Browser redirect virus (softwareupdaterlp.com)

[sheaR]

Here is the Adwcleaner log:

# AdwCleaner v4.109 - Report created 29/01/2015 at 20:44:39
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : swahl - ISENGARD
# Running from : C:\Users\swahl\Downloads\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : ExpatShieldService
[#] Service Deleted : ExpatSrv
[#] Service Deleted : ExpatTrayService
[#] Service Deleted : ExpatWd
Service Deleted : vToolbarUpdater18.1.9

***** [ Files / Folders ] *****

Folder Deleted : C:\Expat Shield
Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Expat Shield
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\AVG Security Toolbar
Folder Deleted : C:\Program Files (x86)\Expat Shield
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[!] Folder Deleted : C:\Users\swahl\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\swahl\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\ExpatIE.ExpatIEApp
Key Deleted : HKLM\SOFTWARE\Classes\ExpatIE.ExpatIEApp.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F5A29F21-B121-48A0-A317-737AF8BB106A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\ExpatShield
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ExpatShield
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v33.0.3 (x86 en-US)


-\\ Google Chrome v40.0.2214.94

[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://movies.netflix.com/WiSearch?raw_query=&ac_category_type=none&ac_rel_posn=-1&ac_abs_posn=-1&v1={searchTerms}&search_submit=
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://movies.netflix.com/WiSearch?raw_query=&ac_category_type=none&ac_rel_posn=-1&ac_abs_posn=-1&v1={searchTerms}&search_submit=
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

-\\ Chromium v

[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://movies.netflix.com/WiSearch?raw_query=&ac_category_type=none&ac_rel_posn=-1&ac_abs_posn=-1&v1={searchTerms}&search_submit=
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://movies.netflix.com/WiSearch?raw_query=&ac_category_type=none&ac_rel_posn=-1&ac_abs_posn=-1&v1={searchTerms}&search_submit=
[C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [8765 octets] - [29/01/2015 20:38:33]
AdwCleaner[S0].txt - [9850 octets] - [29/01/2015 20:44:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9910 octets] ##########

 

[sheaR]

Here is the FRST.txt log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2015
Ran by swahl (administrator) on ISENGARD on 01-02-2015 01:50:30
Running from C:\Users\swahl\Desktop\anti-malware
Loaded Profiles: swahl (Available profiles: swahl)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUsb\XFastUsb.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Google Inc.) C:\Users\swahl\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(Google Inc.) C:\Users\swahl\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.5383\Battle.net.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-29] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [XFastUsb] => C:\Program Files (x86)\XFastUsb\XFastUsb.exe [5021448 2012-08-28] (FNet Co., Ltd.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3674576 2015-01-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [mca64Launcher 2.0.0.113] => C:\Program Files (x86)\mca64Launcher\mca64Launcher 2.0.0.113\mca64Launcher.exe [6590464 2015-01-10] (mca64)
HKU\S-1-5-21-3746372844-262032399-287551824-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
HKU\S-1-5-21-3746372844-262032399-287551824-1000\...\Run: [F.lux] => C:\Users\swahl\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-3746372844-262032399-287551824-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1

FireFox:
========
FF ProfilePath: C:\Users\swahl\AppData\Roaming\Mozilla\Firefox\Profiles\seglcsy6.default-1422696151008
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nexon.com/NxGame -> C:\ProgramData\Nexon\NGM\npNxGame.dll (Nexon)
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @raidcall.com/RCplugin -> C:\Users\swahl\AppData\LocalLow\raidcall\plugins\webplugin.dll (Raidcall)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\swahl\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF Plugin-x32: @raidcall.kr/RCplugin -> C:\Users\swahl\AppData\Roaming\RCKR\plugins\nprcplugin.dll (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3746372844-262032399-287551824-1000: @tools.google.com/Google Update;version=3 -> C:\Users\swahl\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3746372844-262032399-287551824-1000: @tools.google.com/Google Update;version=9 -> C:\Users\swahl\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3746372844-262032399-287551824-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-11-16]

