Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Startup Repair... Tied to Google Redirect Virus?


  • This topic is locked This topic is locked
11 replies to this topic

#1 PGAHopeful26

PGAHopeful26

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 25 July 2011 - 10:59 PM

Hey everyone,

My friend's computer had some serious virus issues and I deleted them with MalwareBytes and other software suggested on these forums. I tried everything but couldn't seem to get rid of the google redirect virus. None of the programs picked it up. He said he needed the computer for word processing and was just going to avoid the internet for the time being so that he could finish a project. Now he brings it to me and it wont even start. It goes from the starting windows screen then goes black, glitches to a blue screen then restarts immediately into StartupRepair and says

"Startup Repair cannot repair this computer automatically" then gives me this info

Problem Event Name: StartupRepairOffline
Problem Signature 01: 6.1.7600.16385
Problem Signature 02: "
Problem Signature 03: unknown
Problem Signature 04: 21201049
Problem Signature 05: AutoFailover
Problem Signature 06: 17
Problem Signature 07: NoRootCause
OS Version: 6.1.7600.2.0.0.256.1

I've tried system restore on every date available... and it won't work. Ive gone into the setup and checked the boot options, and the hard drive is first. Reset everything to default, no good.

It wont even let me load up safe mode... in any form. Tried starting it up with the last successful settings... no good. Bootlogger won't even pop up.

Any Suggestions?

Thanks

BC AdBot (Login to Remove)

 


#2 xExekut3x

xExekut3x

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 25 July 2011 - 11:19 PM

Seems to be something serious. Someone on another forum is/was experiencing something similar.

Windows 7 wont boot past the Logo screen at startup, restore does not work, cannot repair automatically

Maybe there's some helpful information in there.

#3 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 26 July 2011 - 02:53 AM

Hi PGAHopeful26 and welcome to Bleeping computer.

I will be assisting you with the issue.

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]

#4 PGAHopeful26

PGAHopeful26
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 26 July 2011 - 03:02 PM

Here's the .txt file you asked for.

Attached Files

  • Attached File  FRST.txt   65.85KB   10 downloads


#5 PGAHopeful26

PGAHopeful26
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 26 July 2011 - 07:45 PM

Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.1.7
Ran by SYSTEM at 2011-07-26 15:58:49
Running from G:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [cAudioFilterAgent] "C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [503864 2009-07-20] (Conexant Systems, Inc.)
HKLM\...\Run: [Apoint] "C:\Program Files\Apoint2K\Apoint.exe" [295936 2009-05-21] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] "C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe" [828960 2009-08-05] (Acer Incorporated)
HKLM\...\Run: [EKIJ5000StatusMonitor] "C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe" [2045440 2010-09-02] (Eastman Kodak Company)
HKLM\...\Run: [PC Optimizer Pro] "C:\Program Files\PC Optimizer Pro\StartApps.exe" -s [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1436224 2010-11-30] (Microsoft Corporation)
HKLM-x32\...\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe" -h -k [244480 2009-08-20] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Camera Assistant Software] "C:\Program Files (x86)\Video Web Camera\traybar.exe" [630784 2009-04-13] (Chicony)
HKLM-x32\...\Run: [LManager] "C:\Program Files (x86)\Launch Manager\LManager.exe" [1194504 2009-08-27] (Dritek System Inc.)
HKLM-x32\...\Run: [CLMLServer] "c:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe" [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [RemoteControl8] "c:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe" [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [NortonOnlineBackup] "C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [736600 2009-05-19] (Symantec Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [248040 2010-02-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [DivX Download Manager] "C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe" start [63360 2011-02-07] (DivX, LLC)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" [371 2011-07-12] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [35736 2010-11-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [932288 2010-11-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1230704 2011-03-21] ()
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [58656 2011-04-20] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421160 2011-06-07] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot [273544 2011-06-22] (RealNetworks, Inc.)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [395144 2011-05-17] (Ask)
HKLM-x32\...\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray [449584 2011-05-29] (Malwarebytes Corporation)
HKU\Guest\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2009-08-14] (Google Inc.)
HKU\owner\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-05] (Acresso Corporation)
HKU\owner\...\Run: [DW6] "C:\Program Files (x86)\The Weather Channel FW\Desktop\DesktopWeather.exe" [822384 2010-06-04] (The Weather Channel Interactive, Inc.)
HKU\owner\...\Run: [BitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" [4771184 2011-05-24] (BitTorrent, Inc.)
HKU\owner\...\Run: [CrazyRemote] C:\Program Files (x86)\CrazyRemote\CrazyRemote.exe [443648 2011-04-24] ()
HKU\owner\...\Run: [CrazyRemoteCommand] C:\Program Files (x86)\CrazyRemote\CrazyRemoteCommand.exe [48384 2011-04-24] ()
HKU\owner\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized [15146376 2011-04-18] (Skype Technologies S.A.)
HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2009-07-13] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1

==================== Services (Whitelisted) ======

2 CrazyRemoteServer; C:\Program Files (x86)\CrazyRemote\CrazyRemoteServer.exe [232192 2011-04-24] ()
2 ePowerSvc; C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe [844320 2009-08-05] (Acer Incorporated)
3 GameConsoleService; "C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe" [250616 2009-05-22] (WildTangent, Inc.)
2 Greg_Service; C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe [1150496 2009-06-04] (Acer Incorporated)
2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc [135664 2010-02-01] (Google Inc.)
3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc [135664 2010-02-01] (Google Inc.)
2 HsfXAudioService; C:\Windows\SysWOW64\XAudio64.dll [436736 2009-04-29] (Conexant Systems, Inc.)
2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [366640 2011-05-29] (Malwarebytes Corporation)
3 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [227232 2010-01-15] (McAfee, Inc.)
2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe service [2020696 2009-05-19] (Symantec Corporation)
2 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe [62720 2009-08-20] (NewTech Infosystems, Inc.)
2 Updater Service; C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe [240160 2009-07-03] (Acer)
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe" [x]
3 NisSrv; "c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe" [x]

