Successfully blocked access to malicious web site

And hopefully the last part:

==================== One Month Modified Files and Folders =======

2013-01-16 12:44 - 2012-07-25 21:26 - 00262144 __ASH C:\Windows\System32\config\BBI
2013-01-16 12:43 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\Application Data\Skype
2013-01-16 12:43 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Skype
2013-01-16 12:43 - 2012-11-05 14:51 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2013-01-16 12:42 - 2012-12-28 10:01 - 00000000 ___RD C:\Users\Kathryn\Dropbox
2013-01-16 12:42 - 2012-12-28 09:58 - 00000000 ____D C:\Users\Kathryn\Application Data\Dropbox
2013-01-16 12:42 - 2012-12-28 09:58 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Dropbox
2013-01-16 12:41 - 2013-01-16 12:41 - 00000645 ____A C:\Windows\setupact.log
2013-01-16 12:41 - 2013-01-16 12:41 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-01-16 12:41 - 2013-01-16 12:41 - 00000000 ____A C:\Windows\setuperr.log
2013-01-16 12:41 - 2012-12-27 15:10 - 00000922 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-01-16 12:41 - 2012-07-25 23:22 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-01-16 12:31 - 2013-01-05 09:53 - 01907658 ____A C:\Windows\WindowsUpdate.log
2013-01-16 12:22 - 2012-07-25 23:28 - 00850046 ____A C:\Windows\System32\PerfStringBackup.INI
2013-01-16 12:21 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\System32\sru
2013-01-16 10:15 - 2012-12-27 15:10 - 00000926 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-01-15 20:58 - 2013-01-15 20:58 - 01464233 ____A (Farbar) C:\Users\Kathryn\Downloads\FRST64 (1).exe
2013-01-15 17:42 - 2013-01-15 17:42 - 00108226 ____A C:\Users\Kathryn\Downloads\FRST.txt
2013-01-15 17:40 - 2013-01-15 17:40 - 00000000 ____D C:\FRST
2013-01-15 17:39 - 2013-01-15 17:39 - 00710824 ____A (Reimage®) C:\Users\Kathryn\Downloads\ReimageRepairNU.exe
2013-01-15 17:36 - 2013-01-15 17:36 - 01464233 ____A (Farbar) C:\Users\Kathryn\Downloads\FRST64.exe
2013-01-15 17:33 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-01-15 16:27 - 2013-01-15 16:27 - 05021250 ____A C:\Users\Kathryn\Downloads\ComboFix (2).exe
2013-01-15 16:26 - 2013-01-15 16:26 - 05022206 ____A (Swearware) C:\Users\Kathryn\Downloads\ComboFix (1).exe
2013-01-15 16:25 - 2013-01-15 16:24 - 05022206 ____A (Swearware) C:\Users\Kathryn\Downloads\ComboFix.exe
2013-01-15 15:25 - 2013-01-15 15:25 - 00433640 ____A C:\Windows\System32\FNTCACHE.DAT
2013-01-15 15:08 - 2013-01-15 15:07 - 00000000 ____D C:\Users\Kathryn\Downloads\mbar-1.01.0.1016
2013-01-15 15:07 - 2013-01-15 15:07 - 13462931 ____A C:\Users\Kathryn\Downloads\mbar-1.01.0.1016.zip
2013-01-15 15:05 - 2013-01-15 15:05 - 00001284 ____A C:\Users\Kathryn\Desktop\RKreport[2]_D_01152013_02d1605.txt
2013-01-15 15:05 - 2013-01-15 15:05 - 00001231 ____A C:\Users\Kathryn\Desktop\RKreport[1]_S_01152013_02d1605.txt
2013-01-15 15:05 - 2013-01-15 15:04 - 00000000 ____D C:\Users\Kathryn\Desktop\RK_Quarantine
2013-01-15 15:04 - 2013-01-15 15:04 - 00764416 ____A C:\Users\Kathryn\Downloads\RogueKiller.exe
2013-01-15 08:00 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\rescache
2013-01-15 07:25 - 2013-01-15 07:25 - 00008432 ____A C:\Users\Kathryn\Desktop\attach.txt
2013-01-15 07:24 - 2013-01-15 07:25 - 00030906 ____A C:\Users\Kathryn\Desktop\dds.txt
2013-01-15 07:22 - 2013-01-15 07:22 - 00688992 ____R (Swearware) C:\Users\Kathryn\Downloads\dds.scr
2013-01-15 07:22 - 2013-01-15 07:22 - 00688992 ____A (Swearware) C:\Users\Kathryn\Downloads\dds (3).scr
2013-01-15 07:22 - 2013-01-15 07:22 - 00688992 ____A (Swearware) C:\Users\Kathryn\Downloads\dds (2).scr
2013-01-15 07:22 - 2013-01-15 07:22 - 00688992 ____A (Swearware) C:\Users\Kathryn\Downloads\dds (1).scr
2013-01-15 07:13 - 2012-07-25 21:26 - 00262144 __ASH C:\Windows\System32\config\ELAM
2013-01-15 07:06 - 2012-11-05 14:48 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-01-15 07:05 - 2013-01-12 10:13 - 00003094 ____A C:\Windows\PFRO.log
2013-01-15 07:04 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\WinStore
2013-01-14 12:42 - 2012-11-05 14:43 - 00000000 ____D C:\Users\All Users\CyberLink
2013-01-14 12:42 - 2012-11-05 14:43 - 00000000 ____D C:\Users\All Users\Application Data\CyberLink
2013-01-12 10:18 - 2012-12-27 15:10 - 00002257 ____A C:\Users\Kathryn\Desktop\Google Chrome.lnk
2013-01-12 10:07 - 2013-01-07 19:56 - 00012075 ____A C:\Users\Kathryn\My Documents\Job applications.xlsx
2013-01-12 10:07 - 2013-01-07 19:56 - 00012075 ____A C:\Users\Kathryn\Documents\Job applications.xlsx
2013-01-10 08:33 - 2012-12-28 13:30 - 00000000 ____D C:\Users\All Users\Microsoft Help
2013-01-10 08:33 - 2012-12-28 13:30 - 00000000 ____D C:\Users\All Users\Application Data\Microsoft Help
2013-01-09 16:53 - 2013-01-09 16:53 - 00001111 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-01-09 16:53 - 2013-01-09 16:53 - 00001111 ____A C:\Users\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2013-01-09 16:53 - 2013-01-09 16:53 - 00000000 ____D C:\Users\Kathryn\Application Data\Malwarebytes
2013-01-09 16:53 - 2013-01-09 16:53 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Malwarebytes
2013-01-09 16:53 - 2013-01-09 16:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-01-09 16:52 - 2013-01-09 16:52 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Kathryn\Downloads\mbam-setup-1.70.0.1100 (1).exe
2013-01-09 16:52 - 2013-01-09 16:52 - 00000000 ____D C:\Users\All Users\Malwarebytes
2013-01-09 16:52 - 2013-01-09 16:52 - 00000000 ____D C:\Users\All Users\Application Data\Malwarebytes
2013-01-09 16:51 - 2013-01-09 16:51 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Kathryn\Downloads\mbam-setup-1.70.0.1100.exe
2013-01-09 08:18 - 2012-12-28 14:56 - 67599240 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-01-06 15:04 - 2012-12-28 09:28 - 00000000 ____D C:\Users\Kathryn\Local Settings\softthinks
2013-01-06 15:04 - 2012-12-28 09:28 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\softthinks
2013-01-06 15:04 - 2012-12-28 09:28 - 00000000 ____D C:\Users\Kathryn\AppData\Local\softthinks
2013-01-04 17:37 - 2012-11-05 16:00 - 00000000 ____D C:\Windows\Panther
2013-01-04 17:36 - 2013-01-04 17:36 - 00000000 ____D C:\Program Files\CCleaner
2013-01-04 17:36 - 2013-01-04 17:35 - 04178040 ____A (Piriform Ltd) C:\Users\Kathryn\Downloads\ccsetup326 (1).exe
2013-01-04 17:33 - 2013-01-04 17:33 - 04178040 ____A (Piriform Ltd) C:\Users\Kathryn\Downloads\ccsetup326.exe
2013-01-04 12:44 - 2013-01-04 12:44 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Amazon_Services_LLC
2013-01-04 12:44 - 2013-01-04 12:44 - 00000000 ____D C:\Users\Kathryn\Local Settings\Amazon_Services_LLC
2013-01-04 12:44 - 2013-01-04 12:44 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Amazon_Services_LLC
2013-01-02 15:07 - 2013-01-02 15:06 - 00000000 ____D C:\Users\Kathryn\Application Data\Apple Computer
2013-01-02 15:07 - 2013-01-02 15:06 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00001785 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-01-02 15:06 - 2013-01-02 15:06 - 00001785 ____A C:\Users\All Users\Desktop\iTunes.lnk
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\Kathryn\Local Settings\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\All Users\Application Data\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\All Users\Application Data\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\All Users\Apple Computer
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Program Files\iTunes
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Program Files\iPod
2013-01-02 15:06 - 2013-01-02 15:06 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Users\Kathryn\Local Settings\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Users\All Users\Application Data\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Users\All Users\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Program Files\Bonjour
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-01-02 15:05 - 2013-01-02 15:05 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-01-02 15:04 - 2013-01-02 15:03 - 88946664 ____A (Apple Inc.) C:\Users\Kathryn\Downloads\iTunes64Setup.exe
2013-01-02 14:55 - 2012-07-26 00:12 - 00000000 ___RD C:\Windows\ToastData
2013-01-02 14:54 - 2012-07-26 00:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-01-02 14:54 - 2012-07-25 21:38 - 00000000 ____D C:\Windows\System32\oobe
2013-01-02 14:48 - 2013-01-02 14:48 - 00024576 ____A (Microsoft Corporation) C:\Users\Kathryn\Downloads\delmigprov (2).exe
2013-01-02 14:30 - 2013-01-02 14:30 - 07228798 ____A C:\Users\Kathryn\Downloads\Windows8-RT-KB2761094-x64.msu
2013-01-02 14:30 - 2013-01-02 14:30 - 00439787 ____A C:\Users\Kathryn\Downloads\Windows8-RT-KB2764870-x64.msu
2013-01-02 14:09 - 2013-01-02 14:09 - 00024576 ____A (Microsoft Corporation) C:\Users\Kathryn\Downloads\delmigprov (1).exe
2013-01-02 12:39 - 2013-01-02 12:38 - 170699203 ____A C:\Users\Kathryn\Downloads\Windows8-RT-KB2756872-x64.msu
2013-01-02 12:29 - 2013-01-02 12:29 - 00024576 ____A (Microsoft Corporation) C:\Users\Kathryn\Downloads\delmigprov.exe
2013-01-02 03:49 - 2013-01-02 03:49 - 00000117 ____A C:\Windows\System32\netcfg-137287781.txt
2013-01-02 03:49 - 2013-01-02 03:49 - 00000117 ____A C:\Windows\System32\netcfg-137284578.txt
2012-12-31 13:57 - 2012-12-31 13:57 - 00000117 ____A C:\Windows\System32\netcfg-1006171.txt
2012-12-31 13:56 - 2012-12-31 13:56 - 00000117 ____A C:\Windows\System32\netcfg-946500.txt
2012-12-31 13:55 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\System32\NDF
2012-12-31 13:41 - 2012-12-31 13:41 - 00000117 ____A C:\Windows\System32\netcfg-51359.txt
2012-12-31 13:39 - 2012-12-31 13:39 - 00000117 ____A C:\Windows\System32\netcfg-1014765.txt
2012-12-31 13:38 - 2012-12-31 13:38 - 06219408 ____A C:\Users\Kathryn\Downloads\3520A04.EXE
2012-12-31 13:23 - 2012-12-31 13:23 - 00000117 ____A C:\Windows\System32\netcfg-50062.txt
2012-12-31 13:22 - 2012-12-31 13:22 - 00000117 ____A C:\Windows\System32\netcfg-257209437.txt
2012-12-31 13:20 - 2012-07-26 00:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2012-12-31 13:00 - 2012-07-26 00:12 - 00000000 ____D C:\Windows\System32\FxsTmp
2012-12-31 08:02 - 2012-12-31 08:02 - 00000117 ____A C:\Windows\System32\netcfg-238015515.txt
2012-12-31 08:02 - 2012-12-31 08:02 - 00000117 ____A C:\Windows\System32\netcfg-238014062.txt
2012-12-29 12:59 - 2012-12-29 12:59 - 00000117 ____A C:\Windows\System32\netcfg-83053484.txt
2012-12-29 12:37 - 2012-12-29 12:37 - 00001171 ____A C:\Windows\System32\netcfg-81758953.txt
2012-12-29 12:37 - 2012-12-29 12:37 - 00000117 ____A C:\Windows\System32\netcfg-81779828.txt
2012-12-29 12:37 - 2012-12-29 12:37 - 00000117 ____A C:\Windows\System32\netcfg-81776750.txt
2012-12-29 12:37 - 2012-12-29 12:37 - 00000117 ____A C:\Windows\System32\netcfg-81773546.txt
2012-12-29 12:37 - 2012-12-29 12:37 - 00000000 ____D C:\Users\Public\Juniper Networks
2012-12-29 12:37 - 2012-12-29 12:37 - 00000000 ____D C:\Program Files (x86)\Juniper Networks
2012-12-29 12:37 - 2012-12-28 15:33 - 00000000 ____D C:\Users\Kathryn\Application Data\Juniper Networks
2012-12-29 12:37 - 2012-12-28 15:33 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Juniper Networks
2012-12-29 12:19 - 2012-12-29 12:19 - 00000000 ___HD C:\Windows\System32\CanonIJ Uninstaller Information