Chrome:
=======
CHR Profile: C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-07-06]
CHR Extension: (Entanglement Web App) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2014-07-06]
CHR Extension: (Duolingo on the Web) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2014-07-06]
CHR Extension: (Teamliquid Dark Theme) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhleonjhpnnjbciomimcenodbaefkpl [2014-07-06]
CHR Extension: (Google Drive) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-06]
CHR Extension: (Auto Copy) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\bijpdibkloghppkbmhcklkogpjaenfkg [2014-07-06]
CHR Extension: (YouTube) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-06]
CHR Extension: (Google Search) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-06]
CHR Extension: (Type-ahead-find) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpecbmjeidppdiampimghndkikcmoadk [2014-07-06]
CHR Extension: (Vimium) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbepggeogbaibhgnhhndojpepiihcmeb [2014-07-06]
CHR Extension: (TinyURL.com URL shortener (by Tiny-URL.info)) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpggaodbilneopgpjgbimgpaecdchfm [2014-07-06]
CHR Extension: (Flag for Chrome) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpojpfdiliekbbiplijcphappgcgjfn [2014-07-06]
CHR Extension: (Tabspire) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpfocpaokceodmnnkifpjahjlkphhhli [2014-07-06]
CHR Extension: (Full Screen Flash) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gejijbmhbanhbllpkhfojmimfolkjgdl [2014-07-06]
CHR Extension: (MIDI Player) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdnfelcdiebaofocemalnfclifhbfij [2014-10-01]
CHR Extension: (AdBlock) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-06]
CHR Extension: (Wolfram
Alpha (Official)) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\icncamkooinmbehmkeilcccmoljfkdhp [2014-07-06]
CHR Extension: (FVD Downloader) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2014-07-06]
CHR Extension: (MaximizeFlash) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lljjmflmcnaigbhnheldbdbplkbhngnl [2014-07-06]
CHR Extension: (Hangouts) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-07-06]
CHR Extension: (Maximise for Mac) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnmifpfkfkjonidkgepmdgpbgcaobld [2014-07-06]
CHR Extension: (Python) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodpmmidbgeganfponihbgmfcoiibffi [2014-08-23]
CHR Extension: (No Name) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2014-07-06]
CHR Extension: (Gmail) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-06]
CHR Profile: C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-29]
CHR Extension: (Google Docs) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-29]
CHR Extension: (Google Drive) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-29]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-29]
CHR Extension: (YouTube) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-29]
CHR Extension: (Google Search) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-29]
CHR Extension: (Google Sheets) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-29]
CHR Extension: (Google Wallet) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-29]
CHR Extension: (Gmail) - C:\Users\swahl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3440080 2015-01-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [309232 2015-01-06] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2014-09-24] (EasyAntiCheat Ltd)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [34400 2010-11-19] (Asmedia Technology)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [260888 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [124184 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [274200 2014-10-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2015-01-30] (Emsisoft GmbH)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2012-09-08] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2012-08-28] (FNet Co., Ltd.)
R3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-01-30] ()
S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2011-08-18] (The OpenVPN Project)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
U3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 01:46 - 2015-02-01 01:46 - 132944537 _____ () C:\Users\swahl\Downloads\StarCraft_V2.rar.crdownload
2015-02-01 01:43 - 2015-02-01 01:43 - 214980414 _____ () C:\Users\swahl\Downloads\Unconfirmed 486768.crdownload
2015-01-31 14:10 - 2015-01-31 23:09 - 00000280 _____ () C:\Windows\setupact.log
2015-01-31 14:10 - 2015-01-31 14:10 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-31 02:08 - 2015-02-01 01:50 - 00000000 ____D () C:\Users\swahl\Desktop\anti-malware
2015-01-31 01:49 - 2015-01-31 01:49 - 00029499 _____ () C:\ComboFix.txt
2015-01-31 01:39 - 2015-01-31 01:49 - 00000000 ____D () C:\Qoobox
2015-01-31 01:39 - 2015-01-31 01:48 - 00000000 ____D () C:\Windows\erdnt
2015-01-31 01:39 - 2011-06-25 22:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-01-31 01:39 - 2010-11-07 09:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-01-31 01:39 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-01-31 01:39 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-01-31 01:39 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-01-31 01:39 - 2000-08-30 16:00 - 00098816 _____ () C:\Windows\sed.exe
2015-01-31 01:39 - 2000-08-30 16:00 - 00080412 _____ () C:\Windows\grep.exe
2015-01-31 01:39 - 2000-08-30 16:00 - 00068096 _____ () C:\Windows\zip.exe
2015-01-31 01:34 - 2015-01-31 01:37 - 05611408 ____R (Swearware) C:\Users\swahl\Downloads\ComboFix.exe
2015-01-31 01:33 - 2015-01-31 01:33 - 00000000 ____D () C:\Windows\ERUNT
2015-01-31 01:29 - 2015-02-01 01:50 - 00000000 ____D () C:\FRST
2015-01-31 01:29 - 2015-01-31 01:29 - 01707939 _____ (Thisisu) C:\Users\swahl\Downloads\JRT (1).exe
2015-01-30 16:35 - 2015-01-30 16:35 - 00043664 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-01-30 15:46 - 2015-01-30 15:46 - 00000484 _____ () C:\Windows\system32\.crusader
2015-01-30 15:10 - 2015-01-30 15:35 - 00000000 ____D () C:\EEK
2015-01-30 15:09 - 2015-01-30 15:46 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-01-30 15:01 - 2015-01-30 15:01 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-30 15:00 - 2015-01-30 15:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-30 15:00 - 2015-01-30 15:00 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-30 15:00 - 2015-01-30 15:00 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-30 15:00 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-30 15:00 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-30 15:00 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-30 14:59 - 2015-01-30 15:00 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\swahl\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-30 14:56 - 2015-01-22 08:42 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\swahl\Downloads\TDSSKiller.exe
2015-01-30 14:55 - 2015-01-30 14:55 - 04176437 _____ () C:\Users\swahl\Downloads\tdsskiller.zip
2015-01-29 23:30 - 2015-01-29 23:30 - 00003603 _____ () C:\Users\swahl\Downloads\tune250setting217761.mid
2015-01-29 23:29 - 2015-01-29 23:29 - 00001207 _____ () C:\Users\swahl\Downloads\tune249setting2491.mid
2015-01-29 23:29 - 2015-01-29 23:29 - 00001155 _____ () C:\Users\swahl\Downloads\tune249setting250891.mid
2015-01-29 20:46 - 2015-01-30 16:34 - 00002204 _____ () C:\Windows\PFRO.log
2015-01-29 20:38 - 2015-01-30 14:35 - 00000000 ____D () C:\AdwCleaner
2015-01-29 20:23 - 2015-01-29 20:23 - 00002255 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-29 20:23 - 2015-01-29 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-29 20:22 - 2015-02-01 01:27 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-29 20:22 - 2015-01-31 20:27 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-29 20:22 - 2015-01-29 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-29 20:22 - 2015-01-29 20:22 - 00880784 _____ (Google Inc.) C:\Users\swahl\Downloads\ChromeSetup.exe
2015-01-29 20:22 - 2015-01-29 20:22 - 00003892 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-29 20:22 - 2015-01-29 20:22 - 00003640 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-29 20:12 - 2015-01-29 20:12 - 00002674 _____ () C:\Users\swahl\Downloads\tune511setting228071.mid
2015-01-29 20:11 - 2015-01-29 20:11 - 00002516 _____ () C:\Users\swahl\Downloads\tune1316setting146541.mid
2015-01-29 20:10 - 2015-01-29 20:10 - 00003173 _____ () C:\Users\swahl\Downloads\tune1316setting146531.mid
2015-01-29 20:10 - 2015-01-29 20:10 - 00003173 _____ () C:\Users\swahl\Downloads\tune1316setting146531 (1).mid
2015-01-29 20:09 - 2015-01-29 20:09 - 00001153 _____ () C:\Users\swahl\Downloads\tune10806setting108061 (2).mid
2015-01-29 20:06 - 2015-01-29 20:06 - 00001153 _____ () C:\Users\swahl\Downloads\tune10806setting108061 (1).mid
2015-01-29 20:05 - 2015-01-29 20:05 - 00003007 _____ () C:\Users\swahl\Downloads\tune2340setting23401.mid
2015-01-29 20:04 - 2015-01-29 20:04 - 00001625 _____ () C:\Users\swahl\Downloads\tune8937setting89371.mid
2015-01-29 20:04 - 2015-01-29 20:04 - 00001153 _____ () C:\Users\swahl\Downloads\tune10806setting108061.mid
2015-01-29 20:03 - 2015-01-29 20:03 - 00001703 _____ () C:\Users\swahl\Downloads\tune2923setting29231.mid
2015-01-29 20:02 - 2015-01-29 20:02 - 00001766 _____ () C:\Users\swahl\Downloads\tune2923setting161041.mid
2015-01-29 20:00 - 2015-01-29 20:00 - 00002337 _____ () C:\Users\swahl\Downloads\tune150setting1501.mid
2015-01-29 19:59 - 2015-01-29 19:59 - 00001618 _____ () C:\Users\swahl\Downloads\tune12setting121 (1).mid
2015-01-29 11:10 - 2015-01-29 11:10 - 00059662 _____ () C:\Users\swahl\Documents\cc_20150129_111001.reg
2015-01-28 19:45 - 2015-01-28 19:45 - 00002457 _____ () C:\Users\swahl\Downloads\tune184setting1841 (2).mid
2015-01-28 19:21 - 2015-01-28 19:21 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (8).mid
2015-01-28 15:27 - 2015-01-28 15:27 - 00583410 _____ () C:\Users\swahl\Downloads\Octave mlclass-ex1-008.html
2015-01-28 15:27 - 2015-01-28 15:27 - 00000000 ____D () C:\Users\swahl\Downloads\Octave mlclass-ex1-008_files
2015-01-28 14:42 - 2015-01-28 14:42 - 00483831 _____ () C:\Users\swahl\Downloads\mlclass-ex1-008.zip
2015-01-27 19:14 - 2015-01-27 19:14 - 00000536 _____ () C:\Users\swahl\Downloads\tune10313setting103131.mid
2015-01-27 19:14 - 2015-01-27 19:14 - 00000536 _____ () C:\Users\swahl\Downloads\tune10313setting103131 (1).mid
2015-01-27 19:13 - 2015-01-27 19:13 - 00000788 _____ () C:\Users\swahl\Downloads\tune10313setting213401.mid
2015-01-27 18:03 - 2015-01-27 18:03 - 00002457 _____ () C:\Users\swahl\Downloads\tune184setting1841 (1).mid
2015-01-27 17:40 - 2015-01-27 17:40 - 00002186 _____ () C:\Users\swahl\Downloads\tune94setting941.mid
2015-01-27 00:41 - 2015-01-27 00:41 - 00004599 _____ () C:\Users\swahl\Downloads\tune351setting236321.mid
2015-01-27 00:39 - 2015-01-27 00:39 - 00002259 _____ () C:\Users\swahl\Downloads\tune54setting541.mid
2015-01-27 00:22 - 2015-01-27 00:22 - 00002457 _____ () C:\Users\swahl\Downloads\tune184setting1841.mid
2015-01-27 00:20 - 2015-01-27 00:20 - 00001609 _____ () C:\Users\swahl\Downloads\tune6588setting65881.mid
2015-01-27 00:20 - 2015-01-27 00:20 - 00001600 _____ () C:\Users\swahl\Downloads\tune6588setting182621.mid
2015-01-26 01:20 - 2014-12-18 19:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-26 01:20 - 2014-12-18 17:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-26 01:20 - 2014-12-12 21:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-26 01:20 - 2014-12-12 19:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-01-26 01:20 - 2014-12-11 21:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-26 01:20 - 2014-12-11 21:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-26 01:20 - 2014-12-11 21:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-26 01:20 - 2014-12-11 21:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-26 01:20 - 2014-12-11 21:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-26 01:20 - 2014-12-11 21:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-26 01:20 - 2014-12-11 21:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-26 01:20 - 2014-12-11 09:47 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-26 01:20 - 2014-12-05 20:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-26 01:20 - 2014-12-05 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-26 01:20 - 2014-12-05 19:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-25 00:07 - 2015-01-25 00:07 - 04070576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-01-24 19:43 - 2015-01-24 19:43 - 00008067 _____ () C:\Users\swahl\Downloads\tune423setting132771 (1).mid