========================== Drivers (Whitelisted) =============

3 ApfiltrService; C:\Windows\System32\DRIVERS\Apfiltr.sys [243760 2009-05-24] (Alps Electric Co., Ltd.)
3 AtiHdmiService; C:\Windows\System32\drivers\AtiHdmi.sys [114192 2009-06-05] (ATI Research Inc.)
3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl664.sys [1311232 2009-06-10] (Broadcom Corporation)
3 CAXHWAZL; C:\Windows\System32\DRIVERS\CAXHWAZL.sys [292864 2009-02-12] (Conexant Systems, Inc.)
3 CnxtHdAudService; C:\Windows\System32\drivers\CHDRT64.sys [686080 2009-08-11] (Conexant Systems Inc.)
3 DKbFltr; C:\Windows\SysWow64\Drivers\DKbFltr.sys [25608 2009-03-26] (Dritek System Inc.)
3 dot4; C:\Windows\System32\DRIVERS\Dot4.sys [145920 2009-07-13] (Microsoft Corporation)
3 Dot4Print; C:\Windows\System32\DRIVERS\Dot4Prt.sys [19968 2009-07-13] (Microsoft Corporation)
3 Dot4Scan; C:\Windows\System32\DRIVERS\Dot4Scan.sys [13824 2009-07-13] (Microsoft Corporation)
3 dot4usb; C:\Windows\System32\DRIVERS\dot4usb.sys [43008 2009-07-13] (Microsoft Corporation)
3 HSF_DPV; C:\Windows\System32\DRIVERS\CAX_DPV.sys [1485824 2009-02-12] (Conexant Systems, Inc.)
3 L1E; C:\Windows\System32\DRIVERS\L1E62x64.sys [54272 2009-06-19] (Atheros Communications, Inc.)
2 mdmxsdk; C:\Windows\System32\DRIVERS\mdmxsdk.sys [17024 2006-06-18] (Conexant)
3 netr28x; C:\Windows\System32\DRIVERS\netr28x.sys [620544 2009-06-10] (Ralink Technology, Corp.)
3 NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [18432 2009-05-05] (NewTech Infosystems, Inc.)
3 RSUSBSTOR; C:\Windows\System32\Drivers\RtsUStor.sys [225280 2009-09-02] (Realtek Semiconductor Corp.)
3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Conexant Systems, Inc.)
3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Conexant Systems, Inc.)
3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Conexant Systems, Inc.)
3 UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [16896 2009-05-05] (NewTech Infosystems Corporation)
3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2010-01-20] (LG Electronics Inc.)
3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27648 2010-01-20] (LG Electronics Inc.)
3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [34872 2009-04-03] (Advanced Micro Devices)
3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33280 2010-01-20] (LG Electronics Inc.)
3 winachsf; C:\Windows\System32\DRIVERS\CAX_CNXT.sys [740864 2009-02-12] (Conexant Systems, Inc.)
2 XAudio; C:\Windows\System32\DRIVERS\XAudio64.sys [10240 2009-04-29] (Conexant Systems, Inc.)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [x]
3 RtsUIR; C:\Windows\System32\DRIVERS\Rts516xIR.sys [x]
3 USBCCID; C:\Windows\System32\DRIVERS\usbccid.sys [x]