2012-12-29 12:19 - 2012-12-29 12:19 - 00000000 ___HD C:\Users\All Users\CanonBJ
2012-12-29 12:19 - 2012-12-29 12:19 - 00000000 ___HD C:\Users\All Users\Application Data\CanonBJ
2012-12-29 12:19 - 2012-12-29 12:19 - 00000000 ___HD C:\Program Files\CanonBJ
2012-12-29 12:19 - 2012-12-29 12:18 - 17196360 ____A C:\Users\Kathryn\Downloads\mx300swin64101ej.exe
2012-12-29 12:17 - 2012-12-29 12:17 - 16397640 ____A C:\Users\Kathryn\Downloads\mx300swin101ej.exe
2012-12-29 12:15 - 2012-12-29 12:15 - 02539496 ____A (LionSea SoftWare ) C:\Users\Kathryn\Downloads\setup (1).exe
2012-12-29 12:14 - 2012-12-29 12:14 - 00000000 ____D C:\Program Files (x86)\DriverTuner
2012-12-29 12:13 - 2012-12-29 12:13 - 02539496 ____A (LionSea SoftWare ) C:\Users\Kathryn\Downloads\setup.exe
2012-12-29 11:51 - 2012-12-29 11:51 - 00000117 ____A C:\Windows\System32\netcfg-78991046.txt
2012-12-29 11:50 - 2012-12-29 11:50 - 00000117 ____A C:\Windows\System32\netcfg-78953718.txt
2012-12-29 11:50 - 2012-12-29 11:50 - 00000117 ____A C:\Windows\System32\netcfg-78908468.txt
2012-12-29 11:48 - 2012-12-29 11:48 - 00001131 ____A C:\Windows\System32\netcfg-78808015.txt
2012-12-29 11:48 - 2012-12-29 11:48 - 00000117 ____A C:\Windows\System32\netcfg-78809187.txt
2012-12-29 09:47 - 2012-11-05 14:43 - 00000000 ____D C:\Users\All Users\PCDr
2012-12-29 09:47 - 2012-11-05 14:43 - 00000000 ____D C:\Users\All Users\Application Data\PCDr
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default\Local Settings\Microsoft Help
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default\Local Settings\Application Data\Microsoft Help
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default User\Local Settings\Microsoft Help
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default User\Local Settings\Application Data\Microsoft Help
2012-12-29 09:03 - 2012-12-29 09:03 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2012-12-29 09:03 - 2012-07-25 21:26 - 00000199 ____A C:\Windows\win.ini
2012-12-29 08:52 - 2012-12-29 08:52 - 00000117 ____A C:\Windows\System32\netcfg-68223156.txt
2012-12-29 08:52 - 2012-12-29 08:52 - 00000117 ____A C:\Windows\System32\netcfg-68223000.txt
2012-12-28 17:30 - 2012-12-28 17:30 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2012-12-28 17:30 - 2012-12-28 17:30 - 00002515 ____A C:\Users\All Users\Desktop\Skype.lnk
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ___RD C:\Program Files (x86)\Skype
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\Local Settings\couponamazing
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\couponamazing
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\Application Data\SkypePackages
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\SkypePackages
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\Kathryn\AppData\Local\couponamazing
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\All Users\Skype
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Users\All Users\Application Data\Skype
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____D C:\Program Files (x86)\PricePeep
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____A C:\extensions.sqlite
2012-12-28 17:30 - 2012-12-28 17:30 - 00000000 ____A C:\end
2012-12-28 17:29 - 2012-12-28 17:30 - 20185088 ____A C:\Users\Kathryn\Downloads\SkypeSetup_6.0.0.126.msi
2012-12-28 17:29 - 2012-12-28 17:29 - 01203848 ____A C:\Users\Kathryn\Downloads\SkypeSetup.exe
2012-12-28 15:32 - 2012-12-28 15:32 - 00896016 ____A (Oracle Corporation) C:\Users\Kathryn\Downloads\chromeinstall-7u10.exe
2012-12-28 15:32 - 2012-12-28 15:32 - 00859072 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2012-12-28 15:32 - 2012-12-28 15:32 - 00779704 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2012-12-28 15:32 - 2012-12-28 15:32 - 00260528 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2012-12-28 15:32 - 2012-12-28 15:32 - 00174000 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2012-12-28 15:32 - 2012-12-28 15:32 - 00173992 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2012-12-28 15:32 - 2012-12-28 15:32 - 00095184 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2012-12-28 15:32 - 2012-12-28 15:32 - 00000000 ____D C:\Users\All Users\Sun
2012-12-28 15:32 - 2012-12-28 15:32 - 00000000 ____D C:\Users\All Users\Application Data\Sun
2012-12-28 15:32 - 2012-12-28 15:32 - 00000000 ____D C:\Program Files (x86)\Java
2012-12-28 15:30 - 2012-12-28 15:30 - 00118104 ____A C:\Users\Kathryn\Local Settings\GDIPFONTCACHEV1.DAT
2012-12-28 15:30 - 2012-12-28 15:30 - 00118104 ____A C:\Users\Kathryn\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-12-28 15:30 - 2012-12-28 15:30 - 00118104 ____A C:\Users\Kathryn\AppData\Local\GDIPFONTCACHEV1.DAT
2012-12-28 13:55 - 2012-12-28 13:55 - 00000117 ____A C:\Windows\System32\netcfg-39687.txt
2012-12-28 13:54 - 2012-12-28 13:54 - 00000117 ____A C:\Windows\System32\netcfg-16477937.txt
2012-12-28 13:51 - 2012-12-28 13:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2012-12-28 13:47 - 2012-12-28 13:42 - 368945248 ____A (Microsoft Corporation) C:\Users\Kathryn\Downloads\office2007sp3-kb2526086-fullfile-en-us.exe
2012-12-28 13:42 - 2012-12-28 13:42 - 00000000 ____D C:\Program Files (x86)\MSECache
2012-12-28 13:41 - 2012-12-28 13:41 - 38808920 ____A (Microsoft Corporation) C:\Users\Kathryn\Downloads\FileFormatConverters.exe
2012-12-28 13:37 - 2012-12-28 13:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2012-12-28 13:37 - 2012-11-05 14:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2012-12-28 13:37 - 2012-11-05 14:33 - 00000000 ____D C:\Program Files (x86)\MSBuild
2012-12-28 13:37 - 2012-07-25 23:52 - 00000000 ____D C:\Windows\ShellNew
2012-12-28 13:31 - 2012-12-28 13:31 - 00000000 ____D C:\Program Files\Microsoft Office
2012-12-28 13:31 - 2012-12-28 13:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2012-12-28 13:30 - 2012-12-28 13:30 - 00000000 ____D C:\Users\Kathryn\Local Settings\Microsoft Help
2012-12-28 13:30 - 2012-12-28 13:30 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Microsoft Help
2012-12-28 13:30 - 2012-12-28 13:30 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Microsoft Help
2012-12-28 13:29 - 2012-12-28 13:29 - 00000000 __RHD C:\MSOCache
2012-12-28 10:09 - 2012-12-28 10:06 - 00000000 ____D C:\Users\Kathryn\Application Data\PCDr
2012-12-28 10:09 - 2012-12-28 10:06 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\PCDr
2012-12-28 10:09 - 2012-11-05 14:43 - 00000000 ____D C:\Program Files\Dell Support Center
2012-12-28 10:01 - 2012-12-28 10:01 - 00001049 ____A C:\Users\Kathryn\Desktop\Dropbox.lnk
2012-12-28 10:01 - 2012-12-27 14:28 - 00000000 ____D C:\users\Kathryn
2012-12-28 09:58 - 2012-12-28 09:57 - 19241048 ____A (Dropbox, Inc.) C:\Users\Kathryn\Downloads\Dropbox 1.6.10.exe
2012-12-28 09:33 - 2012-12-28 09:33 - 00000000 ____D C:\Program Files (x86)\Dell Digital Delivery
2012-12-28 09:33 - 2012-05-08 03:37 - 00000000 ____D C:\DELL
2012-12-28 09:21 - 2012-12-28 09:21 - 00000117 ____A C:\Windows\System32\netcfg-66781.txt
2012-12-28 09:20 - 2012-11-05 14:48 - 00000000 ____D C:\Program Files\Common Files\mcafee
2012-12-28 09:19 - 2012-12-28 09:19 - 00000117 ____A C:\Windows\System32\netcfg-68333234.txt
2012-12-27 18:46 - 2012-11-05 14:48 - 00000000 ____D C:\Users\All Users\McAfee
2012-12-27 18:46 - 2012-11-05 14:48 - 00000000 ____D C:\Users\All Users\Application Data\McAfee
2012-12-27 18:45 - 2012-07-26 00:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2012-12-27 15:45 - 2012-12-27 15:09 - 00000000 ____D C:\Users\Kathryn\Local Settings\Deployment
2012-12-27 15:45 - 2012-12-27 15:09 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Deployment
2012-12-27 15:45 - 2012-12-27 15:09 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Deployment
2012-12-27 15:10 - 2012-12-27 15:10 - 00000000 ____D C:\Users\Kathryn\Local Settings\Google
2012-12-27 15:10 - 2012-12-27 15:10 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Google
2012-12-27 15:10 - 2012-12-27 15:10 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Google
2012-12-27 15:10 - 2012-12-27 15:10 - 00000000 ____D C:\Program Files (x86)\Google
2012-12-27 15:09 - 2012-12-27 15:09 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Apps\2.0
2012-12-27 14:47 - 2012-12-27 14:28 - 00000000 ____D C:\Users\Kathryn\Local Settings\Packages
2012-12-27 14:47 - 2012-12-27 14:28 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Packages
2012-12-27 14:47 - 2012-12-27 14:28 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Packages
2012-12-27 14:32 - 2012-12-27 14:32 - 00000000 ____D C:\Users\Kathryn\Application Data\Intel Corporation
2012-12-27 14:32 - 2012-12-27 14:32 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Intel Corporation
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\My Documents\Bluetooth Exchange Folder
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\Local Settings\Power2Go8
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\Local Settings\Broadcom
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Power2Go8
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\Broadcom
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\Documents\Bluetooth Exchange Folder
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Power2Go8
2012-12-27 14:31 - 2012-12-27 14:31 - 00000000 ____D C:\Users\Kathryn\AppData\Local\Broadcom
2012-12-27 14:31 - 2012-12-27 14:28 - 00000000 ____D C:\Users\All Users\PRICache
2012-12-27 14:31 - 2012-12-27 14:28 - 00000000 ____D C:\Users\All Users\Application Data\PRICache
2012-12-27 14:31 - 2012-11-05 14:36 - 00000000 ____D C:\Users\All Users\Intel
2012-12-27 14:31 - 2012-11-05 14:36 - 00000000 ____D C:\Users\All Users\Application Data\Intel
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\Local Settings\VirtualStore
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\Local Settings\Application Data\VirtualStore
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\Application Data\Macromedia
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\Application Data\Leadertech
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\Application Data\Adobe
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Macromedia
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Leadertech
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\AppData\Roaming\Adobe
2012-12-27 14:29 - 2012-12-27 14:29 - 00000000 ____D C:\Users\Kathryn\AppData\Local\VirtualStore
2012-12-27 14:28 - 2012-12-27 14:28 - 00000020 ___SH C:\Users\Kathryn\ntuser.ini
2012-12-27 14:24 - 2012-12-27 14:24 - 00000117 ____A C:\Windows\System32\netcfg-234234.txt
2012-12-27 14:24 - 2012-12-27 14:24 - 00000117 ____A C:\Windows\System32\netcfg-234203.txt
2012-12-27 14:24 - 2012-12-27 14:24 - 00000117 ____A C:\Windows\System32\netcfg-231140.txt
2012-12-27 14:24 - 2012-12-27 14:24 - 00000117 ____A C:\Windows\System32\netcfg-224703.txt
2012-12-27 14:23 - 2012-12-27 14:23 - 00000117 ____A C:\Windows\System32\netcfg-206406.txt
2012-12-18 15:32 - 2012-07-26 00:14 - 00695640 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-12-18 15:32 - 2012-07-26 00:14 - 00080728 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2013-01-02 11:42] - [2012-10-10 21:46] - 0517120 ____A (Microsoft Corporation) BCF2036A0DD579E47C008C133550283E