2015-01-24 19:18 - 2015-01-24 19:18 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (7).mid
2015-01-24 19:17 - 2015-01-24 19:17 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (6).mid
2015-01-23 17:40 - 2015-01-23 17:40 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (5).mid
2015-01-22 19:17 - 2015-01-22 19:17 - 00001578 _____ () C:\Users\swahl\Downloads\tune736setting138161.mid
2015-01-22 19:16 - 2015-01-22 19:16 - 00001565 _____ () C:\Users\swahl\Downloads\tune84setting841 (1).mid
2015-01-22 19:14 - 2015-01-22 19:14 - 00003215 _____ () C:\Users\swahl\Downloads\tune399setting132451.mid
2015-01-22 19:14 - 2015-01-22 19:14 - 00002225 _____ () C:\Users\swahl\Downloads\tune399setting132481.mid
2015-01-22 19:04 - 2015-01-22 19:04 - 00002379 _____ () C:\Users\swahl\Downloads\tune399setting132491.mid
2015-01-22 19:04 - 2015-01-22 19:04 - 00002225 _____ () C:\Users\swahl\Downloads\tune399setting3991.mid
2015-01-22 18:57 - 2015-01-22 18:57 - 00002129 _____ () C:\Users\swahl\Downloads\tune1setting11.mid
2015-01-22 18:56 - 2015-01-22 18:56 - 00002242 _____ () C:\Users\swahl\Downloads\tune118setting1181 (1).mid
2015-01-22 18:47 - 2015-01-22 18:47 - 00001266 _____ () C:\Users\swahl\Downloads\tune53setting531.mid
2015-01-22 18:26 - 2015-01-22 18:26 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (4).mid
2015-01-22 18:21 - 2015-01-22 18:21 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (3).mid
2015-01-22 18:03 - 2015-01-22 18:03 - 00001368 _____ () C:\Users\swahl\Downloads\tune562setting5621 (2).mid
2015-01-22 18:02 - 2015-01-22 18:02 - 00001368 _____ () C:\Users\swahl\Downloads\tune562setting5621 (1).mid
2015-01-22 01:35 - 2015-01-22 01:35 - 00005526 _____ () C:\Users\swahl\Downloads\NoiseGate (1).zip
2015-01-22 01:30 - 2015-01-22 01:30 - 00005526 _____ () C:\Users\swahl\Downloads\NoiseGate.zip
2015-01-22 00:37 - 2015-01-22 00:37 - 149087422 _____ () C:\Users\swahl\Downloads\Audio recording 2015-01-19 23-17-22 (1).aac
2015-01-20 19:56 - 2015-01-20 19:56 - 00003918 _____ () C:\Users\swahl\Downloads\tune736setting138151 (1).mid
2015-01-20 19:13 - 2015-01-20 19:13 - 00001506 _____ () C:\Users\swahl\Downloads\tune736setting7361 (1).mid
2015-01-20 18:52 - 2015-01-20 18:52 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (2).mid
2015-01-20 18:50 - 2015-01-20 18:50 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171 (1).mid
2015-01-20 18:47 - 2015-01-20 18:47 - 00002258 _____ () C:\Users\swahl\Downloads\tune840setting140021.mid
2015-01-20 18:47 - 2015-01-20 18:47 - 00002024 _____ () C:\Users\swahl\Downloads\tune840setting140031.mid
2015-01-20 18:46 - 2015-01-20 18:46 - 00002602 _____ () C:\Users\swahl\Downloads\tune840setting8401.mid
2015-01-20 18:45 - 2015-01-20 18:45 - 00001089 _____ () C:\Users\swahl\Downloads\tune21setting211.mid
2015-01-20 18:44 - 2015-01-20 18:44 - 00001368 _____ () C:\Users\swahl\Downloads\tune562setting5621.mid
2015-01-20 18:41 - 2015-01-20 18:41 - 00001187 _____ () C:\Users\swahl\Downloads\tune1155setting11551.mid
2015-01-20 18:40 - 2015-01-20 18:40 - 00003859 _____ () C:\Users\swahl\Downloads\tune17setting171.mid
2015-01-20 18:15 - 2015-01-20 18:15 - 00003839 _____ () C:\Users\swahl\Downloads\tune736setting236561.mid
2015-01-20 18:15 - 2015-01-20 18:15 - 00001614 _____ () C:\Users\swahl\Downloads\tune736setting210161.mid
2015-01-20 18:15 - 2015-01-20 18:15 - 00001578 _____ () C:\Users\swahl\Downloads\tune736setting210171.mid
2015-01-20 18:14 - 2015-01-20 18:14 - 00003918 _____ () C:\Users\swahl\Downloads\tune736setting138151.mid
2015-01-20 18:14 - 2015-01-20 18:14 - 00003867 _____ () C:\Users\swahl\Downloads\tune736setting138121.mid
2015-01-20 18:14 - 2015-01-20 18:14 - 00001560 _____ () C:\Users\swahl\Downloads\tune736setting138111.mid
2015-01-20 18:13 - 2015-01-20 18:13 - 00001576 _____ () C:\Users\swahl\Downloads\tune736setting138101.mid
2015-01-20 18:12 - 2015-01-20 18:12 - 00001506 _____ () C:\Users\swahl\Downloads\tune736setting7361.mid
2015-01-19 00:20 - 2015-01-29 10:33 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-01-19 00:20 - 2015-01-19 00:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-01-18 17:22 - 2015-01-18 17:22 - 00324194 _____ () C:\Users\swahl\Downloads\bwchart104b.zip
2015-01-18 03:33 - 2015-01-18 03:33 - 00107055 _____ () C:\Users\swahl\Desktop\(4)Avalon.scx
2015-01-18 03:32 - 2015-01-18 03:32 - 00145451 _____ () C:\Users\swahl\Desktop\(3)Demian.scx
2015-01-17 20:05 - 2015-01-17 20:06 - 00000000 ____D () C:\Users\swahl\AppData\Local\Microsoft Games
2015-01-17 17:40 - 2015-01-17 17:40 - 00003275 _____ () C:\Users\swahl\Downloads\tune20setting201 (3).mid
2015-01-17 17:11 - 2015-01-17 17:11 - 00002415 _____ () C:\Users\swahl\Downloads\tune250setting129721.mid
2015-01-17 16:08 - 2015-01-17 16:08 - 00001434 _____ () C:\Users\swahl\Downloads\tune1308setting13081 (1).mid
2015-01-17 10:46 - 2015-01-17 10:46 - 00003021 _____ () C:\Users\swahl\Downloads\tune271setting2711.mid
2015-01-17 10:45 - 2015-01-17 10:45 - 00001434 _____ () C:\Users\swahl\Downloads\tune1308setting13081.mid
2015-01-17 08:37 - 2015-01-17 08:37 - 00002316 _____ () C:\Users\swahl\Downloads\tune1016setting10161 (4).mid
2015-01-14 21:49 - 2015-01-14 21:49 - 00003275 _____ () C:\Users\swahl\Downloads\tune20setting201 (2).mid
2015-01-14 21:47 - 2015-01-14 21:47 - 00003275 _____ () C:\Users\swahl\Downloads\tune20setting201 (1).mid
2015-01-13 21:21 - 2015-01-13 21:21 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\AMD
2015-01-13 14:37 - 2015-01-13 14:38 - 04628104 _____ () C:\Users\swahl\Downloads\iCCup Map Pack v33.2.rar