========================== NetSvcs ========================

============ One Month Created Files and Folders ==============

2011-07-13 16:03 - 2011-07-13 16:03 - 0000000 ____D C:\Program Files\Hitman Pro 3.5
2011-07-13 16:00 - 2011-07-13 17:15 - 0000000 ____D C:\Users\All Users\Hitman Pro
2011-07-13 16:00 - 2011-07-13 17:15 - 0000000 ____D C:\ProgramData\Hitman Pro
2011-07-12 23:53 - 2011-07-25 16:38 - 0000000 ____D C:\Windows\System32\SPReview
2011-07-12 23:52 - 2011-07-25 16:39 - 0000000 ____D C:\da418ba805535847d3f8b3
2011-07-12 23:52 - 2011-07-12 23:52 - 0001945 ____A C:\Windows\epplauncher.mif
2011-07-12 23:52 - 2011-07-12 23:52 - 0000000 ____D C:\Windows\System32\EventProviders
2011-07-12 23:51 - 2011-07-12 23:52 - 0000000 ____D C:\Program Files\Microsoft Security Client
2011-07-12 23:51 - 2011-07-12 23:51 - 0743534 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2011-07-12 23:51 - 2011-07-12 23:51 - 0000000 ____D C:\Program Files (x86)\Microsoft Security Client
2011-07-12 22:29 - 2011-07-25 16:39 - 0000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-07-12 22:29 - 2011-07-12 22:29 - 0001120 ____A C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\Users\owner\AppData\Roaming\Malwarebytes
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\Users\All Users\Malwarebytes
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\ProgramData\Malwarebytes
2011-07-12 22:29 - 2011-06-01 22:45 - 0362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2011-07-12 22:29 - 2011-06-01 22:45 - 0243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2011-07-12 22:29 - 2011-06-01 22:45 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2011-07-12 22:29 - 2011-06-01 22:44 - 0214528 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2011-07-12 22:29 - 2011-06-01 22:42 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2011-07-12 22:29 - 2011-06-01 22:35 - 0338944 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe
2011-07-12 22:29 - 2011-06-01 21:59 - 0014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2011-07-12 22:29 - 2011-06-01 21:56 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2011-07-12 22:29 - 2011-06-01 21:54 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2011-07-12 22:29 - 2011-06-01 19:51 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2011-07-12 22:29 - 2011-06-01 19:50 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2011-07-12 22:29 - 2011-05-29 05:11 - 0039984 ____A (Malwarebytes Corporation) C:\Windows\SysWOW64\Drivers\mbamswissarmy.sys
2011-07-12 22:29 - 2011-05-13 23:36 - 1162240 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2011-07-12 22:29 - 2011-05-13 23:36 - 0422400 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 23:18 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:32 - 0837120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2011-07-12 22:29 - 2011-05-13 22:32 - 0272384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 22:22 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 20:25 - 0006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 20:25 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 20:25 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-12 22:29 - 2011-05-13 20:25 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2011-07-12 22:28 - 2011-07-12 22:28 - 0000285 ____A C:\Windows\System32\MRT.INI
2011-07-12 22:20 - 2011-07-14 18:57 - 0524288 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TMContainer00000000000000000001.regtrans-ms
2011-07-12 22:20 - 2011-07-14 18:57 - 0065536 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TM.blf
2011-07-12 22:20 - 2011-07-12 23:42 - 0524288 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TMContainer00000000000000000002.regtrans-ms
2011-07-12 21:49 - 2011-07-14 19:02 - 1833942 ___AH C:\Users\owner\AppData\Local\IconCache.db
2011-07-12 19:18 - 2011-06-10 18:56 - 3134464 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-07-11 17:40 - 2011-07-11 17:40 - 0000000 ____D C:\Users\Guest\AppData\Roaming\Real
2011-07-11 17:40 - 2011-07-11 17:40 - 0000000 ____D C:\Users\Guest\AppData\Roaming\DivX
2011-07-11 09:33 - 2011-07-12 22:13 - 0000000 ____D C:\Users\owner\AppData\Local\{5AAD9D35-37F5-47FA-90FF-54686708CACF}
2011-07-11 09:33 - 2011-07-12 21:52 - 0000000 ____A C:\Users\owner\AppData\Local\Xhesupohofusocac.bin
2011-07-11 09:33 - 2011-07-12 17:45 - 0000120 ____A C:\Users\owner\AppData\Local\Odenipucovotuket.dat
2011-07-11 09:26 - 2011-07-12 19:20 - 0008479 ____A C:\Users\owner\AppData\Roaming\0E94.E1C
2011-07-09 12:50 - 2011-07-09 12:50 - 0000000 ____D C:\Program Files (x86)\Apple Software Update
2011-07-09 12:49 - 2011-07-12 23:52 - 0000000 __SHD C:\Config.Msi
2011-06-30 18:00 - 2011-06-30 18:00 - 0000000 ____D C:\Users\All Users\Skype Extras
2011-06-30 18:00 - 2011-06-30 18:00 - 0000000 ____D C:\ProgramData\Skype Extras
2011-06-30 17:58 - 2011-06-30 17:59 - 0000000 ____D C:\Users\owner\FrostWire
2011-06-30 17:57 - 2011-07-25 16:39 - 0000000 ____D C:\Program Files (x86)\Ask.com
2011-06-30 17:57 - 2011-06-30 17:57 - 0001214 ____A C:\Users\owner\Desktop\FrostWire 4.21.8.lnk
2011-06-29 15:38 - 2011-05-24 03:21 - 0404992 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2011-06-29 15:38 - 2011-05-24 02:34 - 0145920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2011-06-29 15:38 - 2011-05-24 02:34 - 0064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2011-06-29 15:38 - 2011-05-24 02:34 - 0044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2011-06-29 15:38 - 2011-05-24 02:32 - 0252928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2011-06-29 15:38 - 2011-05-03 21:30 - 2326016 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll
2011-06-29 15:38 - 2011-05-03 21:28 - 2228224 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2011-06-29 15:38 - 2011-05-03 21:28 - 0779264 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2011-06-29 15:38 - 2011-05-03 21:28 - 0491520 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll
2011-06-29 15:38 - 2011-05-03 21:28 - 0288256 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2011-06-29 15:38 - 2011-05-03 21:28 - 0075264 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2011-06-29 15:38 - 2011-05-03 21:24 - 0593408 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2011-06-29 15:38 - 2011-05-03 21:24 - 0249856 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2011-06-29 15:38 - 2011-05-03 21:24 - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2011-06-29 15:38 - 2011-05-03 20:53 - 1553920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2011-06-29 15:38 - 2011-05-03 20:52 - 1401856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2011-06-29 15:38 - 2011-05-03 20:52 - 0666624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2011-06-29 15:38 - 2011-05-03 20:52 - 0428032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2011-06-29 15:38 - 2011-05-03 20:52 - 0337408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2011-06-29 15:38 - 2011-05-03 20:52 - 0197120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2011-06-29 15:38 - 2011-05-03 20:52 - 0164352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2011-06-29 15:38 - 2011-05-03 20:52 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2011-06-29 15:38 - 2011-05-03 20:52 - 0059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll


============ 3 Months Modified Files and Folders =============

2011-07-26 15:59 - 2011-07-26 15:58 - 0000000 ____D C:\FRST
2011-07-25 16:48 - 2011-05-24 14:31 - 0000000 ____D C:\Program Files (x86)\ConduitEngine
2011-07-25 16:48 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Microsoft.NET
2011-07-25 16:48 - 2009-03-12 01:30 - 0000000 ____D C:\Windows\LP
2011-07-25 16:47 - 2009-12-31 09:36 - 0000000 ____D C:\users\Guest
2011-07-25 16:47 - 2009-11-26 00:55 - 0000000 ____D C:\users\owner
2011-07-25 16:47 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\InstallShield
2011-07-25 16:47 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\icsxml
2011-07-25 16:46 - 2009-08-14 23:39 - 0000000 ____D C:\Program Files\Windows Journal
2011-07-25 16:46 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\SysWOW64\en
2011-07-25 16:46 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\System32\en
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\twain_32
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\System32\WinBioPlugIns
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Sidebar
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Defender
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\DVD Maker
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Sidebar
2011-07-25 16:46 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Defender
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 __RSD C:\Windows\Media
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ___RD C:\Program Files (x86)
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\TAPI
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\zh-TW
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\zh-HK
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\zh-CN
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\wbem
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\uk-UA
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\tr-TR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\th-TH
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sv-SE
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sppui
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sl-SI
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sk-SK
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Setup
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\ru-RU
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\ro-RO
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\pt-PT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\pt-BR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\pl-PL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\oobe
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\nl-NL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\nb-NO
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\migwiz
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\manifeststore
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\lv-LV
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\lt-LT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\ko-KR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\ja-JP
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\it-IT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\hu-HU
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\hr-HR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\he-IL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\fr-FR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\fi-FI
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\et-EE
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\es-ES
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\el-GR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Dism
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\de-DE
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\da-DK
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\cs-CZ
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\com
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\bg-BG
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\ar-SA
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\zh-TW
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\zh-HK
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\zh-CN
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\wfp
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\wbem
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\uk-UA
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\tr-TR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\th-TH
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sysprep
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sv-SE
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sr-Latn-CS
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sppui
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sl-SI
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sk-SK
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\Setup
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\ru-RU
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\ro-RO
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\pt-PT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\pt-BR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\pl-PL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\oobe
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\nl-NL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\nb-NO
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\migwiz
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\manifeststore
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\lv-LV
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\lt-LT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\ko-KR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\ja-JP
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\it-IT
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\icsxml
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\hu-HU
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\hr-HR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\he-IL
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\fr-FR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\fi-FI
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\et-EE
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\es-ES
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\el-GR
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\DriverStore
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\com
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\servicing
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Cursors
2011-07-25 16:46 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\System
2011-07-25 16:45 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Offline Web Pages
2011-07-25 16:45 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Downloaded Program Files
2011-07-25 16:45 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\addins
2011-07-25 16:45 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Photo Viewer
2011-07-25 16:45 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\Dism
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\de-DE
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\da-DK
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\cs-CZ
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\bg-BG
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\ar-SA
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\AdvancedInstallers
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\rescache
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\PolicyDefinitions
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\L2Schemas
