Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

malware and recycle bin is corrupted /access is denied??


  • This topic is locked This topic is locked
4 replies to this topic

#1 Kevin Hill

Kevin Hill

  • Members
  • 191 posts
  • OFFLINE
  •  
  • Local time:04:42 PM

Posted 03 June 2015 - 02:23 PM

Referred from here: http://www.bleepingcomputer.com/forums/t/578215/malware-and-recycle-bin-is-corrupted-access-is-denied/ Pasted in description of problem from initial post of that topic. This post and the next were split from that topic. ~ OB
 
 
every time I reinstall the os, and rename the reycle bin, then scan m bytes it finds it, so the trojan spy eyes isnt removed , also about blank hijacker
 
Users shortcut scan result (x64) Version:03-06-2015
Ran by kjh71pc at 2015-06-03 15:23:22
Running from C:\Users\kjh71pc\Downloads
Boot Mode: Normal
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
 
 
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro Help.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo Uninstaller Pro Help.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe (VS Revo Group)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Uninstall Revo Uninstaller Pro.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos\Beats Audio Control Panel.lnk -> C:\Windows\System32\IDTNC64.cpl (IDT, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iYogi\TechGenie\TechGenie.lnk -> C:\Windows\Installer\{0D21CFFE-7282-4BBF-9BEF-7A2377F4E2D9}\_6EAA610D2F35C528E2F370.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp\GVMateApp.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp\Uninstall GVMateApp.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Libraries ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Libraries ()
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\Links\Desktop.lnk -> C:\Users\kjh71pc\Desktop ()
Shortcut: C:\Users\kjh71pc\Links\Downloads.lnk -> C:\Users\kjh71pc\Downloads ()
Shortcut: C:\Users\kjh71pc\Desktop\GVMateApp.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe ()
Shortcut: C:\Users\kjh71pc\Desktop\UsbFix.lnk -> C:\UsbFix\UsbFix.exe ()
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Libraries ()
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GVMateApp.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe ()
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access\Private Internet Access.lnk -> C:\Program Files\pia_manager\pia_manager.exe ()
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe (VS Revo Group)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Libraries ()
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\startscreen.lnk -> C:\Program Files (x86)\StartIsBack\StartScreen.exe (www.startisback.com)
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe (VS Revo Group)
Shortcut: C:\Users\Public\Desktop\TechGenie.lnk -> C:\Windows\Installer\{0D21CFFE-7282-4BBF-9BEF-7A2377F4E2D9}\_CF1F592393E145D36A786F.exe ()
 
 
 
 
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp\RTCBrowser.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe (PCPhoneSoft.com) -> --user-agent="Mozilla/5.0 (Windows NT) AppleWebKit/537.36 (KHTML, like Gecko)"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default User\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access\Reinstall TAP Driver.lnk -> C:\Program Files\pia_manager\pia_manager.exe () -> --reinstall-tap
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access\Uninstall Private Internet Access.lnk -> C:\Program Files\pia_manager\installer_win.exe () -> --uninstall
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\kjh71pc\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
 
 
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro on the Web.url -> hxxp://www.revouninstallerpro.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp\GVMateApp on the Web.url -> hxxp://www.GVMate.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp\GVMatepp on the Web.url -> hxxp://www.PCPhoneSoft.com
InternetURL: C:\Users\kjh71pc\Favorites\.EXE Virus  Yahoo Answers.url -> https://answers.yahoo.com/question/index?qid=20071115234751AAPQIQ1
InternetURL: C:\Users\kjh71pc\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\kjh71pc\Favorites\Bleeping Computer Technical Support Forums.url -> hxxp://www.bleepingcomputer.com/forums/
InternetURL: C:\Users\kjh71pc\Favorites\C Access is denied  Yahoo Answers.url -> https://answers.yahoo.com/question/index?qid=20080331080223AAyIRpK
InternetURL: C:\Users\kjh71pc\Favorites\Download the latest version  F-Secure.url -> https://www.f-secure.com/en/web/home_global/downloads
InternetURL: C:\Users\kjh71pc\Favorites\Downloading ⋆ UsbFix.url -> hxxp://www.en.usbfix.net/downloadings/
InternetURL: C:\Users\kjh71pc\Favorites\EMPs cause aircraft emergencies and disasters daily But what’s causing EMPs - San Jose Psychic  Examiner.com.url -> hxxp://www.examiner.com/article/emps-cause-aircraft-emergencies-and-disasters-daily-but-what-s-causing-emps
InternetURL: C:\Users\kjh71pc\Favorites\Fisherman Catches Piranha in Arkansas Lake.url -> hxxp://www.msn.com/en-ca/news/offbeat/fisherman-catches-piranha-in-arkansas-lake/ar-BBjasvv?ocid=iehp
InternetURL: C:\Users\kjh71pc\Favorites\Fix Corrupted Recycle Bin in Windows 8  PC Error Repair Solutions n Guide.url -> hxxp://www.reimagerepair.us.com/blog/fix-corrupted-recycle-bin-in-windows-8
InternetURL: C:\Users\kjh71pc\Favorites\how can remove viruses by command prompt  Yahoo Answers.url -> https://answers.yahoo.com/question/index?qid=20090615000613AAcrXWP
InternetURL: C:\Users\kjh71pc\Favorites\How do you remove the about blank virus by editing the registry.url -> hxxp://www.answers.com/Q/How_do_you_remove_the_about_blank_virus_by_editing_the_registry
InternetURL: C:\Users\kjh71pc\Favorites\How to Erase a Locked Hard Drive  eHow.url -> hxxp://www.ehow.com/how_6459988_erase-locked-hard-drive.html
InternetURL: C:\Users\kjh71pc\Favorites\How to Locate Viruses Using the Attrib Command 14 Steps.url -> hxxp://www.wikihow.com/Locate-Viruses-Using-the-Attrib-Command
InternetURL: C:\Users\kjh71pc\Favorites\How to Remove the Brontok Virus (8 Steps)  eHow.url -> hxxp://www.ehow.com/how_6131000_remove-brontok-virus.html
InternetURL: C:\Users\kjh71pc\Favorites\How to remove write protection from a USB flash drive [Solved] - How To - Windows XP.url -> hxxp://www.tomshardware.com/forum/284827-45-remove-write-protection-flash-drive
InternetURL: C:\Users\kjh71pc\Favorites\Infected by Recycler & $RECYCLE.BIN virus-worm - Am I infected What do I do.url -> hxxp://www.bleepingcomputer.com/forums/t/289569/infected-by-recycler-recyclebin-virusworm/
InternetURL: C:\Users\kjh71pc\Favorites\is this files in my C drive is a virus $RecycleBin , $SysReset, Config.Msi.url -> hxxp://tqaforum.net/discussion/240101/is-this-files-in-my-c-drive-is-a-virus-recyclebin-sysreset-config-msi/p1
InternetURL: C:\Users\kjh71pc\Favorites\Make Your Worrier a Warrior A Guide to Conquering Your Child's Fears Daniel B. Peters 9781935067238 Amazon.com Books.url -> hxxp://www.amazon.com/Make-Your-Worrier-Warrior-Conquering/dp/1935067230/ref=sr_1_9?s=books&ie=UTF8&qid=1430703433&sr=1-9&keywords=severe+fear
InternetURL: C:\Users\kjh71pc\Favorites\Master Boot Record (MBR) Repair.url -> https://www.f-secure.com/en/web/labs_global/mbr-repair
InternetURL: C:\Users\kjh71pc\Favorites\Nibiru Planet X  Ison Nibiru  Nibiru Timeline  Nibiru Update.url -> hxxp://www.nibiruplanetx.info/
InternetURL: C:\Users\kjh71pc\Favorites\Nibiru Update 2015.url -> hxxp://www.nibiruupdate.com/
InternetURL: C:\Users\kjh71pc\Favorites\PC Hell How to Remove AboutBlank Homepage Hijacker.url -> hxxp://www.pchell.com/support/aboutblank.shtml
InternetURL: C:\Users\kjh71pc\Favorites\PlanetXtra105 - YouTube.url -> https://www.youtube.com/channel/UC5ZTsWApxWXpfJCHGerwbNA
InternetURL: C:\Users\kjh71pc\Favorites\Readon Web TV.url -> hxxp://www.readonwebtv.com/video2.htm
InternetURL: C:\Users\kjh71pc\Favorites\Removal instructions for Qone8 - Malware Removal Guides and Self Help Guides - Malwarebytes Forum.url -> https://forums.malwarebytes.org/index.php?/topic/136288-removal-instructions-for-qone8/
InternetURL: C:\Users\kjh71pc\Favorites\Resolving the 'File is open in another program' Windows Issue.url -> hxxp://www.javelin-tech.com/blog/2012/02/file-is-open-in-another-program/
InternetURL: C:\Users\kjh71pc\Favorites\RogueKiller Premium (Personal)  Adlice Software.url -> hxxp://shop.adlice.com/shop/roguekiller-premium-individual/
InternetURL: C:\Users\kjh71pc\Favorites\RogueKiller Premium.url -> hxxp://www.adlice.com/softwares/roguekiller/roguekiller-premium/
InternetURL: C:\Users\kjh71pc\Favorites\Software.url -> hxxp://www.adlice.com/softwares/
InternetURL: C:\Users\kjh71pc\Favorites\Solved My Hard Drive Randomly Locked.url -> hxxp://www.eightforums.com/general-support/28466-my-hard-drive-randomly-locked.html
InternetURL: C:\Users\kjh71pc\Favorites\Sysinternals Security Utilities.url -> https://technet.microsoft.com/en-us/sysinternals/bb795534
InternetURL: C:\Users\kjh71pc\Favorites\TaskSTRun download.url -> hxxp://www.adlice.com/softwares/taskstrun/
InternetURL: C:\Users\kjh71pc\Favorites\Top 8 Web Hosting Sites - Find the best web hosting company.url -> hxxp://serverquestions.com/questions/bu76/cmd-attrib-unable-to-change-attribute
InternetURL: C:\Users\kjh71pc\Favorites\USB FireWall - Free download and software reviews - CNET Download.com.url -> hxxp://download.cnet.com/USB-FireWall/3000-2239_4-10817831.html
InternetURL: C:\Users\kjh71pc\Favorites\USB FireWall introduction.url -> hxxp://www.net-studio.org/usb-firewall
InternetURL: C:\Users\kjh71pc\Favorites\USB FireWall.url -> hxxp://www.download366.com/usb-firewall?utm_source=bing&utm_medium=cpc&utm_campaign=Download366.com---CA---Internet-MAT&utm_content=USB-FireWall&utm_term=Download%20USB%20FireWall
InternetURL: C:\Users\kjh71pc\Favorites\UsbFix - Download Free (Official Web site) - UsbFix.url -> hxxp://www.en.usbfix.net/download/usbfix/
InternetURL: C:\Users\kjh71pc\Favorites\Using the Command Prompt to Reveal Hidden Files  Worldstart's Tech Tips And Computer Help.url -> hxxp://www.worldstart.com/using-the-command-prompt-to-reveal-hidden-files/
InternetURL: C:\Users\kjh71pc\Favorites\Virus - Malware Removal Guide Step-by-Step Guide Updated for 2011  Computer Help.url -> hxxp://www.blifaloo.com/info/virus_removal.php
InternetURL: C:\Users\kjh71pc\Favorites\Virus set my files in all drive to hidden. SOLVED!  https--n4dheem.wordpress.com.url -> https://n4dheem.wordpress.com/2011/03/17/virus-set-my-files-in-all-drive-to-hidden-solved/
InternetURL: C:\Users\kjh71pc\Favorites\What to do when Home Page resets to aboutblank in Internet Explorer.url -> hxxp://www.bitdefender.com/support/What-to-do-when-Home-Page-resets-to-about:blank-in-Internet-Explorer-1089.html
InternetURL: C:\Users\kjh71pc\Favorites\Windows - Attrib - Showing hidden files by virus.url -> hxxp://infodotnet.blogspot.com/2007/12/windows-attrib-showing-hidden-files-by.html
InternetURL: C:\Users\kjh71pc\Favorites\Windows 8 – Folder In Use  Adam Fowler - I.T. From Australia.url -> hxxp://www.adamfowlerit.com/2013/02/14/windows-8-folder-in-use/
InternetURL: C:\Users\kjh71pc\Favorites\▶ Asteroid Splitting the Earth, Planet 7X, Gill Broussard - YouTube.url ->
InternetURL: C:\Users\kjh71pc\Favorites\▶ Coast To Coast AM - April 8, 2015 Planet X, The Rogue Planet - YouTube.url ->
InternetURL: C:\Users\kjh71pc\Favorites\▶ Planet X Nibiru 2015 with Astrologer Mark Lerner - YouTube.url -> https://www.youtube.com/watch?v=lvn3JpPek1I
InternetURL: C:\Users\kjh71pc\Favorites\Links\Amazon.ca – Online Shopping.url -> hxxp://redirect.hp.com/svs/rdr?locale=en_ca&c=124&bd=pavilion&tp=iefavbar&s=amazon&pf=cndt&TYPE=4
InternetURL: C:\Users\kjh71pc\Favorites\Links\Amazon.com – Online Shopping.url -> hxxp://redirect.hp.com/svs/rdr?locale=en_us&c=124&bd=pavilion&tp=iefavbar&s=amazon&pf=cndt&TYPE=4
InternetURL: C:\Users\kjh71pc\Favorites\Links\HP - See What's Hot.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&s=webslice&tp=iefavbar&pf=cndt&locale=en_us&bd=pavilion&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Accessories.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=hpaccessories&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Amazon.ca – Online Shopping.url -> hxxp://redirect.hp.com/svs/rdr?locale=en_ca&c=124&bd=pavilion&tp=iefavs&s=amazon&pf=cndt&TYPE=4
InternetURL: C:\Users\kjh71pc\Favorites\HP\Amazon.com – Online Shopping.url -> hxxp://redirect.hp.com/svs/rdr?locale=en_us&c=124&bd=pavilion&tp=iefavs&s=amazon&pf=cndt&TYPE=4
InternetURL: C:\Users\kjh71pc\Favorites\HP\eBay.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=ebay&pf=cndt&locale=en_ca&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\HP Blog-TheNextBench.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=hp_blog&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\HP Creative Studio.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=activitycenter&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\HP Store.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=hpstore&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Printing.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=printing&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Saving Center.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=savingscenter&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Snapfish.url -> hxxp://www.snapfish.com/hp_desktop_desktopicon_2012_ca
InternetURL: C:\Users\kjh71pc\Favorites\HP\Software and Driver Downloads.url -> hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=downloads&pf=cndt&locale=en_us&bd=all&c=124
InternetURL: C:\Users\kjh71pc\Favorites\HP\Try HP MyRoom Free.url -> hxxp://redirect.hp.com/svs/rdr?bd=all&tp=iefavs&locale=en_ww&pf=cndt&c=124&s=hp_myroom&TYPE=4
 