2015-01-13 00:43 - 2015-01-13 00:43 - 00002316 _____ () C:\Users\swahl\Downloads\tune1016setting10161.mid
2015-01-13 00:43 - 2015-01-13 00:43 - 00002316 _____ () C:\Users\swahl\Downloads\tune1016setting10161 (3).mid
2015-01-13 00:43 - 2015-01-13 00:43 - 00002316 _____ () C:\Users\swahl\Downloads\tune1016setting10161 (2).mid
2015-01-13 00:43 - 2015-01-13 00:43 - 00002316 _____ () C:\Users\swahl\Downloads\tune1016setting10161 (1).mid
2015-01-13 00:43 - 2015-01-13 00:43 - 00000942 _____ () C:\Users\swahl\Downloads\tune1016setting142351.mid
2015-01-13 00:26 - 2015-01-13 00:26 - 00002007 _____ () C:\Users\swahl\Downloads\tune6914setting69141.mid
2015-01-12 13:18 - 2015-01-12 13:18 - 00001307 _____ () C:\Users\Public\Desktop\mca64Launcher 2.0.0.113.lnk
2015-01-12 13:14 - 2015-01-12 13:15 - 21538711 _____ () C:\Users\swahl\Downloads\mca64Launcher2.0.0.113.exe
2015-01-12 12:57 - 2014-10-17 18:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-12 12:57 - 2014-10-17 17:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-01-12 12:57 - 2014-07-06 18:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-01-12 12:57 - 2014-07-06 18:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-01-12 12:57 - 2014-07-06 18:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-01-12 12:57 - 2014-07-06 18:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-01-12 12:57 - 2014-07-06 17:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-01-12 12:57 - 2014-07-06 17:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-01-12 12:57 - 2014-07-06 17:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-01-12 12:57 - 2014-07-06 17:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-01-12 12:54 - 2014-11-26 17:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-12 12:54 - 2014-11-26 17:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-01-12 12:54 - 2014-11-21 19:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-12 12:54 - 2014-11-21 19:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-01-12 12:54 - 2014-11-21 19:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-01-12 12:54 - 2014-11-21 18:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-12 12:54 - 2014-11-21 18:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-01-12 12:54 - 2014-11-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-12 12:54 - 2014-11-21 18:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-01-12 12:54 - 2014-11-21 18:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-01-12 12:54 - 2014-11-21 18:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-01-12 12:54 - 2014-11-21 18:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-01-12 12:54 - 2014-11-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-01-12 12:54 - 2014-11-21 18:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-01-12 12:54 - 2014-11-21 18:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-01-12 12:54 - 2014-11-21 18:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-01-12 12:54 - 2014-11-21 18:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-01-12 12:54 - 2014-11-21 18:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-01-12 12:54 - 2014-11-21 18:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-01-12 12:54 - 2014-11-21 18:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-01-12 12:54 - 2014-11-21 18:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-01-12 12:54 - 2014-11-21 18:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-12 12:54 - 2014-11-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-12 12:54 - 2014-11-21 18:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-12 12:54 - 2014-11-21 18:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-01-12 12:54 - 2014-11-21 18:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-01-12 12:54 - 2014-11-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-01-12 12:54 - 2014-11-21 18:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-01-12 12:54 - 2014-11-21 18:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-01-12 12:54 - 2014-11-21 17:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-01-12 12:54 - 2014-11-21 17:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-01-12 12:54 - 2014-11-21 17:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-01-12 12:54 - 2014-11-21 17:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-01-12 12:54 - 2014-11-21 17:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-12 12:54 - 2014-11-21 17:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-12 12:54 - 2014-11-21 17:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-01-12 12:54 - 2014-11-21 17:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-12 12:54 - 2014-11-21 17:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-01-12 12:54 - 2014-11-21 17:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-12 12:54 - 2014-11-21 17:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-01-12 12:54 - 2014-11-21 17:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-01-12 12:54 - 2014-11-21 17:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-01-12 12:54 - 2014-11-21 17:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-01-12 12:54 - 2014-11-21 17:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-01-12 12:54 - 2014-11-21 17:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-12 12:54 - 2014-11-21 17:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-01-12 12:54 - 2014-11-21 17:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-01-12 12:54 - 2014-11-21 17:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-01-12 12:54 - 2014-11-21 17:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-12 12:54 - 2014-11-21 17:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-01-12 12:54 - 2014-11-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-01-12 12:54 - 2014-11-21 17:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-01-12 12:54 - 2014-11-21 16:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-01-12 12:54 - 2014-11-21 16:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-01-12 12:54 - 2014-11-10 19:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-12 12:54 - 2014-11-10 18:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-01-12 12:54 - 2014-11-10 17:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-12 12:54 - 2014-10-29 18:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-01-12 12:54 - 2014-10-29 17:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-01-12 12:53 - 2014-11-07 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-12 12:53 - 2014-11-07 18:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-01-12 12:53 - 2014-10-02 18:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-12 12:53 - 2014-10-02 18:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-01-12 12:53 - 2014-10-02 18:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-01-12 12:53 - 2014-10-02 18:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-01-12 12:53 - 2014-10-02 18:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-01-12 12:53 - 2014-10-02 17:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-01-12 12:53 - 2014-10-02 17:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-01-12 12:53 - 2014-10-02 17:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-01-12 12:53 - 2014-10-02 17:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-01-12 12:53 - 2014-10-02 17:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-01-08 18:58 - 2015-01-08 18:58 - 00001589 _____ () C:\Users\swahl\Downloads\tune55setting551 (3).mid
2015-01-08 15:52 - 2015-01-08 15:52 - 00002066 _____ () C:\Users\swahl\Downloads\tune98setting981 (3).mid
2015-01-08 15:48 - 2015-01-08 15:48 - 00002066 _____ () C:\Users\swahl\Downloads\tune98setting981 (2).mid
2015-01-08 15:30 - 2015-01-08 15:30 - 00008067 _____ () C:\Users\swahl\Downloads\tune423setting132771.mid
2015-01-08 15:29 - 2015-01-08 15:29 - 00002422 _____ () C:\Users\swahl\Downloads\tune423setting4231.mid
2015-01-08 15:01 - 2015-01-08 15:01 - 00001589 _____ () C:\Users\swahl\Downloads\tune55setting551 (2).mid
2015-01-07 12:10 - 2015-01-07 12:10 - 00002066 _____ () C:\Users\swahl\Downloads\tune98setting981 (1).mid
2015-01-07 11:23 - 2015-01-07 11:23 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (6).mid
2015-01-07 11:23 - 2015-01-07 11:23 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (5).mid
2015-01-07 09:34 - 2015-01-07 09:35 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2015-01-07 09:34 - 2015-01-07 09:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-01-07 09:33 - 2015-01-07 09:33 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-01-07 09:33 - 2015-01-07 09:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-01-07 09:33 - 2015-01-07 09:33 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-01-07 09:33 - 2015-01-07 09:33 - 00000000 ____D () C:\Program Files\iTunes
2015-01-07 09:33 - 2015-01-07 09:33 - 00000000 ____D () C:\Program Files\iPod
2015-01-07 09:33 - 2015-01-07 09:33 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-01-06 18:05 - 2015-01-06 18:05 - 00001648 _____ () C:\Users\swahl\Downloads\tune1583setting215921.mid
2015-01-06 18:05 - 2015-01-06 18:05 - 00000964 _____ () C:\Users\swahl\Downloads\tune1583setting208831.mid
2015-01-06 17:43 - 2015-01-06 17:43 - 00001589 _____ () C:\Users\swahl\Downloads\tune55setting551 (1).mid
2015-01-06 17:33 - 2015-01-06 17:33 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (4).mid
2015-01-06 16:46 - 2015-01-06 16:46 - 00002129 _____ () C:\Users\swahl\Downloads\tune44setting441 (2).mid
2015-01-06 16:33 - 2015-01-06 16:33 - 00002129 _____ () C:\Users\swahl\Downloads\tune44setting441 (1).mid
2015-01-06 16:12 - 2015-01-06 16:12 - 00002187 _____ () C:\Users\swahl\Downloads\tune103setting1031 (2).mid
2015-01-06 16:05 - 2015-01-06 16:05 - 00002187 _____ () C:\Users\swahl\Downloads\tune103setting1031 (1).mid
2015-01-06 15:50 - 2015-01-06 15:50 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (3).mid
2015-01-06 15:49 - 2015-01-06 15:49 - 00000586 _____ () C:\Users\swahl\Downloads\tune27setting124071.mid
2015-01-06 15:48 - 2015-01-06 15:48 - 00002611 _____ () C:\Users\swahl\Downloads\tune27setting124061 (1).mid
2015-01-06 15:47 - 2015-01-06 15:47 - 00000247 _____ () C:\Users\swahl\Downloads\drowsymaggie-1.abc
2015-01-06 15:41 - 2015-01-06 15:41 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (2).mid
2015-01-06 15:40 - 2015-01-06 15:40 - 00002045 _____ () C:\Users\swahl\Downloads\tune18setting181.mid
2015-01-06 15:39 - 2015-01-06 15:39 - 00002512 _____ () C:\Users\swahl\Downloads\tune4403setting44031.mid
2015-01-06 15:39 - 2015-01-06 15:39 - 00001378 _____ () C:\Users\swahl\Downloads\tune10setting101.mid
2015-01-06 15:38 - 2015-01-06 15:38 - 00002129 _____ () C:\Users\swahl\Downloads\tune44setting441.mid
2015-01-06 15:37 - 2015-01-06 15:37 - 00001589 _____ () C:\Users\swahl\Downloads\tune55setting551.mid
2015-01-06 15:36 - 2015-01-06 15:36 - 00001565 _____ () C:\Users\swahl\Downloads\tune84setting841.mid
2015-01-06 15:35 - 2015-01-06 15:35 - 00002357 _____ () C:\Users\swahl\Downloads\tune97setting971.mid
2015-01-06 15:35 - 2015-01-06 15:35 - 00001150 _____ () C:\Users\swahl\Downloads\tune90setting901.mid
2015-01-06 15:34 - 2015-01-06 15:34 - 00004745 _____ () C:\Users\swahl\Downloads\tune105setting126681.mid
2015-01-06 15:34 - 2015-01-06 15:34 - 00002301 _____ () C:\Users\swahl\Downloads\tune105setting1051.mid
2015-01-06 15:32 - 2015-01-06 15:32 - 00003411 _____ () C:\Users\swahl\Downloads\tune67setting671.mid
2015-01-06 15:32 - 2015-01-06 15:32 - 00002470 _____ () C:\Users\swahl\Downloads\tune543setting5431 (1).mid
2015-01-06 15:31 - 2015-01-06 15:31 - 00002470 _____ () C:\Users\swahl\Downloads\tune543setting5431.mid
2015-01-06 15:31 - 2015-01-06 15:31 - 00001728 _____ () C:\Users\swahl\Downloads\tune543setting250101.mid
2015-01-06 15:31 - 2015-01-06 15:31 - 00001161 _____ () C:\Users\swahl\Downloads\tune543setting135011.mid
2015-01-06 15:30 - 2015-01-06 15:30 - 00002842 _____ () C:\Users\swahl\Downloads\tune511setting5111.mid
2015-01-06 15:29 - 2015-01-06 15:29 - 00001147 _____ () C:\Users\swahl\Downloads\tune141setting5301.mid
2015-01-06 15:29 - 2015-01-06 15:29 - 00001107 _____ () C:\Users\swahl\Downloads\tune141setting246091.mid