2011-07-25 16:45 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\IME
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\SysWOW64\winrm
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\SysWOW64\WCN
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\SysWOW64\slmgr
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\System32\winrm
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\System32\WCN
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\System32\slmgr
2011-07-25 16:42 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\System32\Printing_Admin_Scripts
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Speech
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\MUI
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Msdtc
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\IME
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\DriverStore
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\spp
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\Speech
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\NDF
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\MUI
2011-07-25 16:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\IME
2011-07-25 16:41 - 2009-08-14 23:00 - 0000000 ____D C:\Windows\OOBEOffer
2011-07-25 16:41 - 2009-08-14 22:57 - 0000000 ____D C:\Windows\oem
2011-07-25 16:41 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Performance
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Speech
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\security
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\schemas
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Resources
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\PLA
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Help
2011-07-25 16:41 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Globalization
2011-07-25 16:40 - 2011-05-24 14:30 - 0000000 ____D C:\Users\owner\AppData\Roaming\BitTorrent
2011-07-25 16:40 - 2011-03-05 20:21 - 0000000 ____D C:\Users\owner\AppData\Local\The Weather Channel
2011-07-25 16:40 - 2011-03-05 20:21 - 0000000 ____D C:\Users\All Users\Real
2011-07-25 16:40 - 2011-03-05 20:21 - 0000000 ____D C:\ProgramData\Real
2011-07-25 16:40 - 2011-03-05 20:21 - 0000000 ____D C:\Program Files (x86)\The Weather Channel FW
2011-07-25 16:40 - 2010-06-22 13:45 - 0000000 ____D C:\Users\All Users\McAfee Security Scan
2011-07-25 16:40 - 2010-06-22 13:45 - 0000000 ____D C:\ProgramData\McAfee Security Scan
2011-07-25 16:40 - 2010-03-18 16:10 - 0000000 ____D C:\Users\All Users\Yahoo! Companion
2011-07-25 16:40 - 2010-03-18 16:10 - 0000000 ____D C:\ProgramData\Yahoo! Companion
2011-07-25 16:40 - 2010-03-18 16:10 - 0000000 ____D C:\Program Files (x86)\Yahoo!
2011-07-25 16:40 - 2009-11-26 01:03 - 0000000 ____D C:\Program Files (x86)\OEM
2011-07-25 16:40 - 2009-11-26 00:55 - 0000000 ____D C:\Users\owner\AppData\LocalLow
2011-07-25 16:40 - 2009-08-21 22:16 - 0000000 ____D C:\Users\All Users\WildTangent
2011-07-25 16:40 - 2009-08-21 22:16 - 0000000 ____D C:\ProgramData\WildTangent
2011-07-25 16:40 - 2009-08-14 23:36 - 0000000 __RAD C:\Windows\DeployWinRE
2011-07-25 16:40 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Microsoft Games
2011-07-25 16:40 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Branding
2011-07-25 16:40 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\AppCompat
2011-07-25 16:40 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Windows NT
2011-07-25 16:40 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared
2011-07-25 16:40 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files (x86)\Windows NT
2011-07-25 16:39 - 2011-07-12 23:52 - 0000000 ____D C:\da418ba805535847d3f8b3
2011-07-25 16:39 - 2011-07-12 22:29 - 0000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-07-25 16:39 - 2011-06-30 17:57 - 0000000 ____D C:\Program Files (x86)\Ask.com
2011-07-25 16:39 - 2011-05-24 14:31 - 0000000 ____D C:\Program Files (x86)\Conduit
2011-07-25 16:39 - 2011-05-24 14:31 - 0000000 ____D C:\Program Files (x86)\BitTorrentBar
2011-07-25 16:39 - 2009-08-21 22:16 - 0000000 ____D C:\Program Files (x86)\Gateway Games
2011-07-25 16:39 - 2009-08-21 22:15 - 0000000 ____D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
2011-07-25 16:39 - 2009-08-14 22:50 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-07-25 16:38 - 2011-07-12 23:53 - 0000000 ____D C:\Windows\System32\SPReview
2011-07-25 16:33 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\registration
2011-07-25 15:59 - 2009-12-06 18:03 - 0000000 ____D C:\Program Files (x86)\Java
2011-07-25 15:58 - 2009-08-14 22:57 - 0000000 ____D C:\Program Files (x86)\Gateway
2011-07-14 19:02 - 2011-07-12 21:49 - 1833942 ___AH C:\Users\owner\AppData\Local\IconCache.db
2011-07-14 18:57 - 2011-07-12 22:20 - 0524288 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TMContainer00000000000000000001.regtrans-ms
2011-07-14 18:57 - 2011-07-12 22:20 - 0065536 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TM.blf
2011-07-14 18:37 - 2009-10-16 21:28 - 3018592256 __ASH C:\hiberfil.sys
2011-07-13 17:15 - 2011-07-13 16:00 - 0000000 ____D C:\Users\All Users\Hitman Pro
2011-07-13 17:15 - 2011-07-13 16:00 - 0000000 ____D C:\ProgramData\Hitman Pro
2011-07-13 16:03 - 2011-07-13 16:03 - 0000000 ____D C:\Program Files\Hitman Pro 3.5
2011-07-13 09:48 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Portable Devices
2011-07-13 09:48 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Portable Devices
2011-07-12 23:53 - 2009-10-16 21:31 - 1485962 ____A C:\Windows\WindowsUpdate.log
2011-07-12 23:52 - 2011-07-12 23:52 - 0001945 ____A C:\Windows\epplauncher.mif
2011-07-12 23:52 - 2011-07-12 23:52 - 0000000 ____D C:\Windows\System32\EventProviders
2011-07-12 23:52 - 2011-07-12 23:51 - 0000000 ____D C:\Program Files\Microsoft Security Client
2011-07-12 23:52 - 2011-07-09 12:49 - 0000000 __SHD C:\Config.Msi
2011-07-12 23:52 - 2009-07-13 20:45 - 0017600 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2011-07-12 23:52 - 2009-07-13 20:45 - 0017600 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2011-07-12 23:51 - 2011-07-12 23:51 - 0743534 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2011-07-12 23:51 - 2011-07-12 23:51 - 0000000 ____D C:\Program Files (x86)\Microsoft Security Client
2011-07-12 23:51 - 2009-07-13 18:36 - 0626278 ____A C:\Windows\System32\perfh009.dat
2011-07-12 23:51 - 2009-07-13 18:36 - 0107522 ____A C:\Windows\System32\perfc009.dat
2011-07-12 23:45 - 2010-02-01 21:15 - 0000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2011-07-12 23:44 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-07-12 23:44 - 2009-07-13 20:51 - 0221256 ____A C:\Windows\setupact.log
2011-07-12 23:44 - 2009-07-13 20:45 - 0356960 ____A C:\Windows\System32\FNTCACHE.DAT
2011-07-12 23:42 - 2011-07-12 22:20 - 0524288 __ASH C:\Windows\System32\config\components{96512468-ad17-11e0-9099-00262d50cfbf}.TMContainer00000000000000000002.regtrans-ms
2011-07-12 23:10 - 2010-02-01 21:15 - 0000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2011-07-12 23:01 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\LogFiles
2011-07-12 22:30 - 2009-07-13 21:13 - 0726316 ____A C:\Windows\System32\PerfStringBackup.INI
2011-07-12 22:29 - 2011-07-12 22:29 - 0001120 ____A C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\Users\owner\AppData\Roaming\Malwarebytes
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\Users\All Users\Malwarebytes
2011-07-12 22:29 - 2011-07-12 22:29 - 0000000 ____D C:\ProgramData\Malwarebytes
2011-07-12 22:28 - 2011-07-12 22:28 - 0000285 ____A C:\Windows\System32\MRT.INI
2011-07-12 22:23 - 2009-11-26 01:27 - 50867144 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2011-07-12 22:20 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\config\TxR