==================== End of log =============================

BC AdBot (Login to Remove)

 


#2 Kevin Hill

Kevin Hill
  • Topic Starter

  • Members
  • 191 posts
  • OFFLINE
  •  
  • Local time:04:42 PM

Posted 03 June 2015 - 02:24 PM

Additional scan result of Farbar Recovery Scan Tool (x64) Version:03-06-2015
Ran by kjh71pc at 2015-06-03 15:22:57
Running from C:\Users\kjh71pc\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-4010874778-1072403732-763348786-500 - Administrator - Disabled)
Guest (S-1-5-21-4010874778-1072403732-763348786-501 - Limited - Disabled)
kjh71pc (S-1-5-21-4010874778-1072403732-763348786-1001 - Administrator - Enabled) => C:\Users\kjh71pc
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GVMateApp2 (FOR NEW HANGOUTS CALLING) Release 2.07 (HKLM-x32\...\{GVMateApp-94F9C78F-EA53-45CA-B980-F3CBB199A2D5}_is1) (Version:  - PCPhoneSoft.com)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Private Internet Access Support Files (HKLM-x32\...\{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}) (Version: 1.0.0.0 - Private Internet Access)
Ralink Bluetooth Stack64 (HKLM\...\{3DA4255C-E376-83BE-72B4-B060F7124CC8}) (Version: 9.0.720.5 - Ralink Corporation)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
StartIsBack (HKLM-x32\...\StartIsBack) (Version: 2.1.2 - startisback.com)
TechGenie (HKLM-x32\...\TechGenie) (Version: 5.7.7 - iYogi)
TechGenie (Version: 1.0.0 - iYogi) Hidden
the LATEST VERSION OF GVMATEAPP2 (HKLM-x32\...\{GVMateAppUpdate-94F9C78F-EA53-45CA-B980-F3CBB199A2D5}_is1) (Version:  - PCPhoneSoft.com)
UsbFix (HKLM-x32\...\Usbfix) (Version: 7.946 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-4010874778-1072403732-763348786-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\kjh71pc\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4010874778-1072403732-763348786-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\kjh71pc\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
 
==================== Restore Points =========================
 
01-06-2015 03:45:05 Windows Update
01-06-2015 12:40:21 Revo Uninstaller Pro's restore point - Search
01-06-2015 14:12:27 Removed Google Talk Plugin
01-06-2015 14:18:24 Revo Uninstaller Pro's restore point - Google Chrome
01-06-2015 16:33:58 Installed Microsoft Fix it Solution - a674ed84-5661-4ebf-9279-29fe9d1b3521
01-06-2015 16:39:36 Installed HP Support Solutions Framework
01-06-2015 19:46:29 Revo Uninstaller Pro's restore point - S-1-5-21-4010874778-1072403732-763348786-1001
01-06-2015 19:50:57 Revo Uninstaller Pro's restore point - S-1-5-21-4010874778-1072403732-763348786-1001
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2012-07-25 22:26 - 2012-07-25 22:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {11698C2E-9553-4ED5-B64F-BFD642C2ED84} - System32\Tasks\Private Internet Access Startup => C:\Program Files\pia_manager\pia_manager.exe [2015-06-02] ()
Task: {22AA8F81-1115-447F-8A04-73ABE65E1A1E} - \{0F6A5174-6AE1-452B-9BC4-CF1DB544737C} No Task File <==== ATTENTION
Task: {2DCAD545-D2E3-4404-BF67-7DC0F0851DA7} - \{EE95DA5D-E88C-432B-8454-3262227537F6} No Task File <==== ATTENTION
Task: {4E735E5E-6436-4F4D-AAEE-096E8EA552B3} - \GoogleUpdateTaskUserS-1-5-21-4010874778-1072403732-763348786-1001Core No Task File <==== ATTENTION
Task: {6318663A-4CE3-4504-9C71-8E2507274220} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {74EC1B27-DFCE-4255-8A45-86A3D3A8CC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-02] (Adobe Systems Incorporated)
Task: {A6951707-D836-4883-9C28-CF88C9ED53B9} - \Reimage Reminder No Task File <==== ATTENTION
Task: {A7B05AE1-D6FB-4F1C-8DF1-C0DF8B85B9FA} - \GoogleUpdateTaskUserS-1-5-21-4010874778-1072403732-763348786-1001UA No Task File <==== ATTENTION
Task: {BE4DD26A-6342-4DB5-8E4B-9F768601A8F4} - \GoogleUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {CD8728FA-5148-41A6-BD52-3A6D18D3E7E8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {F034C65C-3F32-4BD7-8469-336493E93EE2} - \GoogleUpdateTaskMachineCore No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2012-09-03 11:48 - 2012-09-03 11:48 - 00022528 _____ () C:\Windows\system32\BsTrace.dll
2012-09-03 11:50 - 2012-09-03 11:50 - 00009728 _____ () C:\Windows\system32\BsHelpCSps.dll
2012-07-26 00:58 - 2012-07-26 00:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2015-06-01 13:21 - 2015-06-02 19:53 - 00446464 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe
2014-08-27 04:04 - 2014-08-27 04:04 - 00576792 _____ () C:\Program Files (x86)\iYogi\TechGenie\TechGenieApp.exe
2014-08-27 04:04 - 2014-08-27 04:04 - 00353792 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Metro.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00660992 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Metro.Resources.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 08823296 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Resources.StyleSet.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00220160 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Common.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00012800 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Logging.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00031232 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.RemoteDesktop.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00107008 _____ () C:\PROGRAM FILES (X86)\IYOGI\TECHGENIE\DIRECTORYMODULES\IYOGI.TECHGENIE.TILEMAINVIEW.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00099840 _____ () C:\PROGRAM FILES (X86)\IYOGI\TECHGENIE\DIRECTORYMODULES\IYOGI.TECHGENIE.VIDEOS.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00352768 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Resources.Localization.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00120320 _____ () C:\Program Files (x86)\iYogi\TechGenie\en-US\iYogi.TechGenie.Resources.Localization.resources.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00055296 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Antivirus.Service.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00215552 _____ () C:\Program Files (x86)\iYogi\TechGenie\iYogi.TechGenie.Facebook.dll
2014-08-27 04:04 - 2014-08-27 04:04 - 00018944 _____ () C:\Program Files (x86)\iYogi\TechGenie\BlowfishNET.dll
2015-06-01 13:21 - 2013-04-30 08:40 - 00073728 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\spevents.dll
2015-06-01 13:21 - 2013-03-18 10:39 - 00294912 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\Dongle_Ut.dll
2015-06-01 13:21 - 2011-01-10 08:58 - 00622080 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\YLUSBTEL.dll
2015-06-01 13:21 - 2004-04-09 08:37 - 00036864 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\BT_EX.dll
2015-06-01 13:21 - 2009-08-06 09:32 - 00045056 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\CM_HID.dll
2015-06-01 13:21 - 2012-03-04 21:39 - 00221184 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\Dongle_Hw.dll
2012-07-25 16:29 - 2012-07-25 20:06 - 00924672 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSEngine.dll
2012-07-25 16:26 - 2012-07-25 20:06 - 00720384 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSLoc.DLL
2012-09-03 11:48 - 2012-09-03 11:48 - 00022528 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2012-09-03 11:52 - 2012-09-03 11:52 - 00072192 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll
2012-09-03 11:01 - 2012-09-03 11:01 - 00356352 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll
2012-09-03 11:50 - 2012-09-03 11:50 - 00009728 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2015-06-01 14:31 - 2015-04-21 07:19 - 41347584 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\libcef.dll
2015-06-01 14:31 - 2015-04-21 07:19 - 01482240 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\libglesv2.dll
2015-06-01 14:31 - 2015-04-21 07:19 - 00073728 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\libegl.dll
2015-06-01 14:31 - 2015-04-21 07:19 - 09579520 _____ () C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\pdf.dll
2015-06-01 14:26 - 2015-05-22 13:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-06-01 14:26 - 2015-05-22 13:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-06-01 14:26 - 2015-05-22 13:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-4010874778-1072403732-763348786-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 64.66.234.253 - 64.66.235.253
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{63B9BC3C-18C0-4302-8DE7-D646F59217F0}] => (Allow) C:\Users\kjh71pc\AppData\Local\GVJackApp\GVJackApp.exe
FirewallRules: [{2B81564B-76BC-40DD-872E-340EF9C55AAE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{2802FED9-A32B-48C3-B9FC-69B5F9C17C79}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{20D12257-7D14-4CCB-874B-AA3539D1366C}] => (Allow) C:\Users\kjh71pc\AppData\Local\GVJackApp\GVJackApp.exe
FirewallRules: [{0488E41A-0E22-47F4-952E-EEAB3F2EE1A2}] => (Allow) C:\Users\kjh71pc\AppData\Local\GVJackApp\GVJackApp.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (06/03/2015 02:09:49 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.81;lang=;guid=331E6B9EC641426B95184F00466B0565;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\35734b43-aed0-4711-a222-421af0528e20.dmp
 
Error: (06/03/2015 02:02:29 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.81;lang=;guid=331E6B9EC641426B95184F00466B0565;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\11c9a376-45a7-438f-bc78-79ed6219598e.dmp
 
Error: (06/03/2015 00:34:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004C008
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=9e4b231b-3e45-41f4-967f-c914f178b6ac;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (06/03/2015 00:33:59 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=9e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:59 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details. 
hr=0xC004C008
 
Error: (06/03/2015 00:33:57 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=9e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:57 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details. 
hr=0xC004C008
 
Error: (06/03/2015 00:33:33 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004C008
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=9e4b231b-3e45-41f4-967f-c914f178b6ac;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (06/03/2015 00:33:32 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=9e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:32 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details. 
hr=0xC004C008
 
 
System errors:
=============
Error: (06/03/2015 00:31:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:05:39 AM on ‎6/‎3/‎2015 was unexpected.
 
Error: (06/03/2015 00:29:55 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 16) (User: NT AUTHORITY)
Description: 32212255951108560
 
Error: (06/03/2015 00:02:25 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The TechGenie Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Update for Windows 8 for x64-based Systems (KB3020370).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Update for Windows 8 for x64-based Systems (KB3045992).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Security Update for Windows 8 for x64-based Systems (KB2988948).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Security Update for Windows 8 for x64-based Systems (KB2727528).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Security Update for Windows 8 for x64-based Systems (KB2884256).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Update for Windows 8 for x64-based Systems (KB2795944).
 
Error: (06/02/2015 10:36:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007045b: Update for Windows 8 for x64-based Systems (KB2957026).
 
 
Microsoft Office:
=========================
Error: (06/03/2015 02:09:49 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.81;lang=;guid=331E6B9EC641426B95184F00466B0565;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\35734b43-aed0-4711-a222-421af0528e20.dmp
 
Error: (06/03/2015 02:02:29 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.81;lang=;guid=331E6B9EC641426B95184F00466B0565;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\11c9a376-45a7-438f-bc78-79ed6219598e.dmp
 
Error: (06/03/2015 00:34:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004C008RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=9e4b231b-3e45-41f4-967f-c914f178b6ac;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (06/03/2015 00:33:59 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: hr=0xC004C0089e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:59 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
00020001(0x00000000, 00:33:58:580)
00030001(0x00000000, 00:33:58:581 - https://activation.sls.microsoft.com)
00030002(0x00000000, 00:33:58:581 - 0)
00040001(0x00000000, 00:33:58:581 - https://activation.sls.microsoft.com)
00040002(0x00000000, 00:33:58:589 - 0, <NULL>, <NULL>, <NULL>)
00040006(0x00000001, 00:33:58:589 - 0, https://activation.sls.microsoft.com, <N/A>, <N/A>)
00020005(0x00000000, 00:33:58:589 - 0)
0002000C(0x00000000, 00:33:59:638 - 500)
00010002(0x8004FC01, 00:33:59:639 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded.  ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
00010003(0x8004FC01, 00:33:59:639)
 
Error: (06/03/2015 00:33:57 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: hr=0xC004C0089e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:57 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
00020001(0x00000000, 00:32:33:582)
00030001(0x00000000, 00:32:33:582 - https://activation.sls.microsoft.com)
00030002(0x00000000, 00:32:33:582 - 0)
00040001(0x00000000, 00:32:33:582 - https://activation.sls.microsoft.com)
00040002(0x00000000, 00:32:33:598 - 1, <NULL>, <NULL>, <NULL>)
00050002(0x80072F94, 00:33:30:452 - 0, 1)
00040006(0x00000001, 00:33:30:452 - 0, https://activation.sls.microsoft.com, <N/A>, <N/A>)
00020005(0x00000000, 00:33:30:452 - 0)
0002000C(0x00000000, 00:33:57:591 - 500)
00010002(0x8004FC01, 00:33:57:591 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded.  ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
00010003(0x8004FC01, 00:33:57:592)
 
Error: (06/03/2015 00:33:33 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004C008RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=9e4b231b-3e45-41f4-967f-c914f178b6ac;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (06/03/2015 00:33:32 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: hr=0xC004C0089e4b231b-3e45-41f4-967f-c914f178b6ac
 
Error: (06/03/2015 00:33:32 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
00020001(0x00000000, 00:33:32:324)
00030001(0x00000000, 00:33:32:324 - https://activation.sls.microsoft.com)
00030002(0x00000000, 00:33:32:324 - 0)
00040001(0x00000000, 00:33:32:324 - https://activation.sls.microsoft.com)
00040002(0x00000000, 00:33:32:324 - 0, <NULL>, <NULL>, <NULL>)
00040006(0x00000001, 00:33:32:324 - 0, https://activation.sls.microsoft.com, <N/A>, <N/A>)
00020005(0x00000000, 00:33:32:324 - 0)
0002000C(0x00000000, 00:33:32:652 - 500)
00010002(0x8004FC01, 00:33:32:652 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded.  ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
00010003(0x8004FC01, 00:33:32:652)
 
 
==================== Memory info =========================== 
 
Processor: AMD FX™-6120 Six-Core Processor 
Percentage of memory in use: 39%
Total physical RAM: 10031.3 MB
Available physical RAM: 6100.55 MB
Total Pagefile: 14895.3 MB
Available Pagefile: 10645.17 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:930.81 GB) (Free:889.3 GB) NTFS
Drive h: (HRM_CCSA_X64FRE_EN-US_DV5) (CDROM) (Total:3.34 GB) (Free:0 GB) UDF
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.3 GB) (Disk ID: 00000000)
 
Partition: GPT Partition Type.
 
==================== End of log ============================


#3 Kevin Hill

Kevin Hill
  • Topic Starter

  • Members
  • 191 posts
  • OFFLINE
  •  
  • Local time:04:42 PM

Posted 03 June 2015 - 02:26 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-06-2015
Ran by kjh71pc (administrator) on KJH71 on 03-06-2015 15:22:20
Running from C:\Users\kjh71pc\Downloads
Loaded Profiles: kjh71pc (Available Profiles: kjh71pc)
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Google Inc.) C:\Users\kjh71pc\AppData\Local\Google\Update\GoogleUpdate.exe
() C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateAppMinder.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
() C:\Program Files (x86)\iYogi\TechGenie\TechGenieApp.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe
(Google) C:\Users\kjh71pc\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
(PCPhoneSoft.com) C:\Users\kjh71pc\AppData\Local\GVMateApp\RTCBrowser\RTCBrowser.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\kjh71pc\Downloads\FRST64 (2).exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-10] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2012-08-10] (Hewlett-Packard )
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [364544 2012-09-03] (IVT Corporation)
HKLM\...\RunOnce: [63_144821431671] => C:\Users\kjh71pc\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp_r.bat [368 2015-06-03] ()
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-04-14] (Malwarebytes Corporation)
HKU\S-1-5-21-4010874778-1072403732-763348786-1001\...\Run: [Google Update] => C:\Users\kjh71pc\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-06-01] (Google Inc.)
Startup: C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GVMateApp.lnk [2015-06-01]
ShortcutTarget: GVMateApp.lnk -> C:\Users\kjh71pc\AppData\Local\GVMateApp\GVMateApp.exe ()
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-4010874778-1072403732-763348786-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-ca/?ocid=iehp
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll [2012-09-03] (Skype Technologies)
Tcpip\..\Interfaces\{7200F65C-D532-4FA5-8510-56C53D7FDA17}: [NameServer] 64.66.234.253 64.66.235.253
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-02] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-01] (Google Inc.)
FF Plugin HKU\S-1-5-21-4010874778-1072403732-763348786-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\kjh71pc\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-4010874778-1072403732-763348786-1001: @talk.google.com/O1DPlugin -> C:\Users\kjh71pc\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-4010874778-1072403732-763348786-1001: @tools.google.com/Google Update;version=3 -> C:\Users\kjh71pc\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-01] (Google Inc.)
FF Plugin HKU\S-1-5-21-4010874778-1072403732-763348786-1001: @tools.google.com/Google Update;version=9 -> C:\Users\kjh71pc\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-01] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\kjh71pc\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\kjh71pc\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
 
Chrome: 
=======
CHR Profile: C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-01]
CHR Extension: (Google Docs) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-01]
CHR Extension: (Google Drive) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-01]
CHR Extension: (YouTube) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-01]
CHR Extension: (Google Search) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-01]
CHR Extension: (Google Sheets) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-01]
CHR Extension: (AddToAny: Share Anywhere) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpgijchhhkhnokafdeklpllijgnbche [2015-06-01]
CHR Extension: (Bookmark Manager) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-06-01]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-06-01]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-01]
CHR Extension: (Google Wallet) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-01]
CHR Extension: (Gmail) - C:\Users\kjh71pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-01]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2012-08-10] (Andrea Electronics Corporation) [File not signed]
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-09-03] (IVT Corporation) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-10] (IDT, Inc.) [File not signed]
S2 TGService.exe; C:\Program Files (x86)\TechGenie\Services\CommAgent\TGService.exe [87552 2014-05-21] (iYogi Technical Services) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-28] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthHFEnum; No ImagePath
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-25] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-14] (Ralink Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-06-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R3 tilfilter; C:\Windows\System32\drivers\TIxHCIlfilter.sys [17672 2015-03-02] (Texas Instruments, Inc.)
R3 tiufilter; C:\Windows\System32\drivers\TIxHCIufilter.sys [23304 2015-03-02] (Texas Instruments, Inc.)
U0 yxjdfan; C:\Windows\System32\drivers\dlaapi.sys [79064 2015-06-03] (Malwarebytes Corporation)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
 
========================== Drivers MD5 =======================
 
C:\Windows\System32\drivers\1394ohci.sys E890C46E4754F0DF51BAFCC8D2E07498
C:\Windows\System32\drivers\3ware.sys 4F18D4C7EA14F11A7211F60D553C03DB
C:\Windows\System32\drivers\ACPI.sys A3BDA4D1186C8F47FA1BC8E91F197537
C:\Windows\System32\Drivers\acpiex.sys DC968C37822117E576B933F34A2D130C
C:\Windows\System32\drivers\acpipagr.sys 0CA9F7C3A78227C21A0A7854E245CFB2
C:\Windows\System32\drivers\acpipmi.sys 8EB8DA03B142D3DD1EB9ED8107A76C43
C:\Windows\System32\drivers\acpitime.sys CBCE725C5D86ABA7D2604E22951AA9B8
C:\Windows\System32\drivers\adp94xx.sys 93C6388592B99925C1D1576E465BC80F
C:\Windows\System32\drivers\adpahci.sys D27763E0247292654E7F7D16444C7C72
C:\Windows\System32\drivers\adpu320.sys 67B90070FF48F794AF19F9FCF0080D75
C:\Windows\system32\drivers\afd.sys FE7FB9612D354EB41DF4F0FF5D6FB259
C:\Windows\System32\drivers\agp440.sys 01590377A5AB19E792528C628A2A68F9
C:\Windows\System32\drivers\ahcix64s.sys 3D93A13387EE4F6B2D5B6E883E0EA770
C:\Windows\System32\drivers\amdk8.sys FB88D16B55F788EEB7590584FE2D8F1A
C:\Windows\system32\DRIVERS\atikmdag.sys E6166F230D3C851EA88976F288F5386F
C:\Windows\system32\DRIVERS\atikmpag.sys 2468C3C654842DA69D0BB0B250E0F55A
C:\Windows\System32\drivers\amdppm.sys 81402FF3373CE4DF77D5C874E369A985
C:\Windows\System32\drivers\amdsata.sys 35A0EB5AECB0FA3C41A2FB514A562304
C:\Windows\System32\drivers\amdsbs.sys 00452671904F5EE94B50BF0219C97164
C:\Windows\System32\drivers\amdxata.sys EA3FFE53E92E59C87E3ECA9BEB20D9B7
C:\Windows\system32\drivers\appid.sys 83B3682CE922FB0F415734B26D9D6233
C:\Windows\System32\drivers\arc.sys E933401B392387F4BE34DE8BAF1722A7
C:\Windows\System32\drivers\arcsas.sys 07CA323EF2E8247A568AB0F3662AD644
C:\Windows\system32\DRIVERS\asyncmac.sys 74DBAEC35366C4EE7670428808715A6A
C:\Windows\System32\drivers\atapi.sys A721FF570C2387E383BDDEA9632863C9
C:\Windows\System32\drivers\bxvbda.sys 45C6EC94DE3D466B4B452EA0E3870321
C:\Windows\System32\drivers\BasicDisplay.sys 81703BC5D68DEDBB086C2368FBE7B334
C:\Windows\System32\drivers\BasicRender.sys 5EC68164E14D25675C98BBB5F09E8606
C:\Windows\System32\Drivers\Beep.sys 9E7AEA59776D904607985AFFE7E5E183
C:\Windows\System32\DRIVERS\bowser.sys B17AC10B47C7FCB44D22A1F06415840E
C:\Windows\System32\Drivers\BtAudioBus.sys 34AAF6FD68B8403E76F0D08A8C1C1DA3
C:\Windows\System32\drivers\BthAvrcpTg.sys F17DEEAC7D51D44CF1BFF8DD4F0A2B6D
C:\Windows\system32\DRIVERS\BthEnum.sys 20BACDB113A0195EA5DCB8F3A660BD9A
C:\Windows\System32\drivers\BthHFHid.sys DCB4EBD928A6FB368BE6CAE522412DE1
C:\Windows\System32\Drivers\BtL2caScoIf.sys 9C09D5F1257F1748A4EAB0E8584FAF61
C:\Windows\system32\DRIVERS\BthLEEnum.sys 42201C346F0B8C458E1E9CDE04D68A2C
C:\Windows\System32\drivers\bthmodem.sys 033916CE8784A848B9A3D686B7F66D97
C:\Windows\system32\DRIVERS\bthpan.sys 091BB978E9504D0AD14586929431A957
C:\Windows\System32\Drivers\BTHport.sys 8BD82AE3B077665AFDFAEA6ED5B3937F
C:\Windows\System32\Drivers\BTHUSB.sys 100E21C77568CF4CB7817A2BC3F91B98
C:\Windows\System32\Drivers\IvtUrbBtFlt.sys 606B38EEB6E484481AE6113AA5473CB7
C:\Windows\System32\DRIVERS\cdfs.sys 990B1BABE6E81FB18E65A87EBEFB1772
C:\Windows\System32\drivers\cdrom.sys 339BFF85D788268752DA8C9644B188EE
C:\Windows\System32\drivers\circlass.sys F64B7D1A37CC1D5F421D5359EEC81E2E
C:\Windows\System32\drivers\CLFS.sys 94250D5AE3E7269DB29BCF96E07F21A6
C:\Windows\System32\drivers\CmBatt.sys 2DC8538A2260647484A6C921CA837313
C:\Windows\System32\Drivers\cng.sys 45845AF69F92DEA0347168DFC6FA917B
C:\Windows\System32\drivers\CompositeBus.sys 0E5B1E9E7122EDAAF1F6CE047965CA92
C:\Windows\System32\drivers\condrv.sys D9CB0782AF819548072AA45B70F8B22D
C:\Windows\System32\drivers\dam.sys E8A676D196E9A4DED7A6C74DEA90FA4E
C:\Windows\System32\Drivers\dfsc.sys 09D9EB9E7898F8E6561473A20CC808B9
C:\Windows\System32\drivers\discache.sys 3C736FAE17BA6F91BA37594AAB139CD0
C:\Windows\System32\drivers\disk.sys 560495FF4CA22E1D9B1972FA18F43B6F
C:\Windows\System32\drivers\dmvsc.sys 82A7C72593793FE1EADA7A305BD1567A
C:\Windows\system32\drivers\drmkaud.sys 9C7C183F937951AE17C5B8B3259CF3FF
C:\Windows\System32\drivers\dxgkrnl.sys AC47D05143E1E4D49D451E2A1784B2CB
C:\Windows\System32\drivers\evbda.sys C815C4FAE6A816DFB58975F3D0396692
C:\Windows\System32\drivers\EhStorClass.sys 66D60BD9A4C05616ABECA2A901475098
C:\Windows\System32\drivers\EhStorTcgDrv.sys A61D0F543024E458C0FE32352E1978E2
C:\Windows\System32\drivers\errdev.sys D790D058D67582DB9C84C2D33695FE6B
C:\Windows\System32\Drivers\exfat.sys 7A4D6FEB8C52B3FE855E4DCDF9107E03
C:\Windows\System32\Drivers\fastfat.sys 60996602A7111FD2D086E803F33E4282
C:\Windows\System32\drivers\fdc.sys 73B2D11DF0B6E03A0CB0323218ACB3E4
C:\Windows\System32\drivers\fileinfo.sys 88A9EBACD1058ABB237A6B4E96E7F397
C:\Windows\System32\drivers\filetrace.sys 9E4EE3A0B00FF7D5F42A4AF9744CBA02
C:\Windows\System32\drivers\flpydisk.sys B1D4C168FF7B8579E3745888658FFB1D
C:\Windows\System32\drivers\fltmgr.sys B33EC133AE4E6C1881D2302D93D2467D
C:\Windows\System32\drivers\FsDepends.sys A5F7873A39E4E9FAAAE59B7E9E36B705
C:\Windows\System32\Drivers\Fs_Rec.sys A6DD7D491F587F4BC13FB972977DC8E8
C:\Windows\System32\DRIVERS\fvevol.sys 79E687A2829B9EBDF488F78260651094
C:\Windows\System32\drivers\fxppm.sys 3EF3FCCC0E70EEC5C2AD996F32BBA642
C:\Windows\System32\drivers\gagp30kx.sys 52BC441E07A827EBAB70CDC7EAEDB28D
C:\Windows\System32\drivers\vmgencounter.sys 721F8EEF5E9747F32670DEFF7FB92541
C:\Windows\System32\Drivers\msgpioclx.sys A1F17108F3ED752D2614D767792327C5
C:\Windows\system32\drivers\HdAudio.sys 9FC1F11D4D19F61DFE5CC878B4557D3A
C:\Windows\System32\drivers\HDAudBus.sys 8D6810577E9C4F56DCB8E9BACAC7287B
C:\Windows\System32\drivers\HidBatt.sys 3F76BBA53D65E85A7F53E7A71082082C
C:\Windows\System32\drivers\hidbth.sys 085F150D002B7F0153D3C06DDF33A143
C:\Windows\System32\drivers\hidi2c.sys CC4A07E51D89575CAB6F4EB590D87CD4
C:\Windows\System32\drivers\hidir.sys DC96F7DACB777CDEAEF9958A50BFDA06
C:\Windows\System32\drivers\hidusb.sys 012C354B4AB48E9A7A657DF39E3A2073
C:\Windows\System32\drivers\HpSAMD.sys 64DB7A8D97CA53DCCF93D0A1E08342CF
C:\Windows\System32\drivers\HTTP.sys 47DBBF38E00C3F7404B71F6509241EF1
C:\Windows\System32\drivers\hwpolicy.sys 2A98301068801700906C06649860FE94
C:\Windows\System32\drivers\hyperkbd.sys DC76901D82097C9E297F20C287CB9A27
C:\Windows\system32\DRIVERS\HyperVideo.sys 716413AB3CA12DE0A7222D28C1C9352C
C:\Windows\System32\drivers\i8042prt.sys C9E9CBF73AFFBFE3E801EFB516787BA3
C:\Windows\System32\drivers\iaStorV.sys 5E394EBD26FD68AA9300332C46BEDD62
C:\Windows\System32\drivers\iirsp.sys 24847A06B84339FEEDE5CABF3D27D320
C:\Windows\System32\drivers\intelide.sys 4F37726CF764CA18A8A84F85EF3A7F24
C:\Windows\System32\drivers\intelppm.sys F9E126AA767E2E6E3128434A43C9F713
C:\Windows\System32\DRIVERS\ipfltdrv.sys 8FCA66234A0933D796BB780B7953BAB9
C:\Windows\System32\drivers\IPMIDrv.sys 6E98A046A12AA113F8898AA5D612BD6E
C:\Windows\System32\drivers\ipnat.sys 3969B9C218DD3FAA9F4ED2FFC3651C02
C:\Windows\System32\drivers\irenum.sys 25CD7C4BB2863FFC2B0B311F0AEBF77C
C:\Windows\System32\drivers\isapnp.sys D940C5BB9DC92E588533C19ABCC3D2C2
C:\Windows\System32\drivers\msiscsi.sys F5F0DE1B7F256997501EECECE9648108
C:\Windows\System32\drivers\kbdclass.sys 8FBD94B69D6423E20ABCD59D86368B21
C:\Windows\System32\drivers\kbdhid.sys E88C932ABDF8185A62C8F2FC7B051FB6
C:\Windows\system32\DRIVERS\kdnic.sys FB6C185092E18011EF49989425C2AA87
C:\Windows\System32\Drivers\ksecdd.sys 559A933F5647A7A2783C8A0C6CB0514C
C:\Windows\System32\Drivers\ksecpkg.sys 0EB535ADDC065F2D0CBFC089630A6065
C:\Windows\system32\drivers\ksthunk.sys 81492FEEBF2F26455B00EE8DBAE8A1B0
C:\Windows\system32\DRIVERS\lltdio.sys CEEFD29FC551F289810B0B9381B321DC
C:\Windows\System32\drivers\lsi_sas.sys 022CDD12161B063D7852B1075BF3FFF2
C:\Windows\System32\drivers\lsi_sas2.sys 07AD59D669B996F29F91817F0ECFA34F
C:\Windows\System32\drivers\lsi_scsi.sys 216FB796AA4E252ACCE93B1BCB80B5EC
C:\Windows\System32\drivers\lsi_sss.sys 5E80530AF37102488EE980B4A92AF99F
C:\Windows\system32\drivers\luafv.sys 2BDC5D711FA61307CE6190D47C956368
C:\Windows\system32\drivers\mbam.sys 1E9E32AEC3E1EB1B31B8169F33168B56
C:\Windows\system32\drivers\MBAMSwissArmy.sys E9CD058C79EA15B4AA93E259FA713B07
C:\Windows\system32\drivers\mwac.sys 28B597A61C9AC9B59BC0573D70A62CBF
C:\Windows\System32\drivers\megasas.sys 9B0D829C3BE4E7472DB9DD2B79908E3C
C:\Windows\System32\drivers\MegaSR.sys ECC3F54C7AFC318271C4F0B4606D8DB0
C:\Windows\System32\drivers\modem.sys 780098AD5DA8A4822E2563984C85EF7B
C:\Windows\system32\DRIVERS\monitor.sys 83EB0BF7E6EBD5B1AAC97F9DBD5EB935
C:\Windows\System32\drivers\mouclass.sys 618446B98C79776654340CE27C73485E
C:\Windows\System32\drivers\mouhid.sys CB2527B8B87D83E56FBF3944BBB6F606
C:\Windows\System32\drivers\mountmgr.sys 89D263DBF08119CE16273991C120D6DD
C:\Windows\System32\drivers\mpsdrv.sys 36BF4D86F166ACBC14F0B8B8F90CBCEA
C:\Windows\system32\drivers\mrxdav.sys 25560C1656DC7F0723A0CC0B0E1C6BED
C:\Windows\System32\DRIVERS\mrxsmb.sys 93179D48066918323628CB016D8C94DC
C:\Windows\System32\DRIVERS\mrxsmb10.sys 06D5F2FA3C61E8EA91648EA8E9F99FD3
C:\Windows\System32\DRIVERS\mrxsmb20.sys 5C7DD2E5759FFCCD2C7341C1B90F2B26
C:\Windows\system32\DRIVERS\bridge.sys 98487487D6B3797CA927E9D7B030AE13
C:\Windows\System32\Drivers\Msfs.sys 3886F1F2A4D2900ABAA7E4486BEEE6A2
C:\Windows\System32\drivers\msgpiowin32.sys 62435ABF8D6199659D451DFBC94E773C
C:\Windows\System32\drivers\mshidkmdf.sys D3857A767B91A061B408CCAB02DA4F40
C:\Windows\System32\drivers\mshidumdf.sys 839B48910FB1E887635C48F3EC11A05E
C:\Windows\System32\drivers\msisadrv.sys 55C0DB741E3AB7463242B185B1C2997C
C:\Windows\system32\drivers\MSKSSRV.sys 509809566E49F4411055864EA8D437CD
C:\Windows\system32\DRIVERS\mslldp.sys 63145201D6458E4958E572E7D6FC2604
C:\Windows\system32\drivers\MSPCLOCK.sys 99D526E803DB6D7FF290FD98B6204641
C:\Windows\system32\drivers\MSPQM.sys 06FA77C3E2A491ADCD704C5E73006269
C:\Windows\System32\Drivers\MsRPC.sys E134EC4DE11CF78CB01432D180710D84
C:\Windows\System32\drivers\mssmbios.sys B5AECF12F09DEE97C9FCAA5BA016CE1E
C:\Windows\system32\drivers\MSTEE.sys 72D66A05E0F99F2528F6C6204FD22AA1
C:\Windows\System32\drivers\MTConfig.sys 8AAAE399FC255FA105D4158CBA289001
C:\Windows\System32\Drivers\mup.sys 3BCB702F3E6CC622DCAFCAA45D7CDE0A
C:\Windows\System32\drivers\mvumis.sys 3A1E095277BBD406CEA8EA6B76950664
C:\Windows\system32\DRIVERS\nwifi.sys 43D7388A90A4C6EA346A4D6FF0377479
C:\Windows\System32\drivers\ndis.sys 03CFE4108D1DE16D6C59455B5C73319C
C:\Windows\system32\DRIVERS\ndiscap.sys 39C8A1D9D46F5E83A016BCAB72455284
C:\Windows\system32\DRIVERS\NdisImPlatform.sys 762941932B7E4C588E48A577BA9D6440
C:\Windows\system32\DRIVERS\ndistapi.sys 7A6F8A6D0E01432EBA294EF29CDD0FA7
C:\Windows\system32\DRIVERS\ndisuio.sys 79AB68BB3FFF974AD4F41FA559F4EC67
C:\Windows\system32\DRIVERS\ndiswan.sys 62C7DBF4F9301F76CF87D4B9D8F57BF8
C:\Windows\system32\DRIVERS\ndiswan.sys 62C7DBF4F9301F76CF87D4B9D8F57BF8
C:\Windows\System32\Drivers\NDProxy.sys 3730942D7DB2F8BB5F84542B7FF6F650
C:\Windows\System32\drivers\Ndu.sys D3F60A4345FCA9C1BE68AD7D0D6DE770
C:\Windows\System32\DRIVERS\netbios.sys 7C203A76394F9AE68F69EEE5F9612C4A
C:\Windows\System32\DRIVERS\netbt.sys 7CEC25C682D319D484630B3952C31A11
C:\Windows\system32\DRIVERS\netr28x.sys 735E4E58539FA0F0B96B7D9599C6C041
C:\Windows\System32\drivers\nfrd960.sys 12DD2800E4EEA37DC9AE256AD62423B4
C:\Windows\System32\Drivers\Npfs.sys 17E19A742FB30C002F8B43575451DBE1
C:\Windows\System32\drivers\npsvctrig.sys 8ED299C30792544264E558BEA79F0947
C:\Windows\System32\drivers\nsiproxy.sys 689B3B1E95C70ABF7AFF29F9406EF1E0
C:\Windows\System32\Drivers\Ntfs.sys 76929F4A69E425911A63B407E26C2589
C:\Windows\System32\Drivers\Null.sys 4163ADE07DB51843AE31F65B94F5398D
C:\Windows\System32\drivers\nvraid.sys D6D34118263412D3AAA8348A9572B7F2
C:\Windows\System32\drivers\nvstor.sys 27AFC428D1D32ABD04A86763A4EDDEA9
C:\Windows\System32\drivers\nv_agp.sys 051CFB5107BAAE510419BDC41F8C4036
C:\Windows\System32\drivers\parport.sys 4563DAF8C6A740AD7F501E219BD10766
C:\Windows\System32\drivers\partmgr.sys C1D7BA7F0DE487DFEEB51BF8D3EC5562
C:\Windows\System32\drivers\pci.sys 4A003E8F718C1E6A2050CA98CD53E3E2
C:\Windows\System32\drivers\pciide.sys F9908D274D458220F91E89B54D78D837
C:\Windows\System32\drivers\pcmcia.sys 84D19CB6102627932DCB5DFDF89FE269
C:\Windows\System32\drivers\pcw.sys CEBBAD5391C2644560C55628A40BFD27
C:\Windows\System32\drivers\pdc.sys 0698DEDEAD6A00AD0D468C687D830FBF
C:\Windows\System32\drivers\peauth.sys 61FE70659CD43E07F94DA4DC31DEC493
C:\Windows\system32\DRIVERS\raspptp.sys 362D47E5B4D67270DE4B8606036F4ADD
C:\Windows\System32\drivers\processr.sys 8DA167F8967AB35A2487095CB1B879A0
C:\Windows\system32\DRIVERS\pacer.sys EB8034147D4820CD31BFCB11A2A652DF
C:\Windows\system32\drivers\qwavedrv.sys 13D47BB0CCA2FC51BD15F8E85C6A078E
C:\Windows\System32\DRIVERS\rasacd.sys 873C60F8178100557740A832FCE10B5F
C:\Windows\system32\DRIVERS\AgileVpn.sys 69B93F623B130976243ECA3D84CC99CA
C:\Windows\system32\DRIVERS\rasl2tp.sys A14D625C5AEE5FFE0F47D1A1D419FAAE
C:\Windows\system32\DRIVERS\raspppoe.sys 00695B9C2DB6111064499C529E90C042
C:\Windows\system32\DRIVERS\rassstp.sys A7F24D8CD1956B0A1FDCB86CC5114DE4
C:\Windows\System32\DRIVERS\rdbss.sys CA03D642ACE58E1BA54E4B383F91CD69
C:\Windows\System32\drivers\rdpbus.sys CA7DF5EC95D8DE0DD24BE7FF97369F68
C:\Windows\System32\drivers\rdpdr.sys B2A3AD74FF2E2FFA73AF2567108231B3
C:\Windows\System32\drivers\rdpvideominiport.sys 57F4787E4602A3FCA719C0A33137C6DA
C:\Windows\System32\Drivers\RDPWD.sys B3CB0721E81E30419CE7D837EF4EA151
C:\Windows\System32\drivers\rdyboost.sys 62C1F8A0685FE07E998AA296C4F697C4
C:\Windows\System32\DRIVERS\revoflt.sys 9C3AC71A9934B884FAC567A8807E9C4D
C:\Windows\system32\DRIVERS\rfcomm.sys 17EF582CBC4809F96B9E6D0543480763
C:\Windows\system32\DRIVERS\rspndr.sys E04E770DD198B9399640717145E79EBF
C:\Windows\System32\drivers\rtbth.sys 3B7A94926B52D171C5B515EDECC2118E
C:\Windows\system32\DRIVERS\Rt630x64.sys C4BE01C55656888152F57CC7E35A2BE6
C:\Windows\System32\drivers\vms3cap.sys 752EC7DCD2F96871A3857EEE6AFE965A
C:\Windows\System32\drivers\sbp2port.sys 9C7B28CE0D136DB226E24DB3BC817F92
C:\Windows\System32\DRIVERS\scfilter.sys 5D7733A12756B267FCA021672B26BC9E
C:\Windows\System32\drivers\sdbus.sys 6D3A4C1E3E809C02476B32ACB68C1707
C:\Windows\System32\drivers\sdstor.sys 6BF842A03DAA25CBBA9A585E25731E06
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\SerCx.sys 87C46B239A7EEF30FDFDD5E9BD46130C
C:\Windows\System32\drivers\serenum.sys 7A1F9347C85FD55E39B8A76B3A25C5AD
C:\Windows\System32\drivers\serial.sys F640A0A218BBF857F1D04A15D7D939F6
C:\Windows\System32\drivers\sermouse.sys F1A5F56B2620B862CC28FF96A0A6DAAB
C:\Windows\System32\drivers\sfloppy.sys 7EE65419B29302C795714FF8073969A1
C:\Windows\System32\drivers\SiSRaid2.sys 2560721D6F16D5B611C36A3A9D28C1B2
C:\Windows\System32\drivers\sisraid4.sys 3AA8FDE1DBF65BB8B88B053529554A0D
C:\Windows\System32\drivers\spaceport.sys FD3AF5575B99871BADB94E7699DBCE08
C:\Windows\System32\drivers\SpbCx.sys 3D8679C8DF52EB26EB7583A4E0A29202
C:\Windows\System32\DRIVERS\srv.sys 0F1FCD575A03ABDE13FCA9D0ADE4DDA6
C:\Windows\System32\DRIVERS\srv2.sys 56218A571ECF8D55E0CDFF8DF2546CF1
C:\Windows\System32\DRIVERS\srvnet.sys 14FC338B80CFF7E04215133B568D15C4
C:\Windows\System32\drivers\stexstor.sys 4E85355B94CFCB67C135F6521A4895A7
C:\Windows\system32\DRIVERS\stwrt64.sys 7E89F65EB250463EE8665CFE19566FC3
C:\Windows\System32\drivers\storahci.sys C588BBD37B432CE3204E5765B459E6B2
C:\Windows\System32\DRIVERS\vmstorfl.sys F74DBC95A57B1EE866D3732EB5F79BE2
C:\Windows\System32\drivers\storvsc.sys 543CD3CC0E05B8D8815E0D4F040B6F59
C:\Windows\System32\drivers\swenum.sys 4AFD66AAE74FFB5986BC240744DC5FC9
C:\Windows\system32\DRIVERS\tap0901.sys F9BE29D5E097F03F81D3CD12B794CB66
C:\Windows\System32\drivers\tcpip.sys 0E0C16EE82E2F4EBC2FBCA24C8F00D9E
C:\Windows\system32\DRIVERS\tcpip.sys 0E0C16EE82E2F4EBC2FBCA24C8F00D9E
C:\Windows\System32\drivers\tcpipreg.sys 8F2A13A5DF99D72FDDE87F502A66F989
C:\Windows\system32\DRIVERS\tdx.sys 73DC722CE5DF26D7638CE2446F2655C7
C:\Windows\System32\drivers\terminpt.sys F7C8AB5D8AFFAA318D6A21093D139BF4
C:\Windows\System32\drivers\TIxHCIlfilter.sys 2131FB417D02BEDD50A77DAD7DE9D745
C:\Windows\System32\drivers\TIxHCIufilter.sys 2B799F6B43D19AB41F5B92B9989200D5
C:\Windows\system32\drivers\tpm.sys 151BD0387B1B320CC9AACE6DB071803B
C:\Windows\System32\drivers\tsusbflt.sys 4E7C5FB10A50435523DE0CAA37DE2BD3
C:\Windows\System32\drivers\TsUsbGD.sys 16D684A820872EE54F6370703AC0B513
C:\Windows\system32\DRIVERS\tunnel.sys 78C9EE193AC2B4CBDBC48B620314D740
C:\Windows\System32\drivers\uagp35.sys 6D4F67CA56ACA2085DFA2CD89EAFBC1A
C:\Windows\System32\drivers\uaspstor.sys 6FD6D03B7752C78712E5CFF29A305026
C:\Windows\System32\drivers\ucx01000.sys 061BA3EE0D2BE17944990544008CF190
C:\Windows\System32\DRIVERS\udfs.sys DC5A461591C71AF7F19DC048A81E3F88
C:\Windows\System32\drivers\uliagpkx.sys 07FEBCDF24FABA0D47B635D85A0FFB7A
C:\Windows\System32\drivers\umbus.sys 02CEB3FE6152668A7BA420B93B664860
C:\Windows\System32\drivers\umpass.sys 991EE6B5FC41EAEF99C8AF5B92F2CA09
C:\Windows\system32\drivers\usbaudio.sys 3FBE0784E42E7BA93FCC5201D2BAFE23
C:\Windows\System32\drivers\usbccgp.sys C976C4306F9AE133D6BBD47FDFC3BF92
C:\Windows\System32\drivers\usbcir.sys B395B62B62F28106218FA6FB17F4C797
C:\Windows\System32\drivers\usbehci.sys B24FDEB1B18496F1B463782235AA3AF1
C:\Windows\System32\drivers\usbhub.sys F8C2A832DF9403F5EA8080CBDBDA95FB
C:\Windows\System32\drivers\UsbHub3.sys B1E910DDC08A8536116214326124903C
C:\Windows\System32\drivers\usbohci.sys 325F6179009B5A7F6118951A5BA422AB
C:\Windows\System32\drivers\usbprint.sys BA3ABE0CD1C14B3295BAD0F076B84CAC
C:\Windows\System32\drivers\USBSTOR.SYS F77177F6C95B2116EE7AD23B5EF57007
C:\Windows\System32\drivers\usbuhci.sys 1ABF657259DB57F7E5558E4DF1357C0C
C:\Windows\System32\Drivers\usbvideo.sys 75357960FD491E12416342CA12975FDA
C:\Windows\System32\drivers\USBXHCI.SYS 8DC398D7B8E02C929A2096E74A170970
C:\Windows\System32\drivers\vdrvroot.sys BACECBFF9C97F7627A60B0E0F1FE7EE8
C:\Windows\System32\drivers\VerifierExt.sys 74FA2D4368DE6F6CE14393EDF1F342BE
C:\Windows\System32\drivers\vhdmp.sys 8628FA679F0EC4B709CCD1F6B6A3233B
C:\Windows\System32\drivers\viaide.sys F5B4A14B00E89250C50982AC762DDD1D
C:\Windows\System32\drivers\vmbus.sys 78DB50F7329F6D1311658DABFFFC8BE0
C:\Windows\System32\drivers\VMBusHID.sys ECFEE2F2BA3932C7880D1A8F67D68F91
C:\Windows\System32\drivers\volmgr.sys CB60FAAED8B49B812EBBF77EB87D9B18
C:\Windows\System32\drivers\volmgrx.sys A74101DA9809251BCD0E5A26BAE0F824
C:\Windows\System32\drivers\volsnap.sys 2FB3CDFD5EAF4CD9D4AFAF96877D13AE
C:\Windows\System32\drivers\vpci.sys A8DA1C1B52ECEA3726DEBED4FF1B700D
C:\Windows\System32\drivers\vsmraid.sys 38A60CD9C009C55C6D3B5586F8E6A353
C:\Windows\System32\drivers\vstxraid.sys A0F6FE0FC2F647C22BBFD6BD4249DBCC
C:\Windows\System32\drivers\vwifibus.sys 62460A45435A26A334907E3F2EA45611
C:\Windows\system32\DRIVERS\vwififlt.sys 095E943D27025E4D588AF0A72CC2318F
C:\Windows\system32\DRIVERS\vwifimp.sys 73FA1A41A97A5C34ADC03B3577FF1A86
C:\Windows\System32\drivers\wacompen.sys 6B806E893714019969E2B50D7EF6A4D9
C:\Windows\system32\DRIVERS\wanarp.sys 61F6972FF9AC9A8D0B4D62076DC30051
C:\Windows\system32\DRIVERS\wanarp.sys 61F6972FF9AC9A8D0B4D62076DC30051
C:\Windows\System32\drivers\wd.sys B3A4D918DAB90505B6BC7B70632913CB
C:\Windows\System32\drivers\WdBoot.sys 6F4B5DDDC3B86091E94BC47347A78AF7
C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4
C:\Windows\System32\drivers\WdFilter.sys 99D404A9A0AFC4734E014EBEBAC13F8F
C:\Windows\System32\DRIVERS\wfplwfs.sys 8FDA12E934C7BB7CC317F90FC70DC4FC
C:\Windows\System32\drivers\wimmount.sys A3C7624A42A3447EF5EDD1ED37FE4E60
C:\Windows\System32\drivers\wmiacpi.sys E2A596CACFC6504306CDB7B593B90084
C:\Windows\System32\DRIVERS\wpcfltr.sys C6FF953D5D6F2EAE3B8883474D5076B3
C:\Windows\System32\drivers\WpdUpFltr.sys 0346CAFC181C91C6E2330332EB332ED6
C:\Windows\system32\drivers\ws2ifsl.sys 58D492F986EC519ECDD54D93618758F8
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\drivers\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\System32\drivers\dlaapi.sys 60F5579B6B33F509C52200207F79B795
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Three Months Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-06-03 15:21 - 2015-06-03 15:21 - 02108928 _____ (Farbar) C:\Users\kjh71pc\Downloads\FRST64 (2).exe
2015-06-03 14:42 - 2015-06-03 14:42 - 00179166 _____ C:\Users\kjh71pc\Desktop\SysAnalyzerLog-Wed_2015-06-03_14-41-06.log
2015-06-03 14:41 - 2015-06-03 14:41 - 00916254 _____ C:\Users\kjh71pc\Desktop\WSA_SA_Report-Wed_2015-06-03_14-41-42.bmp
2015-06-03 14:41 - 2015-06-03 14:41 - 00000079 _____ C:\Users\kjh71pc\Desktop\WSA_SA_Report-Wed_2015-06-03_14-41-42.html
2015-06-03 14:40 - 2015-06-03 14:48 - 00000000 ____D C:\Program Files (x86)\LogMeIn Rescue RC - cf0d1461-2c53-47ce-9e5f-da5e15764123
2015-06-03 14:40 - 2015-06-03 14:41 - 00000000 ____D C:\ProgramData\WRData
2015-06-03 14:38 - 2015-06-03 14:48 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\LogMeIn Rescue Applet
2015-06-03 14:38 - 2015-06-03 14:38 - 01489216 _____ (LogMeIn, Inc.) C:\Users\kjh71pc\Downloads\Support-LogMeInRescue.exe
2015-06-03 13:16 - 2015-06-03 13:16 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\dlaapi.sys
2015-06-03 00:43 - 2015-06-03 00:43 - 07836880 _____ (iYogi) C:\Users\kjh71pc\Downloads\SDSetup (1).exe
2015-06-03 00:41 - 2015-06-03 00:42 - 04845584 _____ C:\Users\kjh71pc\Downloads\TG_Antivirus (4).exe
2015-06-03 00:38 - 2015-06-03 00:38 - 00002593 _____ C:\Users\Public\Desktop\TechGenie.lnk
2015-06-03 00:38 - 2015-06-03 00:38 - 00002593 _____ C:\ProgramData\Desktop\TechGenie.lnk
2015-06-03 00:38 - 2015-06-03 00:38 - 00000000 ____D C:\ProgramData\TechGenie
2015-06-03 00:38 - 2015-06-03 00:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iYogi
2015-06-03 00:38 - 2015-06-03 00:38 - 00000000 ____D C:\Program Files\iYogi
2015-06-03 00:37 - 2015-06-03 00:37 - 00000000 ____D C:\Users\kjh71pc\Documents\TechGenie
2015-06-03 00:37 - 2015-06-03 00:37 - 00000000 ____D C:\Program Files (x86)\iYogi
2015-06-03 00:35 - 2015-06-03 00:36 - 04845576 _____ C:\Users\kjh71pc\Downloads\TG_Antivirus (3).exe
2015-06-03 00:35 - 2015-06-03 00:35 - 02108928 _____ (Farbar) C:\Users\kjh71pc\Downloads\FRST64 (1).exe
2015-06-03 00:30 - 2015-06-03 00:30 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-03 00:30 - 2015-06-03 00:30 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-03 00:27 - 2015-06-03 00:28 - 04845584 _____ C:\Users\kjh71pc\Downloads\TG_Antivirus (2).exe
2015-06-03 00:25 - 2015-06-03 00:25 - 04845584 _____ C:\Users\kjh71pc\Downloads\TG_Antivirus (1).exe
2015-06-03 00:23 - 2015-06-03 00:23 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\kjh71pc\Downloads\SpyHunter-Installer.exe
2015-06-03 00:11 - 2015-06-03 00:12 - 00023935 _____ C:\Users\kjh71pc\Downloads\Addition.txt
2015-06-03 00:10 - 2015-06-03 15:22 - 00032772 _____ C:\Users\kjh71pc\Downloads\FRST.txt
2015-06-03 00:10 - 2015-06-03 15:22 - 00000000 ____D C:\FRST
2015-06-03 00:10 - 2015-06-03 00:10 - 02108928 _____ (Farbar) C:\Users\kjh71pc\Downloads\FRST64.exe
2015-06-03 00:02 - 2015-06-03 00:02 - 00000000 ____D C:\Program Files (x86)\TechGenie
2015-06-02 23:59 - 2015-06-03 00:00 - 04845592 _____ C:\Users\kjh71pc\Downloads\TG_PCOptimizer.exe
2015-06-02 23:59 - 2015-06-02 23:59 - 04845584 _____ C:\Users\kjh71pc\Downloads\TG_Antivirus.exe
2015-06-02 23:57 - 2015-06-02 23:57 - 07836880 _____ (iYogi) C:\Users\kjh71pc\Downloads\SDSetup.exe
2015-06-02 23:00 - 2015-06-02 23:03 - 00000165 _____ C:\Windows\Reimage.ini
2015-06-02 22:51 - 2015-05-22 13:46 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-02 22:51 - 2015-05-22 13:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-02 22:51 - 2015-05-21 06:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-02 22:51 - 2015-04-08 15:05 - 00410336 _____ C:\Windows\system32\ApnDatabase.xml
2015-06-02 22:51 - 2015-03-27 01:07 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2015-06-02 22:45 - 2015-06-03 00:31 - 00286720 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-02 22:43 - 2015-05-05 10:49 - 00792032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-02 22:43 - 2015-05-05 10:49 - 00177632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-02 22:31 - 2015-06-02 22:36 - 00000000 ____D C:\Windows\system32\MRT
2015-06-02 22:31 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-02 22:25 - 2015-03-03 06:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-02 22:17 - 2015-01-08 23:43 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-06-02 22:17 - 2015-01-08 22:03 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-06-02 22:17 - 2015-01-08 16:52 - 00478296 _____ C:\Windows\SysWOW64\locale.nls
2015-06-02 22:17 - 2015-01-08 16:52 - 00478296 _____ C:\Windows\system32\locale.nls
2015-06-02 21:28 - 2015-06-02 21:28 - 00000117 _____ C:\Windows\system32\netcfg-15817112.txt
2015-06-02 21:28 - 2015-06-02 21:28 - 00000117 _____ C:\Windows\system32\netcfg-15817019.txt
2015-06-02 21:28 - 2015-06-02 21:28 - 00000117 _____ C:\Windows\system32\netcfg-15814632.txt
2015-06-02 19:50 - 2015-06-03 15:19 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-02 19:50 - 2015-06-02 19:50 - 00003718 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-02 19:47 - 2015-06-02 19:53 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Adobe
2015-06-02 19:38 - 2015-06-02 19:46 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-06-02 19:37 - 2015-06-02 19:37 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\kjh71pc\Downloads\rkill.exe
2015-06-02 19:37 - 2015-06-02 19:37 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\kjh71pc\Downloads\rkill (1).exe
2015-06-02 19:37 - 2015-06-02 19:37 - 00002660 _____ C:\Users\kjh71pc\Desktop\Rkill.txt
2015-06-02 19:36 - 2015-06-02 19:46 - 00000000 ____D C:\Users\kjh71pc\Desktop\mbar
2015-06-02 19:34 - 2015-06-02 19:35 - 16502728 _____ (Malwarebytes Corp.) C:\Users\kjh71pc\Downloads\mbar-1.09.1.1004.exe
2015-06-02 18:08 - 2015-06-02 18:08 - 00000093 _____ C:\Users\kjh71pc\Documents\pc infections.txt
2015-06-02 17:13 - 2015-06-03 01:13 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4010874778-1072403732-763348786-1001
2015-06-02 17:12 - 2014-04-16 11:20 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-06-02 17:12 - 2014-04-16 11:20 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-06-02 17:11 - 2015-06-02 17:11 - 00001168 _____ C:\Windows\system32\netcfg-403324.txt
2015-06-02 17:11 - 2015-06-02 17:11 - 00000117 _____ C:\Windows\system32\netcfg-409502.txt
2015-06-02 17:09 - 2015-06-02 17:11 - 25723531 _____ C:\Users\kjh71pc\Downloads\installer_win (1).exe
2015-06-02 17:09 - 2015-06-02 17:09 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Titanium
2015-06-02 17:09 - 2015-06-02 17:09 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Apple Computer
2015-06-02 17:09 - 2015-06-02 17:09 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Apple Computer
2015-06-02 17:08 - 2015-06-02 17:08 - 00000117 _____ C:\Windows\system32\netcfg-223440.txt
2015-06-02 17:08 - 2015-06-02 17:08 - 00000117 _____ C:\Windows\system32\netcfg-223128.txt
2015-06-02 17:08 - 2015-06-02 17:08 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\bluesoleil
2015-06-02 17:04 - 2015-06-02 17:04 - 00000117 _____ C:\Windows\system32\netcfg-96586459.txt
2015-06-02 17:03 - 2015-06-02 17:10 - 00000000 ____D C:\Program Files\pia_manager
2015-06-02 17:03 - 2015-06-02 17:03 - 00031232 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2015-06-02 17:03 - 2015-06-02 17:03 - 00003156 _____ C:\Windows\System32\Tasks\Private Internet Access Startup
2015-06-02 17:03 - 2015-06-02 17:03 - 00000117 _____ C:\Windows\system32\netcfg-96534604.txt
2015-06-02 17:03 - 2015-06-02 17:03 - 00000117 _____ C:\Windows\system32\netcfg-96522264.txt
2015-06-02 17:03 - 2015-06-02 17:03 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access
2015-06-02 17:02 - 2015-06-02 17:02 - 25723531 _____ C:\Users\kjh71pc\Downloads\installer_win.exe
2015-06-01 20:01 - 2015-06-01 20:01 - 00000000 ____D C:\Users\kjh71pc\Downloads\cce_2.5.242177.201_x64
2015-06-01 19:59 - 2015-06-01 20:00 - 25543261 _____ C:\Users\kjh71pc\Downloads\cce_2.5.242177.201_x64.zip
2015-06-01 19:57 - 2015-06-01 19:57 - 00069632 _____ (Sergiwa Software - www.sergiwa.com) C:\Users\kjh71pc\Downloads\iReset (1).exe
2015-06-01 17:47 - 2015-06-01 17:47 - 00000117 _____ C:\Windows\system32\netcfg-12788634.txt
2015-06-01 17:47 - 2015-06-01 17:47 - 00000117 _____ C:\Windows\system32\netcfg-12788509.txt
2015-06-01 17:47 - 2015-06-01 17:47 - 00000117 _____ C:\Windows\system32\netcfg-12766201.txt
2015-06-01 17:47 - 2015-06-01 17:47 - 00000117 _____ C:\Windows\system32\netcfg-12754594.txt
2015-06-01 16:50 - 2015-06-01 16:52 - 37602760 _____ (Hewlett-Packard ) C:\Users\kjh71pc\Downloads\sp68201 (1).exe
2015-06-01 16:48 - 2015-06-01 16:50 - 00000032 _____ C:\Windows\0
2015-06-01 16:48 - 2015-06-01 16:48 - 00001099 _____ C:\Windows\system32\netcfg-9225789.txt
2015-06-01 16:48 - 2015-06-01 16:48 - 00000160 _____ C:\Windows\system32\netcfg-9226757.txt
2015-06-01 16:48 - 2015-06-01 16:48 - 00000000 ____D C:\ProgramData\Ralink Bluetooth Stack
2015-06-01 16:48 - 2015-06-01 16:48 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2015-06-01 16:48 - 2015-06-01 16:48 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2015-06-01 16:48 - 2015-06-01 16:48 - 00000000 _____ C:\Windows\system32\0
2015-06-01 16:41 - 2015-06-01 16:41 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Hewlett-Packard
2015-06-01 16:39 - 2015-06-01 16:39 - 00000000 ____D C:\Program Files (x86)\Hp
2015-06-01 16:39 - 2015-06-01 16:39 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-06-01 16:37 - 2015-06-01 16:37 - 00000117 _____ C:\Windows\system32\netcfg-8587574.txt
2015-06-01 16:33 - 2015-06-01 16:33 - 00541302 _____ C:\Users\kjh71pc\Downloads\DeviceWin8.meta.diagcab
2015-06-01 16:21 - 2015-06-01 16:21 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup (5).exe
2015-06-01 15:54 - 2015-06-01 15:54 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\IDT
2015-06-01 15:28 - 2014-06-04 18:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-06-01 15:28 - 2014-06-03 16:12 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2015-06-01 15:03 - 2014-07-06 22:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-06-01 15:03 - 2014-07-06 22:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-06-01 15:03 - 2014-07-06 22:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-06-01 15:03 - 2014-07-06 22:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-06-01 15:03 - 2014-07-06 21:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-06-01 15:03 - 2014-07-06 21:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-06-01 15:03 - 2014-07-06 21:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-06-01 15:03 - 2014-07-06 20:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-06-01 15:02 - 2014-07-23 20:33 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-06-01 15:02 - 2014-07-23 20:33 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-06-01 15:01 - 2015-03-14 01:07 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-06-01 15:01 - 2015-03-13 23:33 - 00891904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-06-01 15:01 - 2015-03-04 00:29 - 00361280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-06-01 15:01 - 2015-03-03 23:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-06-01 15:01 - 2015-03-03 21:52 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-06-01 15:01 - 2014-12-07 23:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-06-01 15:01 - 2014-12-07 22:04 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-06-01 15:01 - 2014-10-11 00:45 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-06-01 15:01 - 2014-10-11 00:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-06-01 15:01 - 2014-10-11 00:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-06-01 15:01 - 2014-10-11 00:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-06-01 15:01 - 2014-10-10 22:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-06-01 15:01 - 2014-10-10 22:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-06-01 15:01 - 2014-10-10 22:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-06-01 15:01 - 2014-10-10 22:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-06-01 15:01 - 2014-06-12 16:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-01 15:01 - 2014-06-12 16:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-01 15:01 - 2013-04-23 16:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-06-01 15:01 - 2013-04-23 16:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-06-01 15:01 - 2013-04-23 15:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-06-01 15:01 - 2013-04-23 15:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-06-01 15:00 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 14374400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 13771776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00737280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-01 14:59 - 2015-04-21 07:33 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-01 14:59 - 2015-04-21 07:32 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-01 14:59 - 2015-04-21 06:53 - 02237440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-01 14:59 - 2015-04-21 06:53 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-01 14:59 - 2015-04-21 06:53 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 19291136 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 15414784 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 02656768 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-01 14:59 - 2015-04-21 06:52 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-01 14:59 - 2015-04-21 06:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-01 14:59 - 2015-04-17 19:37 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-01 14:59 - 2015-04-17 19:34 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-01 14:59 - 2015-02-23 03:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-01 14:59 - 2015-02-23 03:51 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-06-01 14:59 - 2015-02-23 03:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-01 14:59 - 2015-02-23 03:50 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-01 14:59 - 2015-02-23 03:50 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-06-01 14:59 - 2015-02-23 03:50 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-01 14:59 - 2015-02-23 03:50 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-01 14:59 - 2015-02-20 22:30 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-06-01 14:59 - 2015-02-20 22:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-06-01 14:59 - 2015-02-20 22:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-06-01 14:59 - 2015-02-20 20:00 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-06-01 14:58 - 2015-02-23 03:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-06-01 14:58 - 2015-02-23 03:50 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-01 14:58 - 2015-02-23 02:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-01 14:58 - 2015-02-23 02:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2015-06-01 14:58 - 2015-02-20 22:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-06-01 14:58 - 2015-02-20 22:30 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-06-01 14:58 - 2015-02-20 22:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-06-01 14:58 - 2015-02-20 22:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-06-01 14:58 - 2015-02-20 22:07 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2015-06-01 14:57 - 2014-12-06 00:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-06-01 14:57 - 2014-12-06 00:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-06-01 14:57 - 2014-12-06 00:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-06-01 14:57 - 2014-12-05 23:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-06-01 14:55 - 2015-02-25 21:35 - 04063232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-01 14:55 - 2014-03-10 17:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-06-01 14:55 - 2014-03-10 17:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-06-01 14:55 - 2014-03-10 17:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-01 14:55 - 2014-03-10 17:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-06-01 14:55 - 2014-03-10 17:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-06-01 14:55 - 2014-03-10 17:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-06-01 14:55 - 2014-03-09 20:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-06-01 14:52 - 2014-11-25 23:43 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-06-01 14:52 - 2014-11-25 21:50 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-06-01 14:51 - 2014-07-15 16:03 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-06-01 14:51 - 2014-07-11 19:36 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-06-01 14:49 - 2013-05-30 16:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-01 14:49 - 2013-05-30 16:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-06-01 14:49 - 2013-05-14 19:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-06-01 14:49 - 2013-05-14 19:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-06-01 14:49 - 2013-05-14 19:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2015-06-01 14:49 - 2013-05-14 19:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-06-01 14:49 - 2013-05-04 00:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-06-01 14:49 - 2013-05-04 00:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-06-01 14:49 - 2013-05-03 23:59 - 13644288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-06-01 14:49 - 2013-05-03 23:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-06-01 14:49 - 2013-05-03 23:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-06-01 14:49 - 2013-05-03 23:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-06-01 14:49 - 2013-05-03 23:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-06-01 14:49 - 2013-05-03 23:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-06-01 14:49 - 2013-05-03 23:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-06-01 14:49 - 2013-05-03 21:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-06-01 14:49 - 2013-05-03 21:57 - 10788864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-06-01 14:49 - 2013-05-03 21:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-06-01 14:49 - 2013-05-03 21:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-06-01 14:49 - 2013-05-03 21:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-06-01 14:49 - 2013-05-03 21:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-06-01 14:49 - 2013-05-03 21:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-06-01 14:49 - 2013-05-03 21:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-06-01 14:49 - 2013-05-03 21:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2015-06-01 14:49 - 2013-05-03 21:48 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-06-01 14:49 - 2013-05-03 21:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-06-01 14:49 - 2013-05-03 21:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-06-01 14:49 - 2013-05-03 21:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2015-06-01 14:49 - 2013-03-05 23:31 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-06-01 14:49 - 2013-03-05 22:03 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-06-01 14:49 - 2013-03-01 19:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-06-01 14:49 - 2013-03-01 19:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-06-01 14:49 - 2013-02-11 17:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-06-01 14:49 - 2013-02-02 01:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-06-01 14:49 - 2013-02-02 01:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-06-01 14:44 - 2013-12-04 16:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-06-01 14:44 - 2013-12-04 16:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-06-01 14:44 - 2013-05-03 23:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-06-01 14:44 - 2013-05-03 21:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-06-01 14:44 - 2013-04-26 22:20 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-06-01 14:43 - 2012-10-23 20:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-06-01 14:43 - 2012-10-23 20:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-06-01 14:43 - 2012-10-23 20:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-06-01 14:43 - 2012-10-23 20:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-06-01 14:42 - 2014-12-18 01:51 - 00096576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-06-01 14:42 - 2014-12-17 23:52 - 00889344 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-06-01 14:42 - 2014-12-17 23:51 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-06-01 14:42 - 2014-12-17 23:50 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-06-01 14:42 - 2014-12-17 23:20 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-06-01 14:42 - 2013-07-12 23:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-06-01 14:42 - 2013-07-12 23:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-06-01 14:42 - 2013-07-12 23:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-06-01 14:42 - 2013-07-12 23:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-06-01 14:42 - 2013-07-12 21:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-06-01 14:42 - 2013-07-12 21:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2015-06-01 14:42 - 2013-07-12 21:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-06-01 14:42 - 2013-07-01 18:41 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-06-01 14:42 - 2013-07-01 18:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-06-01 14:42 - 2013-07-01 18:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-06-01 14:42 - 2013-06-10 12:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-06-01 14:42 - 2013-06-10 12:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-06-01 14:42 - 2012-11-02 22:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-06-01 14:42 - 2012-11-02 22:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-06-01 14:42 - 2012-11-02 22:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-06-01 14:42 - 2012-11-02 22:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-06-01 14:42 - 2012-11-02 22:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2015-06-01 14:42 - 2012-11-02 22:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-06-01 14:42 - 2012-11-02 22:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2015-06-01 14:42 - 2012-11-02 22:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2015-06-01 14:41 - 2015-03-11 22:31 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-06-01 14:41 - 2015-03-11 22:31 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2015-06-01 14:41 - 2015-03-11 20:52 - 01933312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-06-01 14:40 - 2015-03-03 23:41 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-06-01 14:40 - 2015-03-03 23:39 - 00632832 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-06-01 14:40 - 2015-03-03 23:39 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-06-01 14:40 - 2015-03-03 21:53 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-06-01 14:40 - 2015-03-03 21:52 - 00676864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-06-01 14:40 - 2015-01-23 21:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-06-01 14:40 - 2014-10-11 00:44 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-06-01 14:40 - 2012-10-12 01:08 - 00027880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-06-01 14:40 - 2012-10-11 23:14 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-06-01 14:40 - 2012-09-19 23:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-06-01 14:40 - 2012-09-19 22:54 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-06-01 14:39 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-06-01 14:38 - 2015-06-01 14:38 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup (4).exe
2015-06-01 14:38 - 2014-12-18 21:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-06-01 14:37 - 2015-05-01 23:28 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-01 14:37 - 2015-05-01 20:59 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-06-01 14:37 - 2015-05-01 20:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-01 14:37 - 2015-04-13 15:09 - 00570248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-06-01 14:37 - 2015-03-06 00:39 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-06-01 14:37 - 2015-03-05 22:48 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-06-01 14:37 - 2015-01-15 04:44 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-06-01 14:37 - 2015-01-15 04:43 - 01282560 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-01 14:37 - 2015-01-15 03:00 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-06-01 14:37 - 2015-01-15 02:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-01 14:37 - 2015-01-15 02:09 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-06-01 14:37 - 2014-09-24 16:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-06-01 14:37 - 2014-09-24 16:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-06-01 14:37 - 2014-03-10 17:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-01 14:37 - 2014-03-10 17:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-01 14:37 - 2014-03-10 17:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-01 14:37 - 2014-03-09 18:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-06-01 14:35 - 2015-01-23 23:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-06-01 14:35 - 2015-01-23 22:00 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-06-01 14:35 - 2013-04-08 22:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-06-01 14:35 - 2013-04-08 22:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-06-01 14:35 - 2013-04-08 22:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-06-01 14:35 - 2013-04-08 22:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2015-06-01 14:35 - 2013-04-08 22:17 - 01829408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-01 14:35 - 2013-04-08 22:14 - 01455880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-06-01 14:35 - 2013-04-08 21:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-01 14:35 - 2013-04-08 21:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-06-01 14:35 - 2013-04-08 21:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-01 14:35 - 2013-04-08 21:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-06-01 14:35 - 2013-04-08 21:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-01 14:35 - 2013-04-08 21:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-01 14:35 - 2013-04-08 21:50 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-06-01 14:35 - 2013-04-08 21:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-01 14:35 - 2013-04-08 21:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-06-01 14:35 - 2013-04-08 21:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-06-01 14:35 - 2013-04-08 21:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-06-01 14:35 - 2013-04-08 19:33 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-06-01 14:35 - 2013-04-08 19:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-06-01 14:35 - 2013-04-08 19:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-06-01 14:35 - 2013-04-08 16:39 - 01408896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-06-01 14:35 - 2013-04-08 16:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-06-01 14:35 - 2013-04-08 16:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-06-01 14:35 - 2013-04-08 14:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-06-01 14:35 - 2013-04-08 14:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-06-01 14:35 - 2013-04-08 14:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-06-01 14:35 - 2013-04-08 14:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-06-01 14:35 - 2013-04-08 14:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-06-01 14:35 - 2013-04-08 14:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-06-01 14:35 - 2013-04-08 14:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-06-01 14:35 - 2013-03-30 11:16 - 01403784 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-06-01 14:35 - 2013-03-30 11:16 - 01267424 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-06-01 14:35 - 2013-03-28 15:09 - 01217328 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-06-01 14:35 - 2013-03-28 15:09 - 01093880 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-06-01 14:35 - 2013-03-15 15:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-06-01 14:35 - 2013-03-15 15:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-06-01 14:34 - 2013-04-08 22:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2015-06-01 14:34 - 2013-04-08 22:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2015-06-01 14:34 - 2013-04-08 21:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-06-01 14:34 - 2013-04-08 21:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-06-01 14:34 - 2013-04-08 21:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-06-01 14:34 - 2013-04-08 21:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-01 14:34 - 2013-04-08 21:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2015-06-01 14:34 - 2013-04-08 21:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-06-01 14:34 - 2013-04-08 21:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-06-01 14:34 - 2013-04-08 21:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-06-01 14:34 - 2013-04-08 21:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-06-01 14:34 - 2013-04-08 21:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-06-01 14:34 - 2013-04-08 21:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-06-01 14:34 - 2013-04-08 21:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-06-01 14:34 - 2013-04-08 21:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-06-01 14:34 - 2013-04-08 19:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-06-01 14:34 - 2013-04-08 19:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-06-01 14:34 - 2013-04-08 19:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-06-01 14:34 - 2013-04-08 16:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-06-01 14:34 - 2013-04-08 14:52 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-06-01 14:34 - 2013-04-08 14:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-06-01 14:34 - 2013-04-08 14:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-06-01 14:34 - 2013-04-08 14:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-06-01 14:34 - 2013-04-08 14:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-06-01 14:34 - 2013-04-04 16:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-06-01 14:34 - 2013-03-02 03:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-06-01 14:34 - 2013-02-02 01:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-06-01 14:34 - 2013-02-02 01:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-06-01 14:34 - 2013-01-09 18:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-06-01 14:34 - 2012-12-12 21:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-06-01 14:34 - 2012-12-12 20:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-06-01 14:34 - 