C:\Windows\System32\wininit.exe
[2012-07-25 16:03] - [2012-07-25 19:08] - 0132608 ____A (Microsoft Corporation) FE9AB232B56A12224E8A3F3F9878C9A3

C:\Windows\explorer.exe
[2013-01-02 11:42] - [2012-10-10 23:35] - 2380944 ____A (Microsoft Corporation) E13A31D5254C25406A7946BDD9B06364

C:\Windows\SysWOW64\explorer.exe
[2013-01-02 11:42] - [2012-10-10 21:56] - 2115952 ____A (Microsoft Corporation) 953ADECFF08202A01EFC6110214FDE02

C:\Windows\System32\svchost.exe
[2013-01-02 14:35] - [2012-09-19 22:33] - 0029696 ____A (Microsoft Corporation) EDE27EACE742EE2888C5DD36400A2EC0

C:\Windows\SysWOW64\svchost.exe
[2013-01-02 14:35] - [2012-09-19 21:55] - 0023040 ____A (Microsoft Corporation) A46DC432F81473F526E3994AA483E366

C:\Windows\System32\services.exe
[2013-01-02 14:33] - [2012-09-19 22:33] - 0410624 ____A (Microsoft Corporation) 8F226143046435C75C033B0C52E90FFE

C:\Windows\System32\User32.dll
[2013-01-02 14:32] - [2012-09-19 22:33] - 1342464 ____A (Microsoft Corporation) A99AD14F26BDA7D7F27F76BC91B7EED7

C:\Windows\SysWOW64\User32.dll
[2013-01-02 14:32] - [2012-09-19 20:10] - 1126912 ____A (Microsoft Corporation) BA1C3ACD929A71E88B49C2B6E38F92B3

C:\Windows\System32\userinit.exe
[2012-07-25 16:06] - [2012-07-25 19:08] - 0025088 ____A (Microsoft Corporation) 0E925F7BA032920D58DD284B6181A247

C:\Windows\SysWOW64\userinit.exe
[2012-07-25 16:08] - [2012-07-25 19:21] - 0021504 ____A (Microsoft Corporation) 9F6289D194A04A09671FEED4B6CB6EF7

C:\Windows\System32\Drivers\volsnap.sys
[2012-07-25 18:30] - [2012-07-25 20:57] - 0332016 ____A (Microsoft Corporation) 2FB3CDFD5EAF4CD9D4AFAF96877D13AE


==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-12-28 13:29:44
Restore point made on: 2013-01-02 11:48:00
Restore point made on: 2013-01-09 08:16:39
Restore point made on: 2013-01-12 10:28:20
Restore point made on: 2013-01-15 16:18:00

==================== Memory info ===========================

Percentage of memory in use: 16%
Total physical RAM: 3961.09 MB
Available physical RAM: 3298.75 MB
Total Pagefile: 3961.09 MB
Available Pagefile: 3305.5 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

==================== Partitions =============================

1 Drive c: (OS) (Fixed) (Total:457.39 GB) (Free:415.66 GB) NTFS
3 Drive e: (U3 System) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
4 Drive f: () (Removable) (Total:0.95 GB) (Free:0.77 GB) FAT32
5 Drive g: (WINRETOOLS) (Fixed) (Total:0.49 GB) (Free:0.22 GB) NTFS
6 Drive w: (WINRETOOLS) (Fixed) (Total:0.49 GB) (Free:0.22 GB) NTFS
7 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
8 Drive y: (ESP) (Fixed) (Total:0.48 GB) (Free:0.44 GB) FAT32


Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B *
Disk 1 Online 971 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 System (partition with boot components) 500 MB 1024 KB
Partition 2 OEM 40 MB 501 MB
Partition 3 Reserved 128 MB 541 MB
Partition 4 Recovery 500 MB 669 MB
Partition 5 Primary 457 GB 1169 MB
Partition 6 Recovery 7404 MB 458 GB

==================================================================================

Disk: 0
Partition 1
Type : c12a7328-f81f-11d2-ba4b-00a0c93ec93b
Hidden : Yes
Required: No
Attrib : 0X8000000000000000

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 Y ESP FAT32 Partition 500 MB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 796badd3-6bbf-4d9f-b631-466eb71a4965
Hidden : Yes
Required: Yes
Attrib : 0X8000000000000001

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 7 DIAGS FAT32 Partition 40 MB Healthy Hidden

=========================================================

Disk: 0
Partition 3
Type : e3c9e316-0b5c-4db8-817d-f92df00215ae
Hidden : Yes
Required: No
Attrib : 0X8000000000000000

There is no volume associated with this partition.

=========================================================

Disk: 0
Partition 4
Type : de94bba4-06d1-4d40-a16a-bfd50179d6ac
Hidden : Yes
Required: Yes
Attrib : 0X8000000000000001

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 G WINRETOOLS NTFS Partition 500 MB Healthy Hidden

=========================================================

Disk: 0
Partition 5
Type : ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Hidden : No
Required: No
Attrib : 0000000000000000

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 457 GB Healthy

=========================================================

Disk: 0
Partition 6
Type : de94bba4-06d1-4d40-a16a-bfd50179d6ac
Hidden : Yes
Required: Yes
Attrib : 0X8000000000000001

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 5 PBR Image NTFS Partition 7404 MB Healthy Hidden

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
* Partition 1 Primary 971 MB 0 B

==================================================================================

Disk: 1
There is no partition selected.

There is no partition selected.
Please select a partition and try again.

=========================================================

Last Boot: 2013-01-13 17:09

==================== End Of Log =============================

Broni - Are you still working on my problem?

Here's the report from AdwCleaner:

# AdwCleaner v2.105 - Logfile created 01/16/2013 at 17:53:38
# Updated 08/01/2013 by Xplode
# Operating system : Windows 8 (64 bits)
# User : Kathryn - KATIESLAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Kathryn\Downloads\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\END
Folder Found : C:\Program Files (x86)\PricePeep
Folder Found : C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\PricePeep
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Key Found : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Key Found : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho
Key Found : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{3BF3DED5-0FC8-4207-AC09-AA7B5AF4E408}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\licjnkifamhpbaefhdpacpmihicfbomb
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
Key Found : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16453

[OK] Registry is clean.

-\\ Google Chrome v24.0.1312.52

File : C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2220 octets] - [16/01/2013 17:53:38]

########## EOF - C:\AdwCleaner[R1].txt - [2280 octets] ##########
I'll run the Junkware Removal Tool next and post the results.

When I try to run Junkware Removal Tool, I get a message that "This file appears to be malicious." It is OK. to run?