2011-07-12 22:19 - 2010-08-24 19:43 - 0000000 ____D C:\Users\owner\AppData\Roaming\Skype
2011-07-12 22:16 - 2011-06-22 10:13 - 0002941 __ASH C:\Windows\SysWOW64\8a2270cb1349P.manifest
2011-07-12 22:16 - 2011-06-22 10:13 - 0000013 __ASH C:\Windows\SysWOW64\8a2270cb1349C.manifest
2011-07-12 22:16 - 2011-06-22 10:13 - 0000011 __ASH C:\Windows\SysWOW64\8a2270cb1349S.manifest
2011-07-12 22:16 - 2011-06-22 10:13 - 0000011 __ASH C:\Windows\SysWOW64\8a2270cb1349O.manifest
2011-07-12 22:14 - 2010-08-24 19:41 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-07-12 22:14 - 2010-03-18 18:24 - 0000000 ____D C:\Users\owner\AppData\Local\Downloaded Installations
2011-07-12 22:14 - 2009-08-14 23:36 - 0000000 ___HD C:\OEM
2011-07-12 22:13 - 2011-07-11 09:33 - 0000000 ____D C:\Users\owner\AppData\Local\{5AAD9D35-37F5-47FA-90FF-54686708CACF}
2011-07-12 22:13 - 2009-08-14 23:39 - 0000000 ___RD C:\Users\Public\Recorded TV
2011-07-12 22:12 - 2010-08-24 19:41 - 0000000 ____D C:\Users\All Users\Skype
2011-07-12 22:12 - 2010-08-24 19:41 - 0000000 ____D C:\ProgramData\Skype
2011-07-12 21:52 - 2011-07-11 09:33 - 0000000 ____A C:\Users\owner\AppData\Local\Xhesupohofusocac.bin
2011-07-12 20:37 - 2011-01-12 20:54 - 0524288 __ASH C:\Windows\System32\config\COMPONENTS{c5ab6e2f-1ed0-11e0-bbec-00262d50cfbf}.TMContainer00000000000000000001.regtrans-ms
2011-07-12 20:37 - 2011-01-12 20:54 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{c5ab6e2f-1ed0-11e0-bbec-00262d50cfbf}.TM.blf
2011-07-12 20:10 - 2010-09-27 06:21 - 0000000 ____D C:\Users\owner\AppData\Local\ElevatedDiagnostics
2011-07-12 19:20 - 2011-07-11 09:26 - 0008479 ____A C:\Users\owner\AppData\Roaming\0E94.E1C
2011-07-12 17:45 - 2011-07-11 09:33 - 0000120 ____A C:\Users\owner\AppData\Local\Odenipucovotuket.dat
2011-07-11 17:40 - 2011-07-11 17:40 - 0000000 ____D C:\Users\Guest\AppData\Roaming\Real
2011-07-11 17:40 - 2011-07-11 17:40 - 0000000 ____D C:\Users\Guest\AppData\Roaming\DivX
2011-07-11 17:40 - 2009-12-31 09:36 - 0082496 ____A C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
2011-07-11 17:26 - 2010-08-24 19:45 - 0000000 ____D C:\Users\owner\AppData\Roaming\skypePM
2011-07-09 12:50 - 2011-07-09 12:50 - 0000000 ____D C:\Program Files (x86)\Apple Software Update
2011-07-02 18:47 - 2011-01-11 20:16 - 0000502 ___AH C:\Windows\Tasks\Norton Security Scan for owner.job
2011-06-30 18:00 - 2011-06-30 18:00 - 0000000 ____D C:\Users\All Users\Skype Extras
2011-06-30 18:00 - 2011-06-30 18:00 - 0000000 ____D C:\ProgramData\Skype Extras
2011-06-30 17:59 - 2011-06-30 17:58 - 0000000 ____D C:\Users\owner\FrostWire
2011-06-30 17:59 - 2011-01-08 20:27 - 0000000 ____D C:\Users\owner\AppData\Roaming\FrostWire
2011-06-30 17:59 - 2011-01-08 20:26 - 0000000 ____D C:\Program Files (x86)\FrostWire
2011-06-30 17:57 - 2011-06-30 17:57 - 0001214 ____A C:\Users\owner\Desktop\FrostWire 4.21.8.lnk
2011-06-29 15:26 - 2011-04-03 18:43 - 0002351 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2011-06-22 16:08 - 2011-06-22 18:34 - 1466456064 ____A C:\Users\owner\Desktop\JanOve-just.go.with.it.avi
2011-06-22 15:56 - 2011-06-22 15:56 - 0001046 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2011-06-22 15:55 - 2011-03-05 20:22 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-06-22 15:55 - 2011-03-05 20:22 - 0198848 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-06-22 15:55 - 2011-03-05 20:22 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-06-22 15:55 - 2011-03-05 20:22 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-06-22 15:55 - 2009-10-16 21:45 - 0499712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2011-06-22 10:13 - 2011-06-22 09:42 - 0000123 ____A C:\Windows\SysWOW64\1888249788
2011-06-22 10:07 - 2011-06-22 10:05 - 0000000 ____D C:\Users\owner\Downloads\Just.Go.With.It.2011.NORDIC.AC3.DVDRip.XviD-JanOve
2011-06-21 14:38 - 2011-06-15 20:32 - 0000000 ____D C:\Users\owner\Downloads\Just.Go.with.It.2011.1080p.MKV.AC3.DTS.NL.subs.DMT
2011-06-19 17:07 - 2011-06-19 17:01 - 11660482 ____A C:\Users\owner\Downloads\J. Cole - Cheer Up.mp3
2011-06-19 13:57 - 2011-03-05 20:21 - 0000000 ____D C:\Users\owner\AppData\Roaming\Real
2011-06-19 13:55 - 2011-06-19 13:55 - 0002515 ____A C:\Users\Public\Desktop\Skype.lnk
2011-06-19 13:52 - 2011-06-19 13:52 - 0404640 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2011-06-19 13:50 - 2009-08-14 22:59 - 0188794 ____A C:\Windows\PFRO.log
2011-06-19 13:50 - 2009-08-14 22:53 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2011-06-19 13:48 - 2011-01-12 20:54 - 0524288 __ASH C:\Windows\System32\config\COMPONENTS{c5ab6e2f-1ed0-11e0-bbec-00262d50cfbf}.TMContainer00000000000000000002.regtrans-ms
2011-06-16 07:50 - 2011-06-16 07:50 - 0070144 ____A C:\Users\owner\Documents\2011 Internship Requests.xls
2011-06-15 20:30 - 2011-06-15 20:30 - 0048910 ____A C:\Users\owner\Downloads\Just_Go_with_It_(2011)_1080p_MKV_AC3_DTS_NL_subs_DMT.6409195.TPB.torrent
2011-06-15 17:47 - 2011-06-15 17:44 - 0000000 ____D C:\Program Files (x86)\CrazyRemote
2011-06-15 17:44 - 2011-06-15 17:44 - 0001054 ____A C:\Users\owner\Desktop\CrazyRemote.lnk
2011-06-15 17:44 - 2011-06-15 17:43 - 9995712 ____A C:\Users\owner\Downloads\CrazyRemoteServerInstaller2.2.5.2.exe
2011-06-15 09:31 - 2011-06-15 09:31 - 9368800 ____A C:\Users\owner\Downloads\Lil Wayne - Nightmares of The Bottom (Live Recording).mp3
2011-06-15 09:29 - 2011-06-15 09:28 - 10483541 ____A C:\Users\owner\Downloads\Big Sean - High (Feat. Wiz Khalifa & Chiddy Bang).mp3
2011-06-15 09:26 - 2011-06-15 09:26 - 7367662 ____A C:\Users\owner\Downloads\Lil Wayne - Dear Anne (Stan Pt 2).mp3
2011-06-13 17:51 - 2011-06-13 17:51 - 0001790 ____A C:\Users\Public\Desktop\iTunes.lnk
2011-06-13 17:51 - 2011-06-13 17:50 - 0000000 ____D C:\Program Files\iTunes
2011-06-13 17:51 - 2011-06-13 17:50 - 0000000 ____D C:\Program Files (x86)\iTunes
2011-06-13 17:50 - 2011-06-13 17:50 - 0000000 ____D C:\Program Files\iPod
2011-06-13 17:44 - 2011-06-13 17:44 - 0000629 ____A C:\Windows\System32\mapisvc.inf
2011-06-10 18:56 - 2011-07-12 19:18 - 3134464 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-06-09 17:32 - 2011-06-09 17:31 - 14191467 ____A C:\Users\owner\Downloads\Big Sean - So Much More (Prod By No I.D.).mp3
2011-06-09 17:23 - 2011-06-09 17:21 - 10443231 ____A C:\Users\owner\Downloads\Rebstar feat Drake & Rock City - Good Life (Prod. Boi-1da & T-Minus).mp3
2011-06-09 17:23 - 2011-06-09 17:10 - 6950319 ____A C:\Users\owner\Downloads\Drake - Marvin's Room (Prod By 40).mp3
2011-06-04 19:52 - 2011-06-04 19:51 - 7405184 ____A C:\Users\owner\Downloads\Eminem & Royce Da 59 feat Bruno Mars - Lighters.mp3
2011-06-02 17:26 - 2011-06-02 17:26 - 3803742 ____A C:\Users\owner\Downloads\J. Cole - How High.mp3
2011-06-01 22:45 - 2011-07-12 22:29 - 0362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2011-06-01 22:45 - 2011-07-12 22:29 - 0243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2011-06-01 22:45 - 2011-07-12 22:29 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2011-06-01 22:44 - 2011-07-12 22:29 - 0214528 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2011-06-01 22:42 - 2011-07-12 22:29 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2011-06-01 22:35 - 2011-07-12 22:29 - 0338944 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe
2011-06-01 21:59 - 2011-07-12 22:29 - 0014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2011-06-01 21:56 - 2011-07-12 22:29 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2011-06-01 21:54 - 2011-07-12 22:29 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2011-06-01 19:51 - 2011-07-12 22:29 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2011-06-01 19:50 - 2011-07-12 22:29 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2011-06-01 18:10 - 2011-03-05 20:21 - 0001268 ____A C:\Users\Public\Desktop\The Weather Channel Desktop .lnk
