Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus maybe in my Recovery partition?


  • This topic is locked This topic is locked
44 replies to this topic

#1 jeffpho54

jeffpho54

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 21 July 2015 - 10:59 AM

I've refreshed and recovered my laptop about 3 times and still whenever I update to windows 8.1, everything just starts getting slow and I've been getting weird recoveries where my system would find PUPs and I've manually taken them out of the computer then it would somehow roll back a day or two and I'd get the same thing.

 

Anyways, I'm here because I want to post my Farbar.txt. If there's something wrong, please help.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-07-2015
Ran by kaichou (administrator) on KAICHOU6464 on 21-07-2015 00:16:46
Running from E:\
Loaded Profiles: kaichou (Available Profiles: kaichou)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\cmd.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\iTunes\iTunesHelper.exe [170280 2015-06-29] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13261456 2012-11-29] (Realtek Semiconductor)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
HKLM\...\RunOnce: [*WerKernelReporting] => C:\Windows\SYSTEM32\WerFault.exe [465320 2014-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [MemCheckBoxInRunDlg] 1
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.7.0.11\buShell.dll [2015-03-06] (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.7.0.11\buShell.dll [2015-03-06] (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.7.0.11\buShell.dll [2015-03-06] (Symantec Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-929268618-902340300-2114106167-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-929268618-902340300-2114106167-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://mystart.toshiba.com
HKU\S-1-5-21-929268618-902340300-2114106167-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://mystart.toshiba.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> OldSearch URL =
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\coIEPlg.dll [2015-06-26] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-04] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\coIEPlg.dll [2015-06-26] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.7.0.11\coIEPlg.dll [2015-06-26] (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{6811E441-2AC3-4637-83F2-DC9050E40933}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{FD37F242-93A1-4AF4-B5E7-9E5511FBA976}: [DhcpNameServer] 75.75.75.75 75.75.76.76

FireFox:
========
FF ProfilePath: C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\3q1be253.default
FF DefaultSearchEngine: Yahoo!
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: Yahoo!
FF Homepage: https://archive.moe/_/search/text/nagi/
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-16] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-28] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-03] (Adobe Systems Inc.)
FF Extension: YouTube mp3 - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\3q1be253.default\Extensions\info@youtube-mp3.org.xpi [2015-07-20]
FF Extension: New Tab Homepage - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\3q1be253.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2015-07-20]
FF Extension: NoScript - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\3q1be253.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-07-20]
FF Extension: Adblock Plus - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\3q1be253.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-20]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2015-07-21]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\Exts\Chrome.crx [2015-07-11]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\Exts\Chrome.crx [2015-07-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
S4 fbdpinger; c:\Program Files (x86)\Toshiba\ToshibaFB\fdbpinger.exe [2210464 2012-08-02] (TOSHIBA America Information Systems)
S2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\N360.exe [265000 2015-03-26] (Symantec Corporation)
S4 taisregispinger; C:\Program Files (x86)\Toshiba\ToshibaRegistration\TaisRegistPinger.exe [2196120 2012-08-03] (Toshiba America Information Systems.)
S4 THAccelSvc; C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe [214488 2012-08-10] (TOSHIBA CORPORATION)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-07-19] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-07-19] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20150706.001\BHDrvx64.sys [1648880 2015-07-06] (Symantec Corporation)
S1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1507000.00B\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-07-11] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153936 2015-07-11] (Symantec Corporation)
S1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20150720.001\IDSvia64.sys [692984 2015-07-10] (Symantec Corporation)
S2 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [109272 2015-06-18] (Malwarebytes Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-20] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20150720.002\ENG64.SYS [138488 2015-07-11] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20150720.002\EX64.SYS [2146040 2015-07-11] (Symantec Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2013-10-21] (Realtek Semiconductor Corporation                           )
S1 SRTSP; C:\Windows\System32\Drivers\N360x64\1507000.00B\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\N360x64\1507000.00B\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1507000.00B\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-25] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1507000.00B\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
S3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-07-11] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\N360x64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\N360x64\1507000.00B\SYMNETS.SYS [593112 2014-08-25] (Symantec Corporation)
R0 THAccel; C:\Windows\System32\DRIVERS\THAccel.sys [131520 2012-08-10] (TOSHIBA CORPORATION)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows ® Win 7 DDK provider)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-07-21] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-07-19] (Microsoft Corporation)