2015-01-06 15:28 - 2015-01-06 15:28 - 00002436 _____ () C:\Users\swahl\Downloads\tune138setting1381.mid
2015-01-06 15:27 - 2015-01-06 15:27 - 00002080 _____ () C:\Users\swahl\Downloads\tune75setting751.mid
2015-01-06 15:27 - 2015-01-06 15:27 - 00001156 _____ () C:\Users\swahl\Downloads\tune593setting5931.mid
2015-01-06 15:26 - 2015-01-06 15:26 - 00004815 _____ () C:\Users\swahl\Downloads\tune589setting235811.mid
2015-01-06 15:26 - 2015-01-06 15:26 - 00001124 _____ () C:\Users\swahl\Downloads\tune589setting5891 (2).mid
2015-01-06 15:25 - 2015-01-06 15:25 - 00002256 _____ () C:\Users\swahl\Downloads\tune517setting134501.mid
2015-01-06 15:24 - 2015-01-06 15:24 - 00003295 _____ () C:\Users\swahl\Downloads\tune517setting134491.mid
2015-01-06 15:24 - 2015-01-06 15:24 - 00002279 _____ () C:\Users\swahl\Downloads\tune517setting5171.mid
2015-01-06 15:23 - 2015-01-06 15:23 - 00002242 _____ () C:\Users\swahl\Downloads\tune118setting1181.mid
2015-01-06 15:22 - 2015-01-06 15:22 - 00001729 _____ () C:\Users\swahl\Downloads\tune111setting1111.mid
2015-01-06 15:22 - 2015-01-06 15:22 - 00001093 _____ () C:\Users\swahl\Downloads\tune238setting2381.mid
2015-01-06 15:21 - 2015-01-06 15:21 - 00000642 _____ () C:\Users\swahl\Downloads\tune441setting4411.mid
2015-01-06 15:20 - 2015-01-06 15:20 - 00001728 _____ () C:\Users\swahl\Downloads\tune92setting921.mid
2015-01-06 15:20 - 2015-01-06 15:20 - 00001262 _____ () C:\Users\swahl\Downloads\tune211setting2111.mid
2015-01-06 15:19 - 2015-01-06 15:19 - 00001114 _____ () C:\Users\swahl\Downloads\tune27setting271 (1).mid
2015-01-06 15:18 - 2015-01-06 15:18 - 00002284 _____ () C:\Users\swahl\Downloads\tune197setting1971.mid
2015-01-06 15:17 - 2015-01-06 15:17 - 00002241 _____ () C:\Users\swahl\Downloads\tune208setting2081.mid
2015-01-06 15:16 - 2015-01-06 15:16 - 00002664 _____ () C:\Users\swahl\Downloads\tune2setting21.mid
2015-01-06 15:16 - 2015-01-06 15:16 - 00002278 _____ () C:\Users\swahl\Downloads\cliffsofmoher.abc
2015-01-06 15:16 - 2015-01-06 15:16 - 00001618 _____ () C:\Users\swahl\Downloads\tune12setting121.mid
2015-01-06 15:15 - 2015-01-06 15:15 - 00003275 _____ () C:\Users\swahl\Downloads\tune20setting201.mid
2015-01-06 13:30 - 2015-01-06 13:30 - 00001136 _____ () C:\Users\swahl\Downloads\tune15setting151.mid
2015-01-06 13:28 - 2015-01-06 13:28 - 00003422 _____ () C:\Users\swahl\Downloads\tune62setting621.mid
2015-01-06 13:24 - 2015-01-06 13:24 - 00002187 _____ () C:\Users\swahl\Downloads\tune103setting1031.mid
2015-01-06 13:21 - 2015-01-06 13:21 - 00002428 _____ () C:\Users\swahl\Downloads\tune5setting51 (1).mid
2015-01-06 13:21 - 2015-01-06 13:21 - 00001076 _____ () C:\Users\swahl\Downloads\tune68setting681.mid
2015-01-06 13:19 - 2015-01-06 13:19 - 00002066 _____ () C:\Users\swahl\Downloads\tune98setting981.mid
2015-01-06 13:14 - 2015-01-06 13:14 - 00002818 _____ () C:\Users\swahl\Downloads\tune42setting421.mid
2015-01-06 13:14 - 2015-01-06 13:14 - 00002818 _____ () C:\Users\swahl\Downloads\tune42setting421 (1).mid
2015-01-06 13:13 - 2015-01-06 13:13 - 00002662 _____ () C:\Users\swahl\Downloads\tune475setting4751.mid
2015-01-06 13:04 - 2015-01-06 13:04 - 00001414 _____ () C:\Users\swahl\Downloads\tune5618setting56181.mid
2015-01-06 13:03 - 2015-01-06 13:03 - 00001785 _____ () C:\Users\swahl\Downloads\tune4206setting42061 (1).mid
2015-01-06 12:55 - 2015-01-06 12:55 - 00001785 _____ () C:\Users\swahl\Downloads\tune4206setting42061.mid
2015-01-06 12:52 - 2015-01-06 12:52 - 00001852 _____ () C:\Users\swahl\Downloads\tune7460setting74601.mid
2015-01-06 12:51 - 2015-01-06 12:51 - 00001754 _____ () C:\Users\swahl\Downloads\tune12710setting214851.mid
2015-01-06 12:50 - 2015-01-06 12:50 - 00003444 _____ () C:\Users\swahl\Downloads\tune9536setting95361.mid
2015-01-06 12:49 - 2015-01-06 12:49 - 00001134 _____ () C:\Users\swahl\Downloads\tune10927setting109271.mid
2015-01-06 12:48 - 2015-01-06 12:48 - 00002211 _____ () C:\Users\swahl\Downloads\tune13312setting232811.mid
2015-01-06 12:47 - 2015-01-06 12:47 - 00001344 _____ () C:\Users\swahl\Downloads\tune6991setting69911.mid
2015-01-06 12:43 - 2015-01-06 12:43 - 00001370 _____ () C:\Users\swahl\Downloads\tune4194setting41941.mid
2015-01-06 12:41 - 2015-01-06 12:41 - 00003293 _____ () C:\Users\swahl\Downloads\tune7137setting71371.mid
2015-01-06 12:40 - 2015-01-06 12:40 - 00001850 _____ () C:\Users\swahl\Downloads\tune9384setting93841.mid
2015-01-06 12:39 - 2015-01-06 12:39 - 00001925 _____ () C:\Users\swahl\Downloads\tune12633setting212541.mid
2015-01-06 12:37 - 2015-01-06 12:37 - 00001510 _____ () C:\Users\swahl\Downloads\tune9866setting98661.mid
2015-01-06 12:35 - 2015-01-06 12:35 - 00002231 _____ () C:\Users\swahl\Downloads\tune5304setting53041.mid
2015-01-06 10:52 - 2015-01-06 10:52 - 00004322 _____ () C:\Users\swahl\Downloads\tune4856setting48561.mid
2015-01-06 10:50 - 2015-01-06 10:50 - 00001273 _____ () C:\Users\swahl\Downloads\tune11931setting119311.mid
2015-01-05 01:26 - 2015-01-05 01:26 - 00000000 __SHD () C:\Users\swahl\AppData\Local\EmieBrowserModeList
2015-01-05 01:22 - 2015-01-05 01:22 - 00000000 ____D () C:\Users\swahl\Documents\NBGI
2015-01-05 01:22 - 2015-01-05 01:22 - 00000000 ____D () C:\Users\swahl\AppData\Local\NBGI
2015-01-05 01:21 - 2015-01-05 01:21 - 00001338 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2015-01-05 01:21 - 2015-01-05 01:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-01-04 01:30 - 2015-01-13 20:35 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Bioshock
2015-01-04 01:30 - 2015-01-04 01:38 - 00000000 ____D () C:\Users\swahl\Documents\Bioshock
2015-01-03 10:47 - 2015-01-03 10:47 - 00000000 ____D () C:\Users\swahl\Downloads\TEW-818DRUv1_(FW1.0.9.0)
2015-01-03 10:36 - 2015-01-03 10:43 - 07770099 _____ () C:\Users\swahl\Downloads\tew-818druv1_(fw1.0.9.0).zip
2015-01-02 23:13 - 2015-01-02 23:13 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-01-02 23:13 - 2015-01-02 23:13 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\library_dir
2015-01-02 23:13 - 2015-01-02 23:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-01-02 23:13 - 2015-01-02 23:13 - 00000000 ____D () C:\ProgramData\ATI