2012-11-19 21:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2015-06-01 14:34 - 2012-11-05 22:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-06-01 14:34 - 2012-10-10 22:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-06-01 14:34 - 2012-10-10 22:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2015-06-01 14:34 - 2012-10-10 22:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2015-06-01 14:34 - 2012-10-10 22:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-06-01 14:34 - 2012-09-19 23:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2015-06-01 14:34 - 2012-09-19 23:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2015-06-01 14:34 - 2012-09-19 23:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-06-01 14:34 - 2012-09-19 23:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-06-01 14:34 - 2012-09-19 23:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-06-01 14:34 - 2012-09-19 23:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-06-01 14:34 - 2012-09-19 23:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-06-01 14:34 - 2012-09-19 23:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-01 14:34 - 2012-09-19 23:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-01 14:34 - 2012-09-19 23:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2015-06-01 14:34 - 2012-09-19 23:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2015-06-01 14:34 - 2012-09-19 23:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-01 14:34 - 2012-09-19 23:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-06-01 14:34 - 2012-09-19 22:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2015-06-01 14:34 - 2012-09-19 22:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-06-01 14:34 - 2012-09-19 22:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-06-01 14:34 - 2012-09-19 22:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-06-01 14:34 - 2012-09-19 22:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-06-01 14:34 - 2012-09-19 22:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-06-01 14:34 - 2012-09-19 22:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-06-01 14:34 - 2012-09-19 22:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-06-01 14:34 - 2012-09-19 22:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-06-01 14:34 - 2012-09-19 22:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-06-01 14:33 - 2015-02-16 23:54 - 19777536 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-06-01 14:33 - 2015-02-16 22:13 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-06-01 14:33 - 2014-11-08 04:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-06-01 14:33 - 2014-11-07 23:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-06-01 14:33 - 2014-10-23 05:47 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-06-01 14:33 - 2014-10-23 04:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-06-01 14:33 - 2014-06-19 16:35 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-06-01 14:33 - 2014-06-19 15:24 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-06-01 14:33 - 2013-09-27 20:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-06-01 14:33 - 2012-10-11 00:02 - 01636672 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2015-06-01 14:33 - 2012-10-10 22:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2015-06-01 14:33 - 2012-10-10 22:19 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-06-01 14:33 - 2012-10-10 22:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-06-01 14:31 - 2015-02-18 00:39 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-06-01 14:31 - 2015-02-18 00:38 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2015-06-01 14:31 - 2013-01-28 18:57 - 00035232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-06-01 14:31 - 2013-01-28 16:08 - 00230904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-06-01 14:31 - 2012-11-09 21:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-06-01 14:31 - 2012-11-09 21:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2015-06-01 14:31 - 2012-11-09 21:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2015-06-01 14:31 - 2012-11-09 21:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2015-06-01 14:30 - 2014-04-03 04:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-06-01 14:30 - 2013-03-02 02:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-06-01 14:28 - 2015-06-01 14:28 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup (3).exe
2015-06-01 14:28 - 2015-06-01 14:28 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup (2).exe
2015-06-01 14:28 - 2015-06-01 14:28 - 00000117 _____ C:\Windows\system32\netcfg-833560.txt
2015-06-01 14:28 - 2015-06-01 14:28 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Mozilla
2015-06-01 14:28 - 2015-04-05 22:36 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-06-01 14:28 - 2015-04-05 21:08 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-06-01 14:28 - 2015-01-15 14:45 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-01 14:28 - 2014-11-08 04:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-01 14:28 - 2014-11-07 23:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-06-01 14:28 - 2014-10-11 01:35 - 00171840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-01 14:28 - 2014-10-10 22:41 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-01 14:28 - 2014-10-10 22:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-06-01 14:28 - 2014-08-21 16:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-06-01 14:28 - 2014-08-21 16:27 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-06-01 14:28 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-06-01 14:28 - 2014-04-12 02:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-06-01 14:28 - 2014-04-12 02:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-01 14:28 - 2014-04-12 02:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-01 14:28 - 2014-04-12 02:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-01 14:28 - 2014-04-12 02:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-01 14:28 - 2014-04-12 00:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-06-01 14:28 - 2014-04-12 00:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-06-01 14:28 - 2014-04-12 00:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-06-01 14:28 - 2014-04-12 00:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-06-01 14:28 - 2014-04-11 23:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-06-01 14:28 - 2012-10-31 21:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-06-01 14:28 - 2012-10-31 21:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-06-01 14:28 - 2012-10-31 21:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-06-01 14:28 - 2012-10-31 21:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-06-01 14:28 - 2012-10-31 21:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-06-01 14:28 - 2012-10-31 21:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-06-01 14:26 - 2015-06-01 14:26 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-01 14:26 - 2015-06-01 14:26 - 00002255 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2015-06-01 14:26 - 2015-06-01 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-01 14:26 - 2013-10-31 22:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-06-01 14:26 - 2013-10-31 20:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-06-01 14:23 - 2015-06-01 14:23 - 00000117 _____ C:\Windows\system32\netcfg-534740.txt
2015-06-01 14:15 - 2015-06-01 14:15 - 00000117 _____ C:\Windows\system32\netcfg-74474.txt
2015-06-01 14:15 - 2015-06-01 14:15 - 00000117 _____ C:\Windows\system32\netcfg-74256.txt
2015-06-01 14:14 - 2015-06-01 14:14 - 00000117 _____ C:\Windows\system32\netcfg-2040539.txt
2015-06-01 14:14 - 2015-06-01 14:14 - 00000117 _____ C:\Windows\system32\netcfg-2027342.txt
2015-06-01 14:08 - 2015-06-01 14:08 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Chromium
2015-06-01 14:00 - 2015-06-01 14:00 - 00000117 _____ C:\Windows\system32\netcfg-1223515.txt
2015-06-01 13:55 - 2015-06-01 13:55 - 00000117 _____ C:\Windows\system32\netcfg-924867.txt
2015-06-01 13:52 - 2015-06-01 13:52 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup (1).exe
2015-06-01 13:42 - 2015-06-01 13:42 - 00000117 _____ C:\Windows\system32\netcfg-150790.txt
2015-06-01 13:42 - 2015-06-01 13:42 - 00000117 _____ C:\Windows\system32\netcfg-150540.txt
2015-06-01 13:39 - 2015-06-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg-37102404.txt
2015-06-01 13:39 - 2015-06-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg-37102341.txt
2015-06-01 13:33 - 2015-06-01 13:33 - 00931408 _____ (Google Inc.) C:\Users\kjh71pc\Downloads\GoogleVoiceAndVideoSetup.exe
2015-06-01 13:33 - 2015-06-01 13:33 - 00000117 _____ C:\Windows\system32\netcfg-36721480.txt
2015-06-01 13:28 - 2015-06-01 13:28 - 00001138 _____ C:\Windows\system32\netcfg-36423222.txt
2015-06-01 13:28 - 2015-06-01 13:28 - 00000117 _____ C:\Windows\system32\netcfg-36423768.txt
2015-06-01 13:21 - 2015-06-02 23:11 - 00001032 _____ C:\Users\kjh71pc\Desktop\GVMateApp.lnk
2015-06-01 13:21 - 2015-06-02 23:11 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\GVMateApp
2015-06-01 13:21 - 2015-06-02 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GVMateApp
2015-06-01 13:14 - 2015-06-01 13:20 - 27532171 _____ (PCPhoneSoft.com ) C:\Users\kjh71pc\Downloads\gvmateappsetup.exe
2015-06-01 12:55 - 2014-12-06 00:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-06-01 12:55 - 2014-12-06 00:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-06-01 12:55 - 2014-12-06 00:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-06-01 12:55 - 2014-12-06 00:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-06-01 12:55 - 2014-12-06 00:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-06-01 12:55 - 2014-12-05 23:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-06-01 12:55 - 2014-12-05 23:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-06-01 12:55 - 2014-12-05 23:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-06-01 12:55 - 2014-10-02 18:21 - 00522728 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-06-01 12:55 - 2014-10-02 15:29 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-06-01 12:55 - 2014-01-12 16:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-06-01 12:55 - 2014-01-12 16:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-06-01 12:55 - 2013-11-19 17:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-06-01 12:55 - 2013-11-19 16:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-06-01 12:55 - 2013-10-10 02:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-06-01 12:55 - 2013-10-10 02:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-06-01 12:55 - 2013-10-10 02:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-06-01 12:55 - 2013-10-10 02:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-06-01 12:55 - 2013-10-10 02:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-06-01 12:55 - 2013-10-10 02:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-06-01 12:55 - 2013-10-10 02:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-06-01 12:55 - 2013-07-08 23:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-06-01 12:55 - 2013-07-08 21:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-06-01 12:55 - 2013-06-30 18:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-06-01 12:55 - 2013-06-30 18:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-06-01 12:55 - 2013-06-30 18:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-06-01 12:55 - 2013-06-30 18:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-06-01 12:55 - 2013-06-28 20:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-06-01 12:55 - 2013-06-28 20:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-06-01 12:55 - 2013-03-02 01:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-06-01 12:55 - 2013-03-01 19:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-06-01 12:55 - 2013-02-05 15:29 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-06-01 12:55 - 2013-02-05 15:28 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-06-01 12:55 - 2013-02-02 04:19 - 00329960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-06-01 12:55 - 2013-02-02 04:19 - 00061672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2015-06-01 12:55 - 2013-02-02 03:54 - 01933544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-06-01 12:55 - 2013-02-02 03:28 - 00993512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-06-01 12:55 - 2013-02-02 01:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2015-06-01 12:55 - 2013-02-02 01:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-06-01 12:55 - 2013-02-02 01:40 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-06-01 12:55 - 2013-02-02 01:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-06-01 12:55 - 2013-02-02 01:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-06-01 12:55 - 2013-02-02 01:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-06-01 12:55 - 2013-02-02 01:39 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-06-01 12:55 - 2013-02-02 01:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-06-01 12:55 - 2013-02-02 01:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-06-01 12:55 - 2013-02-02 01:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-06-01 12:55 - 2013-02-02 01:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-06-01 12:55 - 2013-02-02 01:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2015-06-01 12:55 - 2013-02-02 01:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-06-01 12:55 - 2013-02-02 01:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-06-01 12:55 - 2013-02-02 01:23 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-06-01 12:55 - 2013-02-02 01:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-06-01 12:55 - 2013-02-02 01:22 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-06-01 12:55 - 2013-02-02 01:21 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-06-01 12:55 - 2013-02-02 01:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-06-01 12:55 - 2013-02-02 01:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-06-01 12:55 - 2013-02-02 00:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-06-01 12:55 - 2013-02-02 00:25 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2015-06-01 12:55 - 2013-02-01 22:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-06-01 12:55 - 2013-02-01 22:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-06-01 12:55 - 2012-12-14 21:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-06-01 12:55 - 2012-11-26 20:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2015-06-01 12:55 - 2012-11-26 20:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2015-06-01 12:55 - 2012-11-19 21:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-06-01 12:55 - 2012-11-02 22:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2015-06-01 12:55 - 2012-11-02 22:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2015-06-01 12:55 - 2012-10-23 20:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-06-01 12:55 - 2012-10-23 19:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2015-06-01 12:55 - 2012-10-05 21:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-06-01 12:55 - 2012-10-05 21:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-06-01 12:54 - 2014-12-18 23:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-06-01 12:54 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-06-01 12:54 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-06-01 12:54 - 2014-06-05 10:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-06-01 12:54 - 2013-08-23 00:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-06-01 12:54 - 2013-08-22 18:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-06-01 12:54 - 2013-04-02 16:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-06-01 12:54 - 2013-04-02 16:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-06-01 12:54 - 2013-03-21 20:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-06-01 12:54 - 2013-03-21 15:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-06-01 12:54 - 2013-03-05 23:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-06-01 12:52 - 2014-10-30 00:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-06-01 12:52 - 2014-10-29 22:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-06-01 12:40 - 2015-06-01 12:40 - 00001077 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2015-06-01 12:40 - 2015-06-01 12:40 - 00001077 _____ C:\ProgramData\Desktop\Revo Uninstaller Pro.lnk
2015-06-01 12:40 - 2015-06-01 12:40 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\VS Revo Group
2015-06-01 12:40 - 2015-06-01 12:40 - 00000000 ____D C:\ProgramData\SoundResearch
2015-06-01 12:40 - 2015-06-01 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-06-01 12:40 - 2012-08-10 00:34 - 06085632 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2015-06-01 12:40 - 2012-08-10 00:34 - 01425408 _____ (IDT, Inc.) C:\Windows\sttray64.exe
2015-06-01 12:40 - 2012-08-10 00:33 - 01821184 _____ (IDT, Inc.) C:\Windows\system32\IDTNC64.cpl
2015-06-01 12:40 - 2012-08-10 00:32 - 00224256 _____ (IDT, Inc.) C:\Windows\system32\HPToneCtrls64.dll
2015-06-01 12:40 - 2012-08-10 00:32 - 00090624 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTCo64.dll
2015-06-01 12:40 - 2012-08-10 00:32 - 00037888 _____ (Hewlett-Packard ) C:\Windows\system32\Beats64.exe
2015-06-01 12:39 - 2015-06-01 12:41 - 37602760 _____ (Hewlett-Packard ) C:\Users\kjh71pc\Downloads\sp68201.exe
2015-06-01 12:39 - 2015-06-01 12:40 - 00000000 ____D C:\Program Files\IDT
2015-06-01 12:39 - 2015-06-01 12:39 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\WinBatch
2015-06-01 12:39 - 2015-06-01 12:39 - 00000000 ____D C:\ProgramData\VS Revo Group
2015-06-01 12:39 - 2015-06-01 12:39 - 00000000 ____D C:\Program Files\VS Revo Group
2015-06-01 12:39 - 2015-06-01 12:39 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2015-06-01 12:39 - 2012-08-10 00:34 - 01988096 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2015-06-01 12:39 - 2012-08-10 00:34 - 00656896 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2015-06-01 12:39 - 2012-08-10 00:34 - 00540160 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2015-06-01 12:39 - 2012-08-10 00:34 - 00255488 _____ (IDT, Inc.) C:\Windows\system32\st646418.dll
2015-06-01 12:39 - 2012-08-10 00:34 - 00229256 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.DLL
2015-06-01 12:39 - 2012-08-10 00:34 - 00083336 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.DLL
2015-06-01 12:39 - 2012-08-10 00:34 - 00076168 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2015-06-01 12:39 - 2012-08-10 00:34 - 00076168 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.DLL
2015-06-01 12:39 - 2012-08-10 00:33 - 00084872 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.DLL
2015-06-01 12:39 - 2012-08-10 00:32 - 00200288 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2015-06-01 12:39 - 2012-08-10 00:32 - 00074336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2015-06-01 12:39 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2015-06-01 12:36 - 2015-06-01 12:37 - 18960760 _____ (Hewlett-Packard Development Company, L.P. ) C:\Users\kjh71pc\Downloads\sp58553.exe
2015-06-01 12:35 - 2015-06-01 12:36 - 10801480 _____ (VS Revo Group ) C:\Users\kjh71pc\Downloads\RevoUninProSetup.exe
2015-06-01 12:31 - 2015-06-01 12:31 - 00002430 _____ C:\Users\kjh71pc\Desktop\UsbFix_Report.txt
2015-06-01 12:31 - 2015-06-01 12:31 - 00001448 _____ C:\Users\kjh71pc\Desktop\UsbFix.lnk
2015-06-01 12:31 - 2015-06-01 12:31 - 00000000 ____D C:\UsbFix
2015-06-01 12:30 - 2015-06-01 12:30 - 04604000 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\kjh71pc\Downloads\UsbFix_2015_7.946.exe
2015-06-01 12:18 - 2015-06-01 12:18 - 00069632 _____ (Sergiwa Software - www.sergiwa.com) C:\Users\kjh71pc\Downloads\iReset.exe
2015-06-01 12:16 - 2015-06-03 15:06 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-01 12:16 - 2015-06-02 19:36 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-01 12:16 - 2015-06-01 12:16 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-01 12:16 - 2015-06-01 12:16 - 00001102 _____ C:\ProgramData\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-01 12:16 - 2015-06-01 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-01 12:16 - 2015-06-01 12:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-01 12:16 - 2015-06-01 12:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-01 12:16 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-01 12:16 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-01 12:15 - 2015-06-01 12:16 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\kjh71pc\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-01 04:19 - 2015-06-01 03:23 - 00000000 ____D C:\Windows\Panther
2015-06-01 03:45 - 2014-05-19 19:33 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-01 03:45 - 2014-05-19 16:45 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-01 03:45 - 2014-05-19 16:45 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 03286528 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 01623040 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 00773632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-06-01 03:45 - 2014-05-19 16:24 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-01 03:45 - 2014-05-14 15:43 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-01 03:45 - 2014-05-14 15:43 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-01 03:45 - 2014-05-14 15:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-01 03:45 - 2014-05-14 15:42 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-01 03:45 - 2013-08-15 22:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-01 03:45 - 2013-08-15 22:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-01 03:45 - 2013-08-15 15:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-01 03:45 - 2012-11-05 21:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-06-01 03:45 - 2012-11-05 21:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2015-06-01 03:37 - 2015-06-01 03:37 - 00001311 _____ C:\Windows\system32\RaCoInst.log
2015-06-01 03:37 - 2015-06-01 03:37 - 00000316 _____ C:\Windows\system32\netcfg-977720.txt
2015-06-01 03:37 - 2015-06-01 03:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-06-01 03:28 - 2015-06-01 03:28 - 00000000 ____D C:\Program Files (x86)\StartIsBack
2015-06-01 03:27 - 2015-06-01 14:25 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-01 03:26 - 2015-06-01 14:28 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Google
2015-06-01 03:26 - 2015-06-01 03:26 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Macromedia
2015-06-01 03:25 - 2015-06-01 03:25 - 00000117 _____ C:\Windows\system32\netcfg-251863.txt
2015-06-01 03:25 - 2015-06-01 03:25 - 00000117 _____ C:\Windows\system32\netcfg-251676.txt
2015-06-01 03:24 - 2015-06-02 17:08 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-01 03:24 - 2015-06-01 03:24 - 00001430 _____ C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-01 03:24 - 2015-06-01 03:24 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Adobe
2015-06-01 03:24 - 2015-06-01 03:24 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\VirtualStore
2015-06-01 03:23 - 2015-06-03 03:34 - 01473151 _____ C:\Windows\WindowsUpdate.log
2015-06-01 03:23 - 2015-06-02 21:28 - 00000000 ____D C:\Users\kjh71pc
2015-06-01 03:23 - 2015-06-01 03:24 - 00000000 ____D C:\Users\kjh71pc\AppData\Local\Packages
2015-06-01 03:23 - 2015-06-01 03:24 - 00000000 ____D C:\ProgramData\PRICache
2015-06-01 03:23 - 2015-06-01 03:23 - 00000020 ___SH C:\Users\kjh71pc\ntuser.ini
2015-06-01 03:23 - 2012-07-26 01:13 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-01 03:23 - 2012-07-26 01:13 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-01 03:23 - 2012-07-26 01:13 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-01 03:23 - 2012-07-26 01:13 - 00000000 ____D C:\Users\kjh71pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-01 03:22 - 2015-06-01 03:22 - 00001138 _____ C:\Windows\system32\netcfg-83663.txt
2015-06-01 03:22 - 2015-06-01 03:22 - 00000117 _____ C:\Windows\system32\netcfg-77844.txt
2015-06-01 03:20 - 2015-06-02 17:04 - 00003650 _____ C:\Windows\PFRO.log
2015-06-01 03:20 - 2015-06-01 03:20 - 00001135 _____ C:\Windows\system32\netcfg-42853.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00001135 _____ C:\Windows\system32\netcfg-41589.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000196 _____ C:\Windows\system32\netcfg-42401.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000185 _____ C:\Windows\system32\netcfg-40872.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000164 _____ C:\Windows\system32\netcfg-32666.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000161 _____ C:\Windows\system32\netcfg-39296.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000160 _____ C:\Windows\system32\netcfg-39093.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000160 _____ C:\Windows\system32\netcfg-38501.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000160 _____ C:\Windows\system32\netcfg-34055.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000159 _____ C:\Windows\system32\netcfg-37955.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000157 _____ C:\Windows\system32\netcfg-38844.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000157 _____ C:\Windows\system32\netcfg-34335.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000150 _____ C:\Windows\system32\netcfg-33758.txt
2015-06-01 03:20 - 2015-06-01 03:20 - 00000000 _____ C:\Windows\ativpsrm.bin
 