Here's the log from Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.4.3 (01.15.2013:1)
OS: Windows 8 x64
Ran by Kathryn on Wed 01/16/2013 at 18:18:56.49
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Failed to delete: [Registry Key] hkey_local_machine\software\classes\pricepeep.pricepeepbho
Failed to delete: [Registry Key] hkey_local_machine\software\classes\pricepeep.pricepeepbho.1
Failed to delete: [Registry Key] hkey_classes_root\clsid\{fd6d90c0-e6ee-4bc6-b9f7-9ed319698007}
Failed to delete: [Registry Key] hkey_classes_root\wow6432node\clsid\{fd6d90c0-e6ee-4bc6-b9f7-9ed319698007}
Failed to delete: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{fd6d90c0-e6ee-4bc6-b9f7-9ed319698007}
Failed to delete: [Registry Key] hkey_local_machine\software\wow6432node\microsoft\windows\currentversion\explorer\browser helper objects\{fd6d90c0-e6ee-4bc6-b9f7-9ed319698007}



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\Program Files (x86)\pricepeep"



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Kathryn\appdata\local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb
Failed to delete: [Registry Key]] hkey_local_machine\software\google\chrome\extensions\licjnkifamhpbaefhdpacpmihicfbomb
Failed to delete: [Registry Key]] hkey_local_machine\software\wow6432node\google\chrome\extensions\licjnkifamhpbaefhdpacpmihicfbomb



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 01/16/2013 at 18:23:37.57
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Here's the first part of the log from OTL:

OTL logfile created on: 1/16/2013 6:26:16 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kathryn\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16453)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.87 Gb Total Physical Memory | 2.26 Gb Available Physical Memory | 58.50% Memory free
6.37 Gb Paging File | 4.00 Gb Available in Paging File | 62.83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 457.39 Gb Total Space | 415.64 Gb Free Space | 90.87% Space Free | Partition Type: NTFS
Drive E: | 6.67 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive F: | 969.59 Mb Total Space | 787.02 Mb Free Space | 81.17% Space Free | Partition Type: FAT32
Drive W: | 500.00 Mb Total Space | 230.16 Mb Free Space | 46.03% Space Free | Partition Type: NTFS
Drive X: | 7.23 Gb Total Space | 0.30 Gb Free Space | 4.17% Space Free | Partition Type: NTFS

Computer Name: KATIESLAPTOP | User Name: Kathryn | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/16 18:26:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kathryn\Downloads\OTL.exe
PRC - [2013/01/07 17:06:24 | 001,248,360 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/12/21 20:01:00 | 028,538,560 | ---- | M] (Dropbox, Inc.) -- C:\Users\Kathryn\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/12/14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/10/09 09:22:48 | 000,173,568 | ---- | M] (Dell Products, LP.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
PRC - [2012/09/12 20:18:36 | 004,037,480 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
PRC - [2012/09/12 20:18:34 | 001,914,728 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
PRC - [2012/08/06 09:58:50 | 000,491,880 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
PRC - [2012/07/19 12:57:08 | 000,151,416 | ---- | M] (Broadcom Corporation.) -- c:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
PRC - [2012/07/17 13:57:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 13:57:20 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/07/09 12:47:18 | 000,277,504 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2012/07/09 12:47:14 | 000,007,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2012/06/25 09:57:14 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2012/06/07 20:34:06 | 000,111,120 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
PRC - [2012/06/01 19:47:48 | 000,143,888 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
PRC - [2010/10/22 22:48:40 | 000,660,848 | ---- | M] (Juniper Networks) -- C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/13 18:45:25 | 002,958,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\80c1a42d2b515bcc5dd8b55b24cb5404\System.IdentityModel.ni.dll
MOD - [2013/01/13 18:45:22 | 000,029,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\7965f87e03e5c405caa81b3d62583733\IAStorDataMgrSvcInterfaces.ni.dll
MOD - [2013/01/13 18:45:20 | 000,026,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\9cc534d28be95feab5eb7ca2d139da3e\IAStorCommon.ni.dll
MOD - [2013/01/13 18:44:48 | 000,365,568 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\1b3f76dd563bcc0d73c5963418d66cb5\IAStorUtil.ni.dll
MOD - [2013/01/13 18:44:43 | 000,121,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\29abafa3547ce7618de3931ba755d61a\SMDiagnostics.ni.dll
MOD - [2013/01/13 18:44:42 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\20ac6784b368d6ab7efc404421896193\System.ServiceModel.Internals.ni.dll
MOD - [2013/01/12 11:34:04 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\1ef2c37ad503f11edd14667a41cbb649\System.Xml.Linq.ni.dll
MOD - [2013/01/12 11:34:03 | 007,559,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\da6c54f53b523a6cdb0a1316e1aae820\System.Xml.ni.dll
MOD - [2013/01/12 11:34:00 | 001,879,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\0e60c36da126d0a80be942e0f75c2960\System.Xaml.ni.dll
MOD - [2013/01/12 11:33:58 | 012,692,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5b9dd195123c46d344a0a650e1d352c1\System.Windows.Forms.ni.dll
MOD - [2013/01/12 11:33:50 | 019,524,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\c638e3c6a2e1e2b8938bd822d69d2a4c\System.ServiceModel.ni.dll
MOD - [2013/01/12 11:33:38 | 002,785,280 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\4186420750660d5b7a67e3e6d11af471\System.Runtime.Serialization.ni.dll
MOD - [2013/01/12 11:33:35 | 001,156,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\85d43a366f283be89f064b6e2b6d018c\System.Management.ni.dll
MOD - [2013/01/12 11:33:34 | 001,630,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\efb8a12d6436b16812746ff9d7fc98b8\System.Drawing.ni.dll
MOD - [2013/01/12 11:33:27 | 000,958,464 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\7401a5b8056a9c3641b277d7193c43bf\System.Configuration.ni.dll
MOD - [2013/01/12 11:33:26 | 000,467,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\8af0ee136f0c82da9394928b3bd7227d\PresentationFramework.Aero2.ni.dll
MOD - [2013/01/12 11:33:24 | 018,524,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\74d8cc6fd65acbaebd677e133a305c26\PresentationFramework.ni.dll
MOD - [2013/01/12 11:33:15 | 010,914,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\0e5da70eddcf3788a74dc8fbebeb6269\PresentationCore.ni.dll
MOD - [2013/01/12 11:33:10 | 003,905,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\20a433a504e31bac22a69db8713b835f\WindowsBase.ni.dll
MOD - [2013/01/12 11:33:06 | 006,995,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dd8711e10e39622d23a8d5e5da65973e\System.Core.ni.dll
MOD - [2013/01/12 11:33:02 | 009,927,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\4b4df94b5fc59b48c84c89791c483437\System.ni.dll
MOD - [2013/01/12 11:32:55 | 016,501,248 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\81bce73cc3eef6d5a6774a5177323bf8\mscorlib.ni.dll
MOD - [2013/01/07 17:06:22 | 000,460,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll
MOD - [2013/01/07 17:06:21 | 012,459,624 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
MOD - [2013/01/07 17:06:19 | 004,012,648 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
MOD - [2013/01/07 17:05:29 | 000,598,120 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libglesv2.dll
MOD - [2013/01/07 17:05:28 | 000,124,520 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libegl.dll
MOD - [2013/01/07 17:05:25 | 001,553,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll
MOD - [2012/11/28 14:13:52 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/11/28 14:13:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/09/12 20:18:38 | 002,003,304 | ---- | M] () -- C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll
MOD - [2012/08/06 09:59:24 | 000,117,608 | ---- | M] () -- C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll
MOD - [2012/08/06 09:59:16 | 001,153,384 | ---- | M] () -- C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll
MOD - [2012/06/08 10:34:06 | 000,016,400 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
MOD - [2012/06/07 20:34:06 | 000,627,216 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/12/05 21:23:00 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2012/12/05 21:22:59 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2012/11/16 20:10:22 | 000,383,608 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\virusscan\mcods.exe -- (McODS)
SRV:64bit: - [2012/11/09 05:37:30 | 000,177,680 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2012/11/09 05:34:50 | 000,218,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2012/11/09 05:33:08 | 000,241,016 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2012/11/05 21:36:55 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/11/05 21:17:41 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2012/09/20 02:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2012/09/19 23:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/09/19 23:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McOobeSv)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2012/08/06 18:16:40 | 000,007,168 | ---- | M] (Cirrus Logic) [Auto | Stopped] -- c:\Program Files\Cirrus Logic Audio Panel\Cirrvus.exe -- (CirrusAudioService)
SRV:64bit: - [2012/08/06 18:12:02 | 000,099,696 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\AECLSr64.exe -- (AECLFilters)
SRV:64bit: - [2012/07/25 20:17:59 | 000,015,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2012/07/25 20:08:04 | 001,968,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2012/07/25 20:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/25 20:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2012/07/25 20:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/25 20:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/25 20:06:36 | 000,463,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2012/07/25 20:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/25 20:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/25 20:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/25 20:06:00 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012/07/25 20:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/25 20:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/25 20:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2012/07/25 20:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/25 20:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/07/25 17:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/07/19 14:09:48 | 002,247,992 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Windows\SysNative\BtwRSupportService.exe -- (BcmBtRSupport)
SRV:64bit: - [2012/07/19 12:53:46 | 000,953,720 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2012/05/30 12:11:34 | 000,149,544 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2012/04/20 13:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2012/01/26 13:19:18 | 000,332,080 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- c:\Program Files\mcafee\msc\McAWFwk.exe -- (McAWFwk)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/11/09 10:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/11/05 21:36:55 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/10/09 09:22:48 | 000,173,568 | ---- | M] (Dell Products, LP.) [Auto | Running] -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe -- (DellDigitalDelivery)
SRV - [2012/10/05 23:12:10 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/09/12 20:18:34 | 001,914,728 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe -- (SftService)
SRV - [2012/07/25 20:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012/07/17 13:57:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 13:57:20 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/09 12:47:14 | 000,007,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012/06/25 09:57:14 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2010/10/22 22:48:40 | 000,660,848 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)

Here's the second part of the OTL Log:

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/11/27 00:00:32 | 000,194,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2012/11/26 20:56:29 | 000,031,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2012/11/26 20:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/19 21:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/09 05:40:24 | 000,069,672 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2012/11/09 05:37:42 | 000,339,776 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2012/11/09 05:36:30 | 000,106,112 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2012/11/09 05:35:50 | 000,771,096 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2012/11/09 05:35:26 | 000,069,168 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mfeelamk.sys -- (mfeelamk)
DRV:64bit: - [2012/11/09 05:34:58 | 000,515,528 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2012/11/09 05:34:18 | 000,309,400 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2012/11/09 05:33:58 | 000,178,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2012/11/06 00:52:07 | 000,445,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2012/11/06 00:36:23 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2012/11/05 20:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/26 23:02:10 | 000,651,832 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/10/12 01:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/11 00:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/11 00:13:49 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2012/10/05 23:12:34 | 009,004,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/09/28 10:32:56 | 000,053,760 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/09/20 00:55:33 | 000,337,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2012/09/20 00:55:33 | 000,212,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2012/09/20 00:55:30 | 000,120,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2012/09/20 00:55:29 | 000,028,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/09/20 00:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/20 00:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/20 00:03:08 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/08/06 18:12:02 | 000,041,328 | ---- | M] (Cirrus Logic) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\CSLFDx64.sys -- (CirrusLFD)
DRV:64bit: - [2012/08/04 23:22:10 | 000,010,752 | ---- | M] (OSR Open Systems Resources, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\DellRbtn.sys -- (DellRbtn)
DRV:64bit: - [2012/07/25 22:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/25 22:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/25 22:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/25 22:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/25 22:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/25 22:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/25 22:00:55 | 000,283,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2012/07/25 22:00:55 | 000,077,552 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2012/07/25 22:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/25 22:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/25 22:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/25 22:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/25 22:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/25 22:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/25 22:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/25 22:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/25 22:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/25 22:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/25 22:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/25 21:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/25 21:54:34 | 000,096,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2012/07/25 21:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/25 21:44:30 | 000,258,288 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2012/07/25 21:36:15 | 000,034,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2012/07/25 20:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/25 19:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/25 19:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/25 19:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/25 19:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/25 19:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/25 19:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/25 19:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/25 19:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/25 19:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/25 19:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/25 19:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/25 19:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/25 19:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/25 19:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/25 19:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/25 19:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/25 19:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/25 19:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/25 19:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/25 19:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/25 19:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/25 19:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/19 14:09:46 | 000,164,152 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\bcbtums.sys -- (bcbtums)
DRV:64bit: - [2012/07/19 14:09:44 | 000,126,776 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwampfl.sys -- (btwampfl)
DRV:64bit: - [2012/07/19 14:09:38 | 000,185,656 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2012/07/11 08:04:30 | 000,445,304 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2012/07/10 13:00:56 | 006,824,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BCMWL63a.SYS -- (BCM43XX)
DRV:64bit: - [2012/07/02 16:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/29 15:18:42 | 000,211,768 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2012/06/29 15:18:38 | 000,022,328 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2012/06/25 09:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV:64bit: - [2012/06/19 08:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012/06/13 19:24:00 | 000,252,048 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2012/06/12 22:41:22 | 000,683,664 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/05/30 12:10:50 | 000,016,168 | ---- | M] (Intel(R) Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2012/05/17 04:04:38 | 000,039,736 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2012/04/20 15:40:58 | 000,196,440 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HipShieldK.sys -- (HipShieldK)
DRV:64bit: - [2010/10/22 22:24:40 | 000,032,768 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\dsNcAdpt.sys -- (dsNcAdpt)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {EA886DBC-DB18-4FC4-B061-EC07B032FA5F}
IE:64bit: - HKLM\..\SearchScopes\{EA886DBC-DB18-4FC4-B061-EC07B032FA5F}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {EA886DBC-DB18-4FC4-B061-EC07B032FA5F}
IE - HKLM\..\SearchScopes\{EA886DBC-DB18-4FC4-B061-EC07B032FA5F}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com
IE - HKCU\..\SearchScopes,DefaultScope = {EA886DBC-DB18-4FC4-B061-EC07B032FA5F}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2013/01/16 18:13:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2012/12/28 10:20:05 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - homepage: http://dell13.msn.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://dell13.msn.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~2\mcafee\msc\npmcsn~1.dll
CHR - Extension: Google Drive = C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Amazing Coupons = C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjildcbkilmkddbbpbjljljdmmlfeppl\5.0_0\
CHR - Extension: Gmail = C:\Users\Kathryn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/12/29 13:59:10 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20130116181315.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20130116181315.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (PricePeep) - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Dell Audio] c:\Program Files\Cirrus Logic Audio Panel\CirrusAudioPanel_Dell.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CLMLServer_For_P2G8] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
O4 - HKLM..\Run: [CLVirtualDrive] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_5F8DEE5AAD550B4A05D8853BE7B4418F] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - Startup: C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Kathryn\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7564D7AD-005D-47B0-BC6B-A7BD4B20CCA8}: DhcpNameServer = 192.168.1.1 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{83CADE12-5A3F-4F9F-B925-A96EE9A82399}: DhcpNameServer = 172.21.1.177
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/05/06 05:26:23 | 000,000,309 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{cbcdef3c-5f6a-11e2-be73-642737f70756}\Shell - "" = AutoRun
O33 - MountPoints2\{cbcdef3c-5f6a-11e2-be73-642737f70756}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- [2007/10/23 00:45:39 | 001,336,632 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

Here's the third part of the log:

========== Files/Folders - Created Within 30 Days ==========

[2013/01/16 18:18:46 | 000,000,000 | ---D | C] -- C:\JRT
[2013/01/16 17:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2013/01/15 18:40:37 | 000,000,000 | ---D | C] -- C:\FRST
[2013/01/15 16:04:30 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\Desktop\RK_Quarantine
[2013/01/12 11:24:53 | 005,974,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2013/01/12 11:24:52 | 005,088,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2013/01/12 11:24:52 | 001,096,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2013/01/12 11:24:51 | 003,245,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2013/01/12 11:24:51 | 001,145,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll
[2013/01/12 11:24:51 | 001,027,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Taskmgr.exe
[2013/01/12 11:24:50 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll
[2013/01/12 11:24:50 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll
[2013/01/12 11:24:50 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll
[2013/01/12 11:24:50 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll
[2013/01/12 11:24:50 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll
[2013/01/12 11:24:49 | 002,033,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013/01/12 11:24:49 | 000,891,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll
[2013/01/12 11:24:49 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll
[2013/01/12 11:24:48 | 000,329,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2013/01/12 11:24:46 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll
[2013/01/12 11:24:46 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll
[2013/01/12 11:24:46 | 000,194,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2013/01/12 11:24:46 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll
[2013/01/12 11:24:46 | 000,124,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2013/01/12 11:24:46 | 000,058,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2013/01/12 11:24:45 | 001,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll
[2013/01/12 11:24:45 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2013/01/12 11:24:45 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2013/01/12 11:24:45 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2013/01/12 11:24:45 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2013/01/12 11:24:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2013/01/12 11:24:44 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2013/01/12 11:24:44 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2013/01/12 11:24:44 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsldr.exe
[2013/01/12 11:24:43 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vds_ps.dll
[2013/01/12 11:24:43 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll
[2013/01/12 11:24:30 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2013/01/12 11:24:29 | 002,302,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013/01/12 11:24:29 | 001,122,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Taskmgr.exe
[2013/01/12 11:24:29 | 000,031,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys
[2013/01/12 11:24:29 | 000,029,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthhfHid.sys
[2013/01/12 11:24:29 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BtaMPM.sys
[2013/01/12 11:20:06 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2013/01/12 11:20:05 | 000,707,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll
[2013/01/12 11:20:03 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll
[2013/01/12 11:20:03 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll
[2013/01/12 11:19:40 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2013/01/09 17:53:34 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Malwarebytes
[2013/01/09 17:53:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/01/09 17:52:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/01/09 17:52:56 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/01/09 17:52:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/01/09 17:52:38 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Programs
[2013/01/09 09:22:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/01/09 08:25:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptsslp.dll
[2013/01/09 08:25:12 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptsslp.dll
[2013/01/09 08:24:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml6r.dll
[2013/01/09 08:24:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml6r.dll
[2013/01/09 08:24:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2013/01/09 08:24:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2013/01/04 18:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/01/04 13:44:04 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Amazon_Services_LLC
[2013/01/02 16:06:39 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Apple Computer
[2013/01/02 16:06:39 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Apple Computer
[2013/01/02 16:06:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/01/02 16:06:30 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2013/01/02 16:06:07 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/01/02 16:06:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/01/02 16:06:07 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/01/02 16:06:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2013/01/02 16:06:07 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/01/02 16:05:52 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Apple
[2013/01/02 16:05:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2013/01/02 16:05:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2013/01/02 16:05:17 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2013/01/02 16:05:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2013/01/02 16:05:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2013/01/02 16:05:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2013/01/02 15:46:45 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2013/01/02 15:45:48 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.exe
[2013/01/02 15:45:48 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndadmin.exe
[2013/01/02 15:45:47 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.dll
[2013/01/02 15:45:47 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.exe
[2013/01/02 15:45:47 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndadmin.exe
[2013/01/02 15:45:46 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.dll
[2013/01/02 15:35:41 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2013/01/02 15:35:41 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2013/01/02 15:35:40 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LangCleanupSysprepAction.dll
[2013/01/02 15:35:36 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevPropMgr.dll
[2013/01/02 15:35:34 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PackageStateRoaming.dll
[2013/01/02 15:35:34 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PackageStateRoaming.dll
[2013/01/02 15:35:33 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhlisten.dll
[2013/01/02 15:35:31 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2013/01/02 15:35:31 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhmanagew.exe
[2013/01/02 15:35:30 | 000,027,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\avrt.dll
[2013/01/02 15:35:28 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rascfg.dll
[2013/01/02 15:35:27 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhshl.dll
[2013/01/02 15:35:27 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascfg.dll
[2013/01/02 15:35:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DAFWSD.dll
[2013/01/02 15:35:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfdisk.dll
[2013/01/02 15:35:21 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchapi.dll
[2013/01/02 15:35:21 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchph.dll
[2013/01/02 15:35:20 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhautoplay.dll
[2013/01/02 15:35:19 | 000,411,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2013/01/02 15:35:17 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2013/01/02 15:35:17 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvc.dll
[2013/01/02 15:35:17 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfnet.dll
[2013/01/02 15:35:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfnet.dll
[2013/01/02 15:35:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvcctl.dll
[2013/01/02 15:35:16 | 000,280,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcat.dll
[2013/01/02 15:35:16 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfctrs.dll
[2013/01/02 15:35:16 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfctrs.dll
[2013/01/02 15:35:15 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfproc.dll
[2013/01/02 15:35:15 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfos.dll
[2013/01/02 15:35:14 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfproc.dll
[2013/01/02 15:35:14 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfdisk.dll
[2013/01/02 15:35:14 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\svchost.exe
[2013/01/02 15:35:11 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\provcore.dll
[2013/01/02 15:35:10 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfos.dll
[2013/01/02 15:35:10 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhevents.dll
[2013/01/02 15:35:10 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2013/01/02 15:35:09 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcfg.dll
[2013/01/02 15:35:09 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll
[2013/01/02 15:35:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcleanup.dll
[2013/01/02 15:35:09 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhtask.dll
[2013/01/02 15:35:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimeng.dll
[2013/01/02 15:35:04 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2013/01/02 15:35:03 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSClient.dll
[2013/01/02 15:35:03 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/01/02 15:35:03 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSSync.dll
[2013/01/02 15:35:03 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSClient.dll
[2013/01/02 15:35:03 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSSync.dll
[2013/01/02 15:35:02 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2013/01/02 15:34:59 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2013/01/02 15:34:57 | 002,016,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2013/01/02 15:34:57 | 002,007,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2013/01/02 15:34:54 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2013/01/02 15:34:54 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2013/01/02 15:34:50 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2013/01/02 15:34:48 | 001,304,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Streaming.dll
[2013/01/02 15:34:48 | 000,995,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Streaming.dll
[2013/01/02 15:34:48 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2013/01/02 15:34:48 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2013/01/02 15:34:47 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2013/01/02 15:34:47 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2013/01/02 15:34:46 | 000,437,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfh264enc.dll
[2013/01/02 15:34:46 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfh264enc.dll
[2013/01/02 15:34:46 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasdiag.dll
[2013/01/02 15:34:39 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-kernel-power-events.dll
[2013/01/02 15:34:20 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2013/01/02 15:34:19 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnprv.dll
[2013/01/02 15:34:19 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vsstrace.dll
[2013/01/02 15:34:17 | 002,367,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSService.dll
[2013/01/02 15:34:17 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetupproxyserv.dll
[2013/01/02 15:34:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2013/01/02 15:34:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2013/01/02 15:34:17 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2013/01/02 15:34:17 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2013/01/02 15:34:16 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll
[2013/01/02 15:34:16 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncHost.exe
[2013/01/02 15:34:12 | 000,709,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsSpellCheckingFacility.dll
[2013/01/02 15:34:12 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2013/01/02 15:34:12 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2013/01/02 15:34:12 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2013/01/02 15:34:12 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2013/01/02 15:34:11 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdiag.dll
[2013/01/02 15:34:10 | 000,389,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MMDevAPI.dll
[2013/01/02 15:34:10 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndptsp.tsp
[2013/01/02 15:34:10 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndptsp.tsp
[2013/01/02 15:34:10 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kmddsp.tsp
[2013/01/02 15:34:10 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kmddsp.tsp
[2013/01/02 15:34:05 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2013/01/02 15:34:04 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2013/01/02 15:34:04 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2013/01/02 15:34:04 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2013/01/02 15:34:04 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2013/01/02 15:34:03 | 000,533,224 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys
[2013/01/02 15:34:02 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2013/01/02 15:34:00 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpremove.exe
[2013/01/02 15:33:58 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2013/01/02 15:33:56 | 000,303,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013/01/02 15:33:55 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2013/01/02 15:33:54 | 000,062,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpfve.sys
[2013/01/02 15:33:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2013/01/02 15:33:51 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2013/01/02 15:33:48 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provcore.dll
[2013/01/02 15:33:47 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncHost.exe
[2013/01/02 15:33:47 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eventcls.dll
[2013/01/02 15:33:45 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2013/01/02 15:33:45 | 000,480,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2013/01/02 15:33:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eventcls.dll
[2013/01/02 15:33:40 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsrcsnk.dll
[2013/01/02 15:33:39 | 002,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/01/02 15:33:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwm.exe
[2013/01/02 15:33:38 | 000,699,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.dll
[2013/01/02 15:33:37 | 000,256,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2013/01/02 15:33:37 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2013/01/02 15:33:36 | 010,791,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2013/01/02 15:33:36 | 001,513,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2013/01/02 15:33:34 | 013,640,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2013/01/02 15:33:34 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasmxs.dll
[2013/01/02 15:33:34 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasser.dll
[2013/01/02 15:33:32 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2013/01/02 15:33:31 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2013/01/02 15:33:24 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2013/01/02 15:33:23 | 001,743,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll
[2013/01/02 15:33:23 | 000,866,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll
[2013/01/02 15:33:23 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2013/01/02 15:33:22 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2013/01/02 15:33:21 | 001,369,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2013/01/02 15:33:19 | 001,739,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2013/01/02 15:33:18 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidcredprov.dll
[2013/01/02 15:33:18 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidcredprov.dll
[2013/01/02 15:33:17 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvinst.exe
[2013/01/02 15:33:17 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2013/01/02 15:33:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdbinst.exe
[2013/01/02 15:33:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sdbinst.exe
[2013/01/02 15:33:13 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2013/01/02 15:33:12 | 003,847,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/01/02 15:33:05 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsrcsnk.dll
[2013/01/02 15:33:04 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.dll
[2013/01/02 15:33:00 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasmxs.dll
[2013/01/02 15:33:00 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasser.dll
[2013/01/02 15:32:58 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2013/01/02 15:32:56 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2013/01/02 15:32:55 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2013/01/02 15:32:47 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinTypes.dll
[2013/01/02 15:32:46 | 001,590,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/01/02 15:32:45 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TpmTasks.dll
[2013/01/02 15:32:45 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2013/01/02 15:32:41 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlroamextension.dll
[2013/01/02 15:32:40 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlroamextension.dll
[2013/01/02 15:32:35 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/01/02 15:32:34 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/01/02 15:32:34 | 001,701,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/01/02 15:32:26 | 001,825,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/01/02 15:32:25 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProximityService.dll
[2013/01/02 15:32:20 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2013/01/02 15:32:19 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll
[2013/01/02 15:32:18 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MUILanguageCleanup.dll
[2013/01/02 15:32:13 | 001,400,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2013/01/02 15:32:12 | 003,265,256 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys
[2013/01/02 15:32:10 | 000,337,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2013/01/02 15:32:10 | 000,212,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS
[2013/01/02 15:32:10 | 000,120,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpioclx.sys
[2013/01/02 15:32:10 | 000,028,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys
[2013/01/02 15:32:08 | 001,019,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.dll
[2013/01/02 15:32:07 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcMon.exe
[2013/01/02 15:32:03 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2013/01/02 15:31:58 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2013/01/02 15:31:57 | 011,875,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2013/01/02 15:31:57 | 003,964,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2013/01/02 15:31:55 | 014,259,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2013/01/02 12:44:36 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2013/01/02 12:44:30 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2013/01/02 12:44:22 | 006,971,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/01/02 12:44:22 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2013/01/02 12:44:22 | 000,488,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2013/01/02 12:44:21 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2013/01/02 12:44:21 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2013/01/02 12:44:21 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevDispItemProvider.dll
[2013/01/02 12:44:21 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidi2c.sys
[2013/01/02 12:44:21 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevDispItemProvider.dll
[2013/01/02 12:44:21 | 000,021,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2013/01/02 12:44:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDKURD.DLL
[2013/01/02 12:44:20 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDKURD.DLL
[2013/01/02 12:44:15 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll
[2013/01/02 12:44:14 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll
[2013/01/02 12:44:14 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2013/01/02 12:44:14 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/01/02 12:44:14 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2013/01/02 12:44:14 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/01/02 12:44:05 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquota.dll
[2013/01/02 12:44:05 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2013/01/02 12:44:04 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquota.dll
[2013/01/02 12:44:03 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rfxvmt.dll
[2013/01/02 12:44:02 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2013/01/02 12:43:50 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2013/01/02 12:43:43 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetsrc.dll
[2013/01/02 12:43:42 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetsrc.dll
[2013/01/02 12:43:42 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll
[2013/01/02 12:43:42 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll
[2013/01/02 12:43:42 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll
[2013/01/02 12:43:42 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
[2013/01/02 12:43:41 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll
[2013/01/02 12:43:41 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll
[2013/01/02 12:43:01 | 003,554,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2013/01/02 12:42:58 | 002,116,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2013/01/02 12:42:56 | 002,206,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2013/01/02 12:42:54 | 002,764,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2013/01/02 12:42:54 | 002,380,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2013/01/02 12:42:53 | 002,115,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2013/01/02 12:42:51 | 001,610,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2013/01/02 12:42:50 | 001,841,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2013/01/02 12:42:50 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll
[2013/01/02 12:42:50 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2013/01/02 12:42:49 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll
[2013/01/02 12:42:49 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll
[2013/01/02 12:42:49 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2013/01/02 12:42:48 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2013/01/02 12:42:47 | 001,403,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2013/01/02 12:42:47 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll
[2013/01/02 12:42:46 | 001,267,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2013/01/02 12:42:45 | 001,217,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2013/01/02 12:42:45 | 001,093,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2013/01/02 12:42:45 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2013/01/02 12:42:45 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2013/01/02 12:42:44 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2013/01/02 12:42:44 | 000,561,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2013/01/02 12:42:44 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2013/01/02 12:42:44 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll
[2013/01/02 12:42:43 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2013/01/02 12:42:43 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll
[2013/01/02 12:42:42 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2013/01/02 12:42:42 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2013/01/02 12:42:42 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2013/01/02 12:42:41 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2013/01/02 12:42:41 | 000,336,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2013/01/02 12:42:41 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Storage.Compression.dll
[2013/01/02 12:42:41 | 000,058,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dam.sys
[2013/01/02 12:42:39 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2013/01/02 12:42:39 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2013/01/02 12:42:38 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SpaceControl.dll
[2013/01/02 12:42:38 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2013/01/02 12:42:37 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2013/01/02 12:42:37 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdstor.sys
[2013/01/02 12:42:37 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys
[2013/01/02 12:42:36 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2013/01/02 12:42:36 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Storage.Compression.dll
[2013/01/02 12:42:35 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2013/01/02 12:42:34 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll
[2013/01/02 12:42:34 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2013/01/02 12:42:33 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2013/01/02 12:42:33 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2013/01/02 12:42:33 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-pdc.dll
[2013/01/02 12:42:32 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2013/01/02 12:42:31 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PCPKsp.dll
[2013/01/02 12:42:30 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2013/01/02 12:42:30 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallAPI.dll
[2013/01/02 12:42:29 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll
[2013/01/02 12:42:28 | 001,836,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/01/02 12:42:28 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll
[2013/01/02 12:42:28 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2013/01/02 12:42:28 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll
[2013/01/02 12:42:27 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icfupgd.dll
[2013/01/02 12:42:27 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeUISrv.exe
[2013/01/02 12:42:26 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PCPKsp.dll
[2013/01/02 12:42:25 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssitlb.dll
[2013/01/02 12:42:25 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssitlb.dll
[2013/01/02 12:42:24 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll
[2013/01/02 12:42:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2013/01/02 12:42:24 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfapigp.dll
[2013/01/02 12:42:23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfapigp.dll
[2013/01/02 12:42:23 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll
[2013/01/02 12:42:22 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2013/01/02 12:42:22 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll
[2013/01/02 12:42:21 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdhebl3.dll
[2013/01/02 12:42:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdhebl3.dll
[2013/01/02 12:41:10 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\glcndFilter.dll
[2013/01/02 12:41:08 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2013/01/02 12:41:07 | 008,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2013/01/02 12:41:03 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\glcndFilter.dll
[2013/01/02 12:41:02 | 001,526,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2013/01/02 12:41:01 | 001,451,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2013/01/02 12:41:00 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2013/01/02 12:41:00 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/01/02 12:40:58 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2013/01/02 12:40:58 | 000,490,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2013/01/02 12:40:58 | 000,447,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2013/01/02 12:40:57 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2013/01/02 12:40:56 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2013/01/02 12:40:56 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2013/01/02 12:40:56 | 000,253,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2013/01/02 12:40:55 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2013/01/02 12:40:55 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2013/01/02 12:40:55 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2013/01/02 12:40:54 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2013/01/02 12:40:54 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2013/01/02 12:40:53 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2013/01/02 12:40:53 | 000,445,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2013/01/02 12:40:53 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Connectivity.dll
[2013/01/02 12:40:51 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll
[2013/01/02 12:40:51 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2013/01/02 12:40:50 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2013/01/02 12:40:50 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2013/01/02 12:40:50 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2013/01/02 12:40:50 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll
[2013/01/02 12:40:50 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWCN.dll
[2013/01/02 12:40:49 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2013/01/02 12:40:49 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Connectivity.dll

Here's the next part of the log:

[2013/01/02 12:40:49 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhostex.exe
[2013/01/02 12:40:48 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll
[2013/01/02 12:40:48 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll
[2013/01/02 12:40:48 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2013/01/02 12:40:48 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll
[2013/01/02 12:40:48 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2013/01/02 12:40:48 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuaext.dll
[2013/01/02 12:40:47 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlansec.dll
[2013/01/02 12:40:47 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe
[2013/01/02 12:40:47 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2013/01/02 12:40:47 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2013/01/02 12:40:47 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2013/01/02 12:40:47 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2013/01/02 12:40:47 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/01/02 12:40:46 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2013/01/02 12:40:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2013/01/02 12:40:44 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2013/01/02 12:40:43 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsquirt.exe
[2013/01/02 12:40:43 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2013/01/02 12:40:43 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll
[2013/01/02 12:40:43 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll
[2013/01/02 12:40:43 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2013/01/02 12:40:43 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2013/01/02 12:40:42 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2013/01/02 12:40:41 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnApi.dll
[2013/01/02 12:40:41 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WcnApi.dll
[2013/01/02 12:40:40 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll
[2013/01/02 12:40:40 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2013/01/02 12:40:39 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll
[2013/01/02 12:40:39 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapPeerProxy.dll
[2013/01/02 12:40:39 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapAuthProxy.dll
[2013/01/02 12:40:38 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfdprov.dll
[2013/01/02 12:40:37 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2013/01/02 12:40:35 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fxppm.sys
[2013/01/02 12:40:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll
[2013/01/02 12:40:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll
[2013/01/02 12:40:33 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wushareduxresources.dll
[2013/01/02 12:40:32 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsilog.dll
[2012/12/31 14:55:44 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\ElevatedDiagnostics
[2012/12/29 13:37:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Juniper Networks
[2012/12/29 13:37:41 | 000,579,952 | ---- | C] (Juniper Networks) -- C:\Windows\SysWow64\dsNcSmartCardProv.dll
[2012/12/29 13:37:40 | 000,405,360 | ---- | C] (Juniper Networks) -- C:\Windows\SysWow64\dsNcCredProv.dll
[2012/12/29 13:37:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Juniper Networks
[2012/12/29 13:19:47 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2012/12/29 13:19:43 | 000,000,000 | -H-D | C] -- C:\Windows\SysNative\CanonIJ Uninstaller Information
[2012/12/29 13:19:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX300 series
[2012/12/29 13:19:36 | 000,258,560 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNMLM90.DLL
[2012/12/29 13:19:30 | 000,183,296 | ---- | C] (Canon Inc.) -- C:\Windows\SysNative\CNCF2Lc.DLL
[2012/12/29 13:19:30 | 000,143,360 | ---- | C] (Canon Inc.) -- C:\Windows\SysNative\CNCFMSc.EXE
[2012/12/29 13:19:30 | 000,003,584 | ---- | C] (Canon Inc.) -- C:\Windows\SysNative\CNCFLcUS.DLL
[2012/12/29 13:19:30 | 000,003,072 | ---- | C] (Canon Inc.) -- C:\Windows\SysNative\CNCFLcJP.DLL
[2012/12/29 13:19:28 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2012/12/29 13:14:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
[2012/12/29 13:14:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DriverTuner
[2012/12/28 18:30:39 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Skype
[2012/12/28 18:30:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/12/28 18:30:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/12/28 18:30:31 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012/12/28 18:30:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/12/28 18:30:16 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\SkypePackages
[2012/12/28 18:30:14 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\couponamazing
[2012/12/28 18:30:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PricePeep
[2012/12/28 16:33:33 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Juniper Networks
[2012/12/28 16:33:13 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Juniper Networks
[2012/12/28 16:32:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/12/28 16:32:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/12/28 16:32:49 | 000,859,072 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/12/28 16:32:49 | 000,779,704 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/12/28 16:32:49 | 000,260,528 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/12/28 16:32:45 | 000,174,000 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/12/28 16:32:45 | 000,173,992 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/12/28 16:32:45 | 000,095,184 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/12/28 16:32:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/12/28 16:25:16 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Identities
[2012/12/28 15:41:31 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
[2012/12/28 15:41:27 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
[2012/12/28 15:37:16 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tssdisai.dll
[2012/12/28 15:37:16 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appserverai.dll
[2012/12/28 15:37:16 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDWebAI.dll
[2012/12/28 15:37:16 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmHostAI.dll
[2012/12/28 15:37:13 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/12/28 15:37:13 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/12/28 15:37:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/12/28 15:37:10 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/12/28 15:33:49 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcadm.dll
[2012/12/28 15:33:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcalua.exe
[2012/12/28 15:33:48 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaevts.dll
[2012/12/28 15:33:47 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2012/12/28 15:33:47 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2012/12/28 15:33:47 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnsvr.exe
[2012/12/28 15:33:47 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnsvr.exe
[2012/12/28 15:33:46 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnathlp.dll
[2012/12/28 15:33:46 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnathlp.dll
[2012/12/28 15:33:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnhupnp.dll
[2012/12/28 15:33:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnhpast.dll
[2012/12/28 15:33:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnhupnp.dll
[2012/12/28 15:33:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnhpast.dll
[2012/12/28 15:33:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnlobby.dll
[2012/12/28 15:33:46 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2012/12/28 15:33:46 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnlobby.dll
[2012/12/28 15:33:46 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2012/12/28 15:33:28 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/28 15:33:27 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/28 15:33:27 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2012/12/28 15:33:27 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2012/12/28 15:33:27 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/28 15:33:27 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/28 15:33:27 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2012/12/28 15:33:27 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2012/12/28 15:33:25 | 001,009,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reseteng.dll
[2012/12/28 15:33:25 | 000,945,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\resetengmig.dll
[2012/12/28 15:33:25 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2012/12/28 15:33:25 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2012/12/28 15:33:25 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysreset.exe
[2012/12/28 15:33:24 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2012/12/28 15:33:24 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2012/12/28 15:33:15 | 003,966,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/12/28 15:33:14 | 000,907,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2012/12/28 15:33:14 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/12/28 15:33:13 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/12/28 15:33:13 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/12/28 15:33:12 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/12/28 15:33:12 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/12/28 15:33:12 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/12/28 15:33:12 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2012/12/28 15:33:12 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2012/12/28 15:33:12 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/12/28 15:33:12 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/12/28 15:33:11 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/12/28 15:33:11 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/12/28 15:33:09 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgentc.exe
[2012/12/28 15:33:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2012/12/28 14:42:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
[2012/12/28 14:38:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/12/28 14:37:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2012/12/28 14:37:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2012/12/28 14:37:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2012/12/28 14:31:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012/12/28 14:31:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2012/12/28 14:30:21 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Microsoft Help
[2012/12/28 14:30:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/12/28 14:29:50 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012/12/28 11:06:52 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\PCDr
[2012/12/28 11:01:27 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Dropbox
[2012/12/28 10:58:58 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2012/12/28 10:58:18 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Dropbox
[2012/12/28 10:33:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Digital Delivery
[2012/12/28 10:28:33 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\softthinks
[2012/12/27 19:46:35 | 000,196,440 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\HipShieldK.sys
[2012/12/27 16:10:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/12/27 16:10:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/12/27 16:10:22 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Google
[2012/12/27 16:09:30 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Deployment
[2012/12/27 16:09:30 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Apps
[2012/12/27 15:32:50 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Intel Corporation
[2012/12/27 15:31:54 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Broadcom
[2012/12/27 15:31:54 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\Documents\Bluetooth Exchange Folder
[2012/12/27 15:31:48 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Power2Go8
[2012/12/27 15:31:13 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/12/27 15:31:13 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Searches
[2012/12/27 15:31:13 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Contacts
[2012/12/27 15:31:13 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/12/27 15:31:13 | 000,000,000 | -H-D | C] -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/12/27 15:29:59 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Macromedia
[2012/12/27 15:29:58 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Adobe
[2012/12/27 15:29:29 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Leadertech
[2012/12/27 15:29:05 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\VirtualStore
[2012/12/27 15:28:53 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Packages
[2012/12/27 15:28:52 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache
[2012/12/27 15:28:44 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/12/27 15:28:37 | 000,000,000 | --SD | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Videos
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Saved Games
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Pictures
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Music
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Links
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Favorites
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Downloads
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Documents
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\Desktop
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/12/27 15:28:37 | 000,000,000 | R--D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\AppData\Local\Temporary Internet Files
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Templates
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Start Menu
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\SendTo
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Recent
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\PrintHood
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\NetHood
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Documents\My Videos
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Documents\My Pictures
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Documents\My Music
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\My Documents
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Local Settings
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\AppData\Local\History
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Cookies
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\Application Data
[2012/12/27 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\Kathryn\AppData\Local\Application Data
[2012/12/27 15:28:37 | 000,000,000 | -H-D | C] -- C:\Users\Kathryn\AppData
[2012/12/27 15:28:37 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Temp
[2012/12/27 15:28:37 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Local\Microsoft
[2012/12/27 15:28:37 | 000,000,000 | ---D | C] -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

========== Files - Modified Within 30 Days ==========

[2013/01/16 18:15:00 | 000,000,926 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/16 17:15:00 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/16 13:53:06 | 000,850,046 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/16 13:53:06 | 000,720,456 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/16 13:53:06 | 000,133,284 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/16 13:50:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/16 13:48:16 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/01/16 13:48:07 | 3322,798,080 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/16 13:41:48 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2013/01/15 16:25:37 | 000,433,640 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/12 11:18:18 | 000,002,257 | ---- | M] () -- C:\Users\Kathryn\Desktop\Google Chrome.lnk
[2013/01/11 15:15:16 | 000,116,718 | ---- | M] () -- C:\Users\Kathryn\Documents\Payroll & Benefit Analyst.pdf
[2013/01/10 16:47:03 | 000,116,849 | ---- | M] () -- C:\Users\Kathryn\Documents\Benefits Administrator.pdf
[2013/01/10 16:33:14 | 000,116,788 | ---- | M] () -- C:\Users\Kathryn\Documents\Manager, Benefits & Comp.pdf
[2013/01/10 16:25:23 | 000,061,022 | ---- | M] () -- C:\Users\Kathryn\Documents\References 01-09-13.pdf
[2013/01/10 16:24:08 | 000,126,988 | ---- | M] () -- C:\Users\Kathryn\Documents\Katie Letter of Recommendation.pdf
[2013/01/10 16:01:42 | 000,116,744 | ---- | M] () -- C:\Users\Kathryn\Documents\HR Rep 3.pdf
[2013/01/10 15:44:16 | 000,116,807 | ---- | M] () -- C:\Users\Kathryn\Documents\HR Coordinator.pdf
[2013/01/09 17:53:01 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/09 17:05:07 | 000,160,173 | ---- | M] () -- C:\Users\Kathryn\Documents\resume - NEON.pdf
[2013/01/09 16:52:59 | 000,117,172 | ---- | M] () -- C:\Users\Kathryn\Documents\Sr HR Generalist - NEON.pdf
[2013/01/07 18:19:26 | 000,117,474 | ---- | M] () -- C:\Users\Kathryn\Documents\HRIS & Benefits Specialist.pdf
[2013/01/07 17:49:53 | 000,117,520 | ---- | M] () -- C:\Users\Kathryn\Documents\Benefits Specialist.pdf
[2013/01/07 16:14:44 | 000,053,977 | ---- | M] () -- C:\Users\Kathryn\Documents\Comp & HR Analyst.rtf
[2013/01/07 16:02:18 | 000,118,088 | ---- | M] () -- C:\Users\Kathryn\Documents\Admin Assist II.pdf
[2013/01/07 15:25:37 | 000,117,678 | ---- | M] () -- C:\Users\Kathryn\Documents\Sr. Benefits & Comp Analyst.pdf
[2013/01/07 15:25:17 | 000,084,532 | ---- | M] () -- C:\Users\Kathryn\Documents\resume 01-07-13.pdf
[2013/01/07 11:35:07 | 000,720,258 | ---- | M] () -- C:\Users\Kathryn\Documents\Ms Rowan Letter of Recommendation.pdf
[2013/01/06 12:17:34 | 000,126,988 | ---- | M] () -- C:\Users\Kathryn\Documents\Katie Letter of Reference.pdf
[2013/01/04 16:38:52 | 000,084,569 | ---- | M] () -- C:\Users\Kathryn\Documents\resume 01-04-13.pdf
[2013/01/04 16:35:05 | 000,010,106 | ---- | M] () -- C:\Users\Kathryn\Documents\Health and Wellness Coordinator.pdf
[2013/01/04 16:34:46 | 000,010,159 | ---- | M] () -- C:\Users\Kathryn\Documents\Medicaid Coordinator.pdf
[2013/01/04 15:40:48 | 000,005,544 | ---- | M] () -- C:\Users\Kathryn\Documents\KatieR.pdf
[2013/01/02 16:06:37 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/12/31 14:37:04 | 000,001,135 | ---- | M] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2012/12/28 18:30:32 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/12/28 18:30:16 | 000,000,000 | ---- | M] () -- C:\end
[2012/12/28 18:30:15 | 000,000,000 | ---- | M] () -- C:\extensions.sqlite
[2012/12/28 16:32:41 | 000,859,072 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/12/28 16:32:41 | 000,779,704 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/12/28 16:32:41 | 000,260,528 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/12/28 16:32:41 | 000,174,000 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/12/28 16:32:41 | 000,173,992 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/12/28 16:32:41 | 000,095,184 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/12/28 11:01:27 | 000,001,049 | ---- | M] () -- C:\Users\Kathryn\Desktop\Dropbox.lnk
[2012/12/28 11:00:08 | 000,249,159 | ---- | M] () -- C:\Users\Kathryn\Documents\Getting Started.pdf
[2012/12/28 10:59:20 | 000,001,059 | ---- | M] () -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/12/27 15:35:15 | 000,001,426 | ---- | M] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/12/18 16:32:58 | 000,695,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/12/18 16:32:58 | 000,080,728 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

And here is the file part of the log:

========== Files Created - No Company Name ==========

[2013/01/16 13:41:48 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2013/01/15 16:25:24 | 000,433,640 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/11 15:15:15 | 000,116,718 | ---- | C] () -- C:\Users\Kathryn\Documents\Payroll & Benefit Analyst.pdf
[2013/01/10 16:47:03 | 000,116,849 | ---- | C] () -- C:\Users\Kathryn\Documents\Benefits Administrator.pdf
[2013/01/10 16:32:33 | 000,116,788 | ---- | C] () -- C:\Users\Kathryn\Documents\Manager, Benefits & Comp.pdf
[2013/01/10 16:25:23 | 000,061,022 | ---- | C] () -- C:\Users\Kathryn\Documents\References 01-09-13.pdf
[2013/01/10 16:24:08 | 000,126,988 | ---- | C] () -- C:\Users\Kathryn\Documents\Katie Letter of Recommendation.pdf
[2013/01/10 16:01:42 | 000,116,744 | ---- | C] () -- C:\Users\Kathryn\Documents\HR Rep 3.pdf
[2013/01/10 15:44:15 | 000,116,807 | ---- | C] () -- C:\Users\Kathryn\Documents\HR Coordinator.pdf
[2013/01/09 17:53:01 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/09 17:05:07 | 000,160,173 | ---- | C] () -- C:\Users\Kathryn\Documents\resume - NEON.pdf
[2013/01/09 16:52:12 | 000,117,172 | ---- | C] () -- C:\Users\Kathryn\Documents\Sr HR Generalist - NEON.pdf
[2013/01/07 18:19:25 | 000,117,474 | ---- | C] () -- C:\Users\Kathryn\Documents\HRIS & Benefits Specialist.pdf
[2013/01/07 17:49:53 | 000,117,520 | ---- | C] () -- C:\Users\Kathryn\Documents\Benefits Specialist.pdf
[2013/01/07 16:02:18 | 000,118,088 | ---- | C] () -- C:\Users\Kathryn\Documents\Admin Assist II.pdf
[2013/01/07 15:25:36 | 000,117,678 | ---- | C] () -- C:\Users\Kathryn\Documents\Sr. Benefits & Comp Analyst.pdf
[2013/01/07 15:25:16 | 000,084,532 | ---- | C] () -- C:\Users\Kathryn\Documents\resume 01-07-13.pdf
[2013/01/07 11:35:06 | 000,720,258 | ---- | C] () -- C:\Users\Kathryn\Documents\Ms Rowan Letter of Recommendation.pdf
[2013/01/06 12:17:33 | 000,126,988 | ---- | C] () -- C:\Users\Kathryn\Documents\Katie Letter of Reference.pdf
[2013/01/04 16:38:51 | 000,084,569 | ---- | C] () -- C:\Users\Kathryn\Documents\resume 01-04-13.pdf
[2013/01/04 16:35:05 | 000,010,106 | ---- | C] () -- C:\Users\Kathryn\Documents\Health and Wellness Coordinator.pdf
[2013/01/04 16:34:45 | 000,010,159 | ---- | C] () -- C:\Users\Kathryn\Documents\Medicaid Coordinator.pdf
[2013/01/04 15:35:18 | 000,005,544 | ---- | C] () -- C:\Users\Kathryn\Documents\KatieR.pdf
[2013/01/03 15:20:31 | 007,694,466 | ---- | C] () -- C:\Users\Kathryn\Documents\Samsung Refridgerator User Manual.pdf
[2013/01/03 15:15:32 | 000,000,180 | ---- | C] () -- C:\Users\Kathryn\Documents\Directv Bill.pdf
[2013/01/03 14:46:08 | 000,132,024 | ---- | C] () -- C:\Users\Kathryn\Documents\2005 Quality Walls of Boulder Inc Tax Return.tax
[2013/01/03 14:37:57 | 000,053,977 | ---- | C] () -- C:\Users\Kathryn\Documents\Comp & HR Analyst.rtf
[2013/01/03 14:37:57 | 000,026,071 | ---- | C] () -- C:\Users\Kathryn\Documents\HR Specialist.rtf
[2013/01/03 13:28:18 | 000,037,647 | ---- | C] () -- C:\Users\Kathryn\Documents\resume.rtf
[2013/01/03 12:34:06 | 000,007,596 | ---- | C] () -- C:\Users\Kathryn\Documents\State Farm Quote with Alison.pdf
[2013/01/03 12:33:42 | 000,166,219 | ---- | C] () -- C:\Users\Kathryn\Documents\9-14 Contact Rx.pdf
[2013/01/02 16:06:37 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/01/02 16:05:51 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2013/01/02 15:37:17 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/01/02 15:34:46 | 000,110,592 | ---- | C] () -- C:\Windows\SysNative\OEMLicense.dll
[2013/01/02 12:40:54 | 000,385,604 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2012/12/28 18:30:32 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/12/28 18:30:15 | 000,000,000 | ---- | C] () -- C:\extensions.sqlite
[2012/12/28 18:30:10 | 000,000,000 | ---- | C] () -- C:\end
[2012/12/28 16:23:40 | 000,001,135 | ---- | C] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2012/12/28 11:01:33 | 000,249,159 | ---- | C] () -- C:\Users\Kathryn\Documents\Getting Started.pdf
[2012/12/28 11:01:27 | 000,001,049 | ---- | C] () -- C:\Users\Kathryn\Desktop\Dropbox.lnk
[2012/12/28 10:59:20 | 000,001,059 | ---- | C] () -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/12/27 16:10:53 | 000,002,257 | ---- | C] () -- C:\Users\Kathryn\Desktop\Google Chrome.lnk
[2012/12/27 16:10:30 | 000,000,926 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/27 16:10:29 | 000,000,922 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/27 15:35:15 | 000,001,426 | ---- | C] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/12/27 15:31:08 | 000,001,432 | ---- | C] () -- C:\Users\Kathryn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/12/27 15:28:37 | 000,000,352 | ---- | C] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/12/27 15:28:37 | 000,000,334 | ---- | C] () -- C:\Users\Kathryn\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/11/05 15:41:52 | 000,866,452 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/10/05 23:12:28 | 000,598,780 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2012/10/05 23:12:22 | 000,755,048 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2012/10/05 23:12:10 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/07/26 01:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 01:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/26 00:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/25 18:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 13:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 13:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/06/02 07:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012/04/20 12:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2012/12/28 10:33:29 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/11/05 21:19:27 | 019,789,824 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/11/05 21:20:00 | 017,560,576 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 20:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 20:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 20:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

BTW - thanks for sticking with me. Sorry about the other posts. I was starting to panick! I'll definitely donate as I think this service is great!

Here's the log from the OTL process:

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}\ deleted successfully.
C:\Program Files (x86)\PricePeep\pricepeep.dll moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cbcdef3c-5f6a-11e2-be73-642737f70756}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cbcdef3c-5f6a-11e2-be73-642737f70756}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cbcdef3c-5f6a-11e2-be73-642737f70756}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cbcdef3c-5f6a-11e2-be73-642737f70756}\ not found.
File move failed. E:\LaunchU3.exe scheduled to be moved on reboot.
========== FILES ==========
C:\Program Files (x86)\PricePeep folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Kathryn
->Temp folder emptied: 2461986 bytes
->Temporary Internet Files folder emptied: 47216296 bytes
->Java cache emptied: 228729 bytes
->Google Chrome cache emptied: 455594131 bytes
->Flash cache emptied: 1553 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11591054 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 493.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Kathryn
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Kathryn
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01162013_184907

Files\Folders moved on Reboot...
File move failed. E:\LaunchU3.exe scheduled to be moved on reboot.
File\Folder C:\Users\Kathryn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{A7D34D64-259C-4788-80DF-5E5687CA0CB2}.tmp not found!
File\Folder C:\Users\Kathryn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{E19CB557-ABC6-4057-845F-9C2C7AAA8B22}.tmp not found!
C:\Users\Kathryn\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Here's the log from the Security Check:

Results of screen317's Security Check version 0.99.57
x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
McAfee Anti-Virus and Anti-Spyware
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
Java 7 Update 10
Java version out of Date!
Google Chrome 23.0.1271.97
Google Chrome 24.0.1312.52
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

Here's the log from Farber Security Scanner:

Farbar Service Scanner Version: 16-01-2013
Ran by Kathryn (administrator) on 16-01-2013 at 18:59:54
Running from "C:\Users\Kathryn\Downloads"
Windows 8 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Hi Broni - Both of the other two programs came back saying nothing further so I assume I'm clean. How can I keep this from being repeated? I can't thank you enough!