========================== Drivers MD5 =======================

C:\Windows\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1
C:\Windows\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1
C:\Windows\System32\drivers\ACPI.sys E796AE43DDD1844281DB4D57294D17C0
C:\Windows\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813
C:\Windows\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F
C:\Windows\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65
C:\Windows\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7
C:\Windows\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD
C:\Windows\system32\drivers\afd.sys 374E27295F0A9DCAA8FC96370F9BEEA5
C:\Windows\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8
C:\Windows\System32\DRIVERS\ahcache.sys FE14D249D39368CA62D8DA6BC94AC694
C:\Windows\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729
C:\Windows\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3
C:\Windows\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2
C:\Windows\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E
C:\Windows\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50
C:\Windows\system32\drivers\appid.sys 415DD71628795197F7AFC176CBADC74E
C:\Windows\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B
C:\Windows\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD
C:\Windows\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF
C:\Windows\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68
C:\Windows\System32\drivers\BasicRender.sys 38A82F4EE8C416A6744B6D30381ED768
C:\Windows\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21
C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6
C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20150706.001\BHDrvx64.sys FB0FAB0E2140FE8E17BAE727C15DBFBB
C:\Windows\System32\DRIVERS\bowser.sys 6B4FFFDDC618FCF64473CAA86E305697
C:\Windows\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7
C:\Windows\System32\drivers\bthhfenum.sys 272A62B660A48AEF366F8A1836CED19F
C:\Windows\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07
C:\Windows\System32\drivers\bthmodem.sys EF4B9E7C9AD88C00C18A12B0D22D1894
C:\Windows\system32\drivers\N360x64\1507000.00B\ccSetx64.sys 0510396A957E9FD7205BA62D3CAE4528
C:\Windows\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9
C:\Windows\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D
C:\Windows\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B
C:\Windows\System32\drivers\CLFS.sys 8EB7E70C2D348FE2476A2E3F2D585E3D
C:\Windows\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB
C:\Windows\System32\Drivers\cng.sys 5E5AB950693F2C6D6ACBEE3A74697ED7
C:\Windows\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905
C:\Windows\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2
C:\Windows\System32\drivers\dam.sys 389C998C64319CD97625B0550E52ECFA
C:\Windows\System32\Drivers\dfsc.sys A03F362C5557E238CBFA914689C77248
C:\Windows\System32\drivers\disk.sys 4D40C9B33F738797CF50E77CB7C53E85
C:\Windows\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F
C:\Windows\system32\drivers\drmkaud.sys 00C594D5A1DBD22AD8B2902B9F6EFF94
C:\Windows\System32\drivers\dxgkrnl.sys E1BB0B6F00F470B451AB45EA13EBA0B3
C:\Windows\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys A54D914A5B28939CED704287F132FC4A
C:\Windows\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9
C:\Windows\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 6ABFC778FA9CB07A7A01C03416134E6F
C:\Windows\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3
C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4
C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B
C:\Windows\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B
C:\Windows\System32\drivers\fileinfo.sys BCFD8B149B3ADF92D0DB1E909CAF0265
C:\Windows\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF
C:\Windows\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A
C:\Windows\System32\drivers\fltmgr.sys C1FB505A73FA2E9019D32444AB33B75A
C:\Windows\System32\drivers\FsDepends.sys A7C31B168F371E8E6796219F23E354DB
C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42
C:\Windows\System32\DRIVERS\fvevol.sys F152D55E497E12256290C43B31C7D0CE
C:\Windows\System32\drivers\FwLnk.sys 40A5690A50D003429E6AF655D765AAF4
C:\Windows\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015
C:\Windows\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA
C:\Windows\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1
C:\Windows\System32\Drivers\msgpioclx.sys 8DF1254093B5C354CE725EB6B9B0DE19
C:\Windows\System32\drivers\HDAudBus.sys D4B7ED39C7900384D9E5C1283F1E7926
C:\Windows\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906
C:\Windows\System32\drivers\hidbth.sys 42F88B57CAE42FC10059C887B3FCFCEA
C:\Windows\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17
C:\Windows\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95
C:\Windows\System32\drivers\hidusb.sys 8DB8EAB9D0C6A5DF0BDCADEA239220B4
C:\Windows\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D