==================== Three Months Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-06-03 15:02 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\system32\sru
2015-06-03 03:22 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\rescache
2015-06-03 03:02 - 2012-07-26 00:59 - 00000000 ____D C:\Windows\CbsTemp
2015-06-03 00:37 - 2012-07-26 00:28 - 00803370 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-03 00:31 - 2012-07-26 00:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-03 00:30 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\AppCompat
2015-06-02 22:44 - 2012-07-25 22:37 - 00000000 ____D C:\Windows\servicing
2015-06-02 22:42 - 2012-07-25 22:26 - 00262144 _____ C:\Windows\system32\config\BBI
2015-06-02 22:41 - 2012-07-26 01:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-02 22:40 - 2012-07-26 01:12 - 00000000 ___RD C:\Windows\ToastData
2015-06-02 22:40 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-02 22:40 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-02 22:40 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-06-02 22:40 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-06-02 22:40 - 2012-07-26 00:52 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-02 22:40 - 2012-07-25 22:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-06-02 22:40 - 2012-07-25 22:38 - 00000000 ____D C:\Windows\system32\Dism
2015-06-02 22:38 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-02 22:38 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-02 22:38 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\WinStore
2015-06-02 22:38 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-02 22:38 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-06-02 22:37 - 2012-07-25 22:38 - 00000000 ____D C:\Windows\system32\oobe
2015-06-02 22:26 - 2012-07-25 22:26 - 00262144 _____ C:\Windows\system32\config\ELAM
2015-06-01 16:57 - 2012-07-26 00:21 - 00012389 _____ C:\Windows\setupact.log
2015-06-01 16:48 - 2012-09-10 14:54 - 00000689 _____ C:\Windows\SysWOW64\bscs.ini
2015-06-01 16:46 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-01 13:50 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\AUInstallAgent
2015-06-01 13:45 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-01 04:19 - 2012-07-26 01:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-06-01 03:45 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\system32\restore
2015-06-01 03:23 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\ImmersiveControlPanel
2015-06-01 03:22 - 2012-07-26 01:12 - 00000000 ____D C:\Windows\system32\Recovery
2015-06-01 03:21 - 2012-07-26 01:13 - 00001720 _____ C:\Windows\DtcInstall.log
 