2011-05-29 05:11 - 2011-07-12 22:29 - 0039984 ____A (Malwarebytes Corporation) C:\Windows\SysWOW64\Drivers\mbamswissarmy.sys
2011-05-27 21:22 - 2011-06-16 17:32 - 9316352 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-05-27 20:38 - 2011-06-16 17:32 - 5984256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-05-27 19:25 - 2011-06-16 17:31 - 1638912 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-05-27 19:00 - 2011-06-16 17:31 - 1638912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-05-27 18:32 - 2011-05-27 18:31 - 3822606 ____A C:\Users\owner\Downloads\Mac Miller feat Wale - So What.mp3
2011-05-27 18:15 - 2011-05-27 17:37 - 11773510 ____A C:\Users\owner\Downloads\Chiddy Bang - Heatwave feat Mac Miller, Trae The Truth & Casey Veggies.mp3
2011-05-27 18:12 - 2011-05-27 17:29 - 8766336 ____A C:\Users\owner\Downloads\01 Bring It Back.mp3
2011-05-27 18:07 - 2011-05-27 18:07 - 3356993 ____A C:\Users\owner\Downloads\Mac Miller - Donald Trump.mp3
2011-05-27 17:50 - 2011-05-27 17:08 - 6279181 ____A C:\Users\owner\Downloads\01 Over (Dirty).mp3
2011-05-27 17:46 - 2011-05-27 17:09 - 14258188 ____A C:\Users\owner\Downloads\Drake Feat. Kanye West, Lil Wayne & Eminem - Forever [2156].mp3
2011-05-27 17:26 - 2011-05-27 17:25 - 5785896 ____A C:\Users\owner\Downloads\T.I. ft Rihanna - Live Your Life.mp3
2011-05-27 17:16 - 2011-05-27 17:16 - 0000000 ____D C:\Users\owner\Downloads\Kanye West - Heartless [Single][2008] - 320kbps - I.Tunes
2011-05-27 17:16 - 2011-05-27 17:14 - 5516111 ____A C:\Users\owner\Downloads\Kayne West - Stronger.mp3
2011-05-27 17:14 - 2011-05-27 17:13 - 0000000 ____D C:\Users\owner\Downloads\Jay-Z Feat. Alicia Keys - Empire State Of Mind
2011-05-27 17:13 - 2011-05-27 17:12 - 0000000 ____D C:\Users\owner\Downloads\Eminem - Fly Away
2011-05-27 17:11 - 2011-05-27 17:11 - 4541576 ____A C:\Users\owner\Downloads\Dr Dre Ft Eminem Skylar Grey - I Need A Doctor.mp3
2011-05-27 17:06 - 2011-05-27 17:05 - 3658428 ____A C:\Users\owner\Downloads\Chris Brown Feat Lil Wayne amp Busta Rhymes - Look At Me Now.mp3
2011-05-27 17:01 - 2011-05-27 17:00 - 3672137 ____A C:\Users\owner\Downloads\B.o.B. - NY, NY (New Song 2011) (Full Version).mp3
2011-05-24 17:46 - 2011-05-24 14:31 - 0000000 ____D C:\Users\owner\Downloads\The.Tunnel.2011.720p.x264-VODO
2011-05-24 15:14 - 2009-11-26 01:19 - 0270720 ____A (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2011-05-24 14:30 - 2011-05-24 14:30 - 0000974 ____A C:\Users\Public\Desktop\BitTorrent.lnk
2011-05-24 14:30 - 2011-05-24 14:30 - 0000000 ____D C:\Program Files (x86)\BitTorrent
2011-05-24 14:29 - 2011-05-24 14:29 - 4771184 ____A (BitTorrent, Inc.) C:\Users\owner\Desktop\BitTorrent-7.2.1.exe
2011-05-24 03:21 - 2011-06-29 15:38 - 0404992 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2011-05-24 02:34 - 2011-06-29 15:38 - 0145920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2011-05-24 02:34 - 2011-06-29 15:38 - 0064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2011-05-24 02:34 - 2011-06-29 15:38 - 0044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2011-05-24 02:32 - 2011-06-29 15:38 - 0252928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2011-05-21 18:28 - 2011-05-21 18:28 - 5164075 ____A C:\Users\owner\Downloads\Drake - Dreams Money Can Buy.mp3
2011-05-13 23:36 - 2011-07-12 22:29 - 1162240 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2011-05-13 23:36 - 2011-07-12 22:29 - 0422400 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2011-05-13 23:18 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2011-05-13 22:32 - 2011-07-12 22:29 - 0837120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2011-05-13 22:32 - 2011-07-12 22:29 - 0272384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-05-13 22:22 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2011-05-13 20:25 - 2011-07-12 22:29 - 0006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2011-05-13 20:25 - 2011-07-12 22:29 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-05-13 20:25 - 2011-07-12 22:29 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-05-13 20:25 - 2011-07-12 22:29 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2011-05-12 17:55 - 2011-05-12 17:55 - 10709495 ____A C:\Users\owner\Downloads\Ryan Leslie - Glory.mp3
2011-05-12 17:51 - 2011-05-12 17:51 - 8233249 ____A C:\Users\owner\Downloads\J. Cole - See it to Believe it.mp3
2011-05-12 17:48 - 2011-05-12 17:47 - 7213933 ____A C:\Users\owner\Downloads\DJ Khaled - I'm On One feat Drake, Rick Ross & Lil Wayne.mp3
2011-05-10 04:06 - 2011-05-10 04:06 - 4517664 ____A (Apple, Inc.) C:\Windows\System32\usbaaplrc.dll
2011-05-10 04:06 - 2011-05-10 04:06 - 0051712 ____A (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl64.sys
2011-05-03 21:30 - 2011-06-29 15:38 - 2326016 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll
2011-05-03 21:28 - 2011-06-29 15:38 - 2228224 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2011-05-03 21:28 - 2011-06-29 15:38 - 0779264 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2011-05-03 21:28 - 2011-06-29 15:38 - 0491520 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll
2011-05-03 21:28 - 2011-06-29 15:38 - 0288256 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2011-05-03 21:28 - 2011-06-29 15:38 - 0075264 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2011-05-03 21:24 - 2011-06-29 15:38 - 0593408 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2011-05-03 21:24 - 2011-06-29 15:38 - 0249856 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2011-05-03 21:24 - 2011-06-29 15:38 - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2011-05-03 20:53 - 2011-06-29 15:38 - 1553920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2011-05-03 20:52 - 2011-06-29 15:38 - 1401856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2011-05-03 20:52 - 2011-06-29 15:38 - 0666624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2011-05-03 20:52 - 2011-06-29 15:38 - 0428032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2011-05-03 20:52 - 2011-06-29 15:38 - 0337408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2011-05-03 20:52 - 2011-06-29 15:38 - 0197120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2011-05-03 20:52 - 2011-06-29 15:38 - 0164352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2011-05-03 20:52 - 2011-06-29 15:38 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2011-05-03 20:52 - 2011-06-29 15:38 - 0059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2011-05-03 18:51 - 2011-06-16 17:32 - 0287744 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2011-05-03 18:51 - 2011-06-16 17:32 - 0157696 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2011-05-03 18:51 - 2011-06-16 17:32 - 0126464 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2011-05-02 21:21 - 2011-06-16 17:31 - 0976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2011-05-02 20:50 - 2011-06-16 17:31 - 0740864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2011-05-02 19:34 - 2011-04-03 18:18 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2011-04-28 19:13 - 2011-06-16 17:31 - 0461312 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2011-04-28 19:12 - 2011-06-16 17:31 - 0399872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2011-04-28 19:12 - 2011-06-16 17:31 - 0161792 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2011-04-26 18:57 - 2011-06-16 17:32 - 0102400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 17%
Total physical RAM: 3838.36 MB
Available physical RAM: 3150.99 MB
Total Pagefile: 3836.51 MB
Available Pagefile: 3135.89 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

======================= Partitions =========================

1 Drive c: (Gateway) (Fixed) (Total:286.27 GB) (Free:219.8 GB) NTFS
2 Drive e: (PQSERVICE) (Fixed) (Total:11.72 GB) (Free:3 GB) NTFS
4 Drive g: (Lexar) (Removable) (Total:3.73 GB) (Free:3.73 GB) FAT32
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
6 Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==========================================================

Last Boot: 2011-07-12 20:03

======================= End Of Log ==========================

#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 27 July 2011 - 03:00 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt

start
cmd: bootrec /FixMbr
Control:
end

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now please enter System Recovery Options.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

Then restart the computer, let it boot normally and tell me how it went.

#7 PGAHopeful26

PGAHopeful26
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 27 July 2011 - 03:19 PM

No joy. Still flashes blue screen then prompts for startup repair. Here's the Fixlog.txt though.

Fix result of Farbars's Recovery Tool (FRST written by farbar version 2.1.7)
Ran by SYSTEM at 2011-07-27 16:17:23 R:2
Running from G:\

==============================================


========= bootrec /FixMbr =========

T h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========

#8 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 27 July 2011 - 03:58 PM

Is that the whole log?

Could you post the content of Fixlist.txt?

#9 PGAHopeful26

PGAHopeful26
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 PM

Posted 01 August 2011 - 02:40 AM

Sorry I've been busy. That's the entire content of Fixlist.txt.

#10 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 01 August 2011 - 05:31 AM

No worries about the delay.

That is the Fixlog.txt please post the content of Fixlist.txt that you made, it should be on the flash drive.

#11 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 07 August 2011 - 10:09 AM

I wonder if you get time to finish up this topic. In case you can please attach both Fixlist.txt and Fixlog.txt from your flash drive to your reply.

#12 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:12:00 AM

Posted 11 August 2011 - 04:21 PM

This thread will now be closed due to lack of activity.

If you need this topic reopened, please send me a PM and I will reopen it for you.

If you should have a new issue, please start a new topic.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users