2015-01-02 23:12 - 2015-01-21 17:35 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Raptr
2015-01-02 23:12 - 2015-01-02 23:13 - 00000000 ____D () C:\Program Files (x86)\Raptr
2015-01-02 23:12 - 2015-01-02 23:12 - 00053564 _____ () C:\Windows\SysWOW64\CCCInstall_201501022312234645.log
2015-01-02 23:12 - 2015-01-02 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-01-02 23:12 - 2015-01-02 23:12 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-01-02 23:11 - 2015-01-02 23:11 - 00000000 ____D () C:\Program Files (x86)\AMD
2015-01-02 22:57 - 2015-01-24 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mca64Launcher
2015-01-02 22:57 - 2015-01-12 13:17 - 00000000 ____D () C:\Program Files (x86)\mca64Launcher
2015-01-02 22:55 - 2015-01-02 22:55 - 21139471 _____ () C:\Users\swahl\Downloads\mca64Launcher2.0.0.112.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 01:49 - 2013-12-02 17:19 - 00000000 ____D () C:\Users\swahl\AppData\Local\Battle.net
2015-02-01 01:07 - 2012-07-20 16:33 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-01 01:04 - 2012-03-05 01:23 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3746372844-262032399-287551824-1000UA.job
2015-02-01 00:08 - 2014-05-23 18:01 - 00000000 ____D () C:\Program Files (x86)\Heroes of the Storm
2015-01-31 21:42 - 2012-03-05 01:25 - 00000000 ____D () C:\ProgramData\MFAData
2015-01-31 18:19 - 2012-03-06 00:55 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\vlc
2015-01-31 12:23 - 2012-03-05 01:02 - 01345623 _____ () C:\Windows\WindowsUpdate.log
2015-01-31 11:04 - 2012-03-05 01:23 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3746372844-262032399-287551824-1000Core.job
2015-01-31 10:44 - 2012-03-05 02:37 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-31 10:34 - 2009-07-13 20:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-31 10:34 - 2009-07-13 20:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-31 01:49 - 2009-07-13 19:20 - 00000000 __RHD () C:\Users\Default
2015-01-31 01:47 - 2009-07-13 18:34 - 00000215 _____ () C:\Windows\system.ini
2015-01-31 01:19 - 2012-03-05 02:36 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Mozilla
2015-01-31 01:19 - 2012-03-05 01:23 - 00000000 ____D () C:\Users\swahl\AppData\Local\Google
2015-01-30 16:35 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-30 15:43 - 2012-03-09 01:56 - 00000000 ____D () C:\Users\swahl\AppData\Local\CrashDumps
2015-01-29 11:15 - 2012-08-01 01:20 - 00000000 ____D () C:\Program Files (x86)\TVAnts
2015-01-29 11:05 - 2013-05-12 12:32 - 00000000 ____D () C:\ProgramData\HappyCloud
2015-01-27 16:33 - 2013-01-13 20:42 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\TS3Client
2015-01-26 01:29 - 2013-08-10 10:38 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-26 01:21 - 2012-03-07 07:14 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-25 02:09 - 2014-10-23 23:47 - 00000965 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-01-25 02:09 - 2014-03-31 13:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-01-25 00:07 - 2012-07-20 16:33 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-25 00:07 - 2012-07-20 16:33 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-25 00:07 - 2012-07-20 16:33 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-22 01:45 - 2013-06-08 12:16 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Audacity
2015-01-18 23:32 - 2013-02-24 18:10 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Spotify
2015-01-15 22:09 - 2012-03-05 10:55 - 00000000 ____D () C:\Program Files (x86)\Trillian
2015-01-14 14:52 - 2013-02-24 18:23 - 00000000 ____D () C:\Users\swahl\AppData\Local\Spotify
2015-01-13 20:46 - 2014-10-05 17:49 - 00000000 ____D () C:\Users\swahl\Desktop\New folder
2015-01-12 14:05 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2015-01-12 13:05 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-12 12:59 - 2012-03-18 11:37 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-01-07 14:03 - 2012-06-30 04:31 - 00000000 ____D () C:\Users\swahl\Desktop\LazyNewbPack [0.34.11] [V13]
2015-01-07 09:33 - 2012-05-28 23:30 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-01-07 09:32 - 2014-09-18 20:11 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2015-01-06 01:03 - 2014-02-22 20:35 - 00000000 ____D () C:\Users\swahl\AppData\Local\GoPanda2
2015-01-05 01:21 - 2013-02-20 20:07 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-01-05 01:21 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-04 00:59 - 2013-02-08 02:23 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\OBS
2015-01-03 13:41 - 2013-02-08 02:23 - 00000000 ____D () C:\Program Files (x86)\OBS
2015-01-02 23:17 - 2014-12-20 12:07 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\DarkSoulsII
2015-01-02 23:17 - 2013-12-31 15:46 - 00000000 ____D () C:\Users\swahl\AppData\Roaming\Trine2
2015-01-02 23:16 - 2012-03-05 10:34 - 00000000 ____D () C:\Users\swahl\Documents\StarCraft II
2015-01-02 23:12 - 2012-03-19 02:30 - 00000000 ____D () C:\ProgramData\AMD
2015-01-02 23:09 - 2014-11-13 23:00 - 00000000 ____D () C:\Program Files\AMD
2015-01-02 23:08 - 2012-03-19 02:27 - 00000000 ____D () C:\AMD
2015-01-02 23:08 - 2012-03-05 01:36 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2015-01-02 23:00 - 2014-08-09 23:59 - 00000000 ____D () C:\Users\swahl\AppData\Local\Adobe
2015-01-02 22:59 - 2014-01-07 19:06 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-01-02 22:58 - 2009-07-13 21:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI

==================== Files in the root of some directories =======

2013-09-10 15:58 - 2014-06-03 02:05 - 0003745 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2012-06-30 21:21 - 2012-06-30 21:22 - 0000665 _____ () C:\Users\swahl\AppData\Roaming\MPQEditor.ini
2012-07-14 09:34 - 2012-07-18 01:13 - 0045270 _____ () C:\Users\swahl\AppData\Roaming\room_v3.dat
2012-12-14 23:39 - 2012-12-14 23:39 - 0000000 _____ () C:\Users\swahl\AppData\Roaming\Stardockfences_debug_snapshot.dat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-24 00:27

==================== End Of Log ============================