Some files in TEMP:
====================
C:\Users\kjh71pc\AppData\Local\Temp\TGSetupSBSNDM.exe
C:\Users\kjh71pc\AppData\Local\Temp\vcredist_x86.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
==================== BCD ================================
 
Firmware Boot Manager
---------------------
identifier              {fwbootmgr}
displayorder            {bootmgr}
                        {51c2cdc3-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc4-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc9-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc7-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc8-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc5-084f-11e5-a37e-939c6cdcab1c}
                        {51c2cdc6-084f-11e5-a37e-939c6cdcab1c}
timeout                 2
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
integrityservices       Enable
default                 {current}
resumeobject            {51c2cdca-084f-11e5-a37e-939c6cdcab1c}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc3-084f-11e5-a37e-939c6cdcab1c}
description             USB Floppy/CD
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc4-084f-11e5-a37e-939c6cdcab1c}
description             USB Hard Drive
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc5-084f-11e5-a37e-939c6cdcab1c}
description             USB Floppy/CD
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc6-084f-11e5-a37e-939c6cdcab1c}
description             Hard Drive
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc7-084f-11e5-a37e-939c6cdcab1c}
description             UEFI: IPv4 Realtek PCIe GBE Family Controller
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc8-084f-11e5-a37e-939c6cdcab1c}
description             UEFI: IPv6 Realtek PCIe GBE Family Controller
 
Firmware Application (101fffff)
-------------------------------
identifier              {51c2cdc9-084f-11e5-a37e-939c6cdcab1c}
description             UEFI: hp      DVD A  DH16ACSH
 
Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.efi
description             Windows 8
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {51c2cdcc-084f-11e5-a37e-939c6cdcab1c}
integrityservices       Enable
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \Windows
resumeobject            {51c2cdca-084f-11e5-a37e-939c6cdcab1c}
nx                      OptIn
bootmenupolicy          Standard
 
Windows Boot Loader
-------------------
identifier              {51c2cdcc-084f-11e5-a37e-939c6cdcab1c}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\51c2cdcc-084f-11e5-a37e-939c6cdcab1c\Winre.wim,{51c2cdcd-084f-11e5-a37e-939c6cdcab1c}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\51c2cdcc-084f-11e5-a37e-939c6cdcab1c\Winre.wim,{51c2cdcd-084f-11e5-a37e-939c6cdcab1c}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Resume from Hibernate
---------------------
identifier              {51c2cdca-084f-11e5-a37e-939c6cdcab1c}
device                  partition=C:
path                    \Windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {51c2cdcc-084f-11e5-a37e-939c6cdcab1c}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\memtest.efi
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 No
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {51c2cdcd-084f-11e5-a37e-939c6cdcab1c}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\51c2cdcc-084f-11e5-a37e-939c6cdcab1c\boot.sdi
 
 
 
LastRegBack: 2015-06-01 03:20
 
==================== End of log ============================


#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:42 PM

Posted 08 June 2015 - 02:25 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/578322 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:42 PM

Posted 13 June 2015 - 02:30 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users