C:\Windows\System32\drivers\HTTP.sys E87A6D3B8FECD5B93BC0CFBB48C27970
C:\Windows\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F
C:\Windows\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1
C:\Windows\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25
C:\Windows\System32\drivers\i8042prt.sys 49EE0AE9E5B64FFBBD06D55C4984B598
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05
C:\Windows\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C
C:\Windows\System32\drivers\iaStorA.sys 050F2539E14F9D5E90A4B61738EC29BD
C:\Windows\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC
C:\Windows\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2
C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20150720.001\IDSvia64.sys 19F52CF90BB4D05B5265773CA7011E4C
C:\Windows\system32\DRIVERS\igdkmd64.sys 4EB6ABBF5D78E65A418BA71EF3ACE251
C:\Windows\system32\drivers\intelaud.sys 4011430BC9DA46ADFAE9915EFEC312FB
C:\Windows\system32\drivers\RTKVHD64.sys 9FEAC097F98F883D0A389C1C36C5DFBD
C:\Windows\system32\DRIVERS\IntcDAud.sys F5495B38BFB9149925F54F65AB40EFBF
C:\Windows\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157
C:\Windows\System32\drivers\intelpep.sys 7AA01AB1C110916825E6E1389F1B9AF2
C:\Windows\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9
C:\Windows\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514
C:\Windows\System32\drivers\IPMIDrv.sys 9C096BF5E10CA8BFA56F32522A89FAF1
C:\Windows\System32\drivers\ipnat.sys B7342B3C58E91107F6E946A93D9D4EFD
C:\Windows\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97
C:\Windows\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21
C:\Windows\System32\drivers\msiscsi.sys D90AB68D0FAC9F357F663670FDBB511E
C:\Windows\System32\drivers\iwdbus.sys EE03564B7FAFE2E44EDA33D52E83B4A3
C:\Windows\System32\drivers\kbdclass.sys 5917AFE4A3F695A54B99C1849C8207FE
C:\Windows\System32\drivers\kbdhid.sys 8CD840A062F6BDF41DDE3ACB96164B72
C:\Windows\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05
C:\Windows\System32\Drivers\ksecdd.sys 4E829B18D5BAEC29893792A3C671A847
C:\Windows\System32\Drivers\ksecpkg.sys 46711F40D0F9E63F786ED23F9BD5215E
C:\Windows\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F
C:\Windows\system32\DRIVERS\L1C63x64.sys 50AECF8C21AB2A6428A6E1E10549D8E5
C:\Windows\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8
C:\Windows\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC
C:\Windows\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141
C:\Windows\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191
C:\Windows\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C
C:\Windows\system32\drivers\luafv.sys DDEE191AB32DFC22C6465002ECDF5EE4
C:\WINDOWS\system32\drivers\mbamchameleon.sys E681CE4AE5C09651D53CB4387CA3560E
C:\WINDOWS\system32\drivers\mbam.sys A8D28D5B3E2A528D1EF0E338E44F2820
C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 8F22037D3F5A6BB676525D825A1388B9
C:\WINDOWS\system32\drivers\mwac.sys 85CFE7AB85B43B6B7AC7961AA3983A9F
C:\Windows\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F
C:\Windows\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363
C:\Windows\System32\drivers\HECIx64.sys 772A1DEEDFDBC244183B5C805D1B7D85
C:\Windows\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378
C:\Windows\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9
C:\Windows\System32\drivers\mouclass.sys 08374E4E5B8914DE6067CBA99F61E930
C:\Windows\System32\drivers\mouhid.sys 5FCBAB60598AE119E02B4C27DE6B99EA
C:\Windows\System32\drivers\mountmgr.sys D1D82F007A079A4D623DBD1F36EF30A1
C:\Windows\System32\drivers\mpsdrv.sys 6FC047578785B0435F4E2660946D1ADC
C:\Windows\system32\drivers\mrxdav.sys DB32958F0E704EFBF7F15161A569E39F
C:\Windows\System32\DRIVERS\mrxsmb.sys 6FBDF2B1B025A8E6E069234362FFFFB7
C:\Windows\System32\DRIVERS\mrxsmb10.sys BCBD64220AD85C26823453FF1DC3EFBD
C:\Windows\System32\DRIVERS\mrxsmb20.sys 57C2473D501331211D6885FD59F3E44B
C:\Windows\system32\DRIVERS\bridge.sys F3C060444777A59FC63D920719E43CCD
C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08
C:\Windows\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD
C:\Windows\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31
C:\Windows\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA
C:\Windows\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C
C:\Windows\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D
C:\Windows\system32\DRIVERS\mslldp.sys 51B3AC0560848CD6D65AC2033E293113
C:\Windows\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6
C:\Windows\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8
C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0
C:\Windows\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E
C:\Windows\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2
C:\Windows\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E
C:\Windows\System32\Drivers\mup.sys 619CA29326B82372621DB2C0964D8365
C:\Windows\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F
C:\Windows\system32\DRIVERS\nwