18:39 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Local Settings\temp 2015-08-01 11:52 - 2014-07-28 15:58 - 00062840 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2015-07-31 23:42 - 2014-08-31 09:34 - 00000000 ____D F:\WINDOWS\system32\LogFiles 2015-07-31 23:39 - 2014-09-18 09:55 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Programs\Auslogics 2015-07-31 23:38 - 2014-09-18 09:55 - 00000000 ____D F:\Program Files\Auslogics 2015-07-31 08:41 - 2014-08-03 21:58 - 00000000 ____D F:\Program Files\SUPERAntiSpyware 2015-07-30 19:23 - 2014-07-27 16:29 - 00001599 _____ F:\Documents and Settings\Anthony Kidd\Start Menu\Programs\Remote Assistance.lnk 2015-07-30 13:07 - 2015-02-04 19:41 - 00000658 _____ F:\Documents and Settings\Anthony Kidd\Desktop\javatmp.lnk 2015-07-30 10:30 - 2014-07-28 11:56 - 00001599 _____ F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\Start Menu\Programs\Remote Assistance.lnk 2015-07-30 10:25 - 2014-07-27 19:25 - 00001599 _____ F:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk 2015-07-28 15:40 - 2014-07-28 11:56 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6 2015-07-28 14:57 - 2015-03-29 12:48 - 00000000 ____D F:\Program Files\VS Revo Group 2015-07-27 16:13 - 2015-07-10 10:17 - 00000000 ____D F:\EEK 2015-07-27 15:45 - 2014-08-01 15:27 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\Deployment 2015-07-27 09:10 - 2014-07-30 10:16 - 00000000 ____D F:\WINDOWS\Microsoft.NET 2015-07-26 21:59 - 2014-08-01 16:34 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\AVAST Software 2015-07-26 21:43 - 2014-07-27 16:56 - 00000000 ___HD F:\WINDOWS\$hf_mig$ 2015-07-25 23:02 - 2014-08-11 13:03 - 00000664 _____ F:\WINDOWS\system32\d3d9caps.dat 2015-07-25 20:07 - 2014-07-30 20:22 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\My Documents\Corel User Files 2015-07-25 20:06 - 2014-07-30 20:20 - 00000000 ____D F:\Documents and Settings\All Users\Start Menu\Corel WordPerfect Suite 8 2015-07-25 20:05 - 2014-07-30 20:18 - 00000000 ___HD F:\WINDOWS\ShellNew 2015-07-24 16:33 - 2014-07-27 16:19 - 00000000 ____D F:\WINDOWS\system32\MsDtc 2015-07-24 12:59 - 2014-07-31 23:10 - 00029160 _____ F:\WINDOWS\system32\Drivers\TrueSight.sys 2015-07-24 06:08 - 2014-08-11 16:14 - 00000000 ____D F:\WINDOWS\tmp 2015-07-23 19:39 - 2014-07-28 18:13 - 00000000 ____D F:\WINDOWS\system32\NtmsData 2015-07-21 20:19 - 2014-07-28 12:04 - 00000000 ____D F:\Documents and Settings\Administrator.PIEDMONT-00BMF6\My Documents\clonedisk 2015-07-21 09:02 - 2014-08-04 09:30 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\TuneUp360 2015-07-19 17:04 - 2014-09-19 23:02 - 00181064 _____ (Sysinternals) F:\WINDOWS\PSEXESVC.EXE 2015-07-19 02:44 - 2014-07-27 11:38 - 00000000 ____D F:\WINDOWS\repair 2015-07-18 20:20 - 2015-07-10 17:29 - 00000000 ____D F:\VIPRERESCUE 2015-07-18 13:39 - 2014-07-30 10:23 - 00000000 ____D F:\Documents and Settings\All Users\Application Data\Kodak 2015-07-18 10:17 - 2014-07-30 10:21 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Application Data\Temp 2015-07-18 10:06 - 2014-07-30 10:27 - 00000000 ____D F:\Program Files\Kodak 2015-07-18 10:05 - 2014-07-30 10:42 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\Eastman_Kodak_Company 2015-07-17 22:56 - 2014-08-03 20:09 - 00000000 ____D F:\Documents and Settings\LocalService\Start Menu\Programs\Accessories 2015-07-17 21:41 - 2014-07-27 16:20 - 00000000 ___HD F:\Program Files\WindowsUpdate 2015-07-13 20:27 - 2014-10-03 12:56 - 00000000 ____D F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\Adobe ==================== Files in the root of some directories ======= 2015-07-19 14:48 - 2015-07-19 14:48 - 6420480 _____ () F:\Program Files\GUT13.tmp 2015-07-12 17:38 - 2015-07-12 17:38 - 6420480 _____ () F:\Program Files\GUT2.tmp 2015-07-05 15:33 - 2015-07-05 15:33 - 0000000 _____ () F:\Program Files\GUT4.tmp 2015-07-05 20:57 - 2015-07-05 20:57 - 6420480 _____ () F:\Program Files\GUT5.tmp 2015-07-06 08:41 - 2015-07-06 08:41 - 6420480 _____ () F:\Program Files\GUT50.tmp 2015-07-13 08:23 - 2015-07-13 08:23 - 6420480 _____ () F:\Program Files\GUT51.tmp 2015-07-07 07:32 - 2015-07-07 07:32 - 6420480 _____ () F:\Program Files\GUT6.tmp 2015-07-08 22:34 - 2015-07-08 22:34 - 6420480 _____ () F:\Program Files\GUT7.tmp 2015-07-10 09:59 - 2015-07-10 09:59 - 6420480 _____ () F:\Program Files\GUT8.tmp 2015-07-20 04:24 - 2015-07-20 04:24 - 6420480 _____ () F:\Program Files\GUT9.tmp 2015-07-29 09:09 - 2015-07-29 09:09 - 0000000 _____ () F:\Program Files\GUTA.tmp 2015-07-21 10:53 - 2015-07-21 10:53 - 6420480 _____ () F:\Program Files\GUTB.tmp 2014-08-04 09:45 - 2015-07-05 09:37 - 50180280 _____ () F:\Documents and Settings\Anthony Kidd\Application Data\hkey_local_machine.reg 2015-07-12 18:22 - 2015-07-12 22:03 - 0000053 _____ () F:\Documents and Settings\Anthony Kidd\Application Data\LogFile.txt 2015-07-21 20:27 - 2015-07-21 20:27 - 0003584 _____ () F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-07-28 11:05 - 2014-07-28 11:05 - 0000089 _____ () F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\FASTWiz.log 2014-09-07 21:49 - 2014-09-07 21:49 - 0000036 _____ () F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\housecall.guid.cache 2015-07-18 10:12 - 2015-07-18 10:12 - 0002858 _____ () F:\Documents and Settings\Anthony Kidd\Local Settings\Application Data\installer.log Files to move or delete: ==================== F:\Windows\Tasks\At1.job ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) F:\WINDOWS\explorer.exe => File is digitally signed F:\WINDOWS\system32\winlogon.exe => File is digitally signed F:\WINDOWS\system32\svchost.exe => File is digitally signed F:\WINDOWS\system32\services.exe => File is digitally signed F:\WINDOWS\system32\User32.dll => File is digitally signed F:\WINDOWS\system32\userinit.exe => File is digitally signed F:\WINDOWS\system32\rpcss.dll => File is digitally signed F:\WINDOWS\system32\dnsapi.dll => File is digitally signed F:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End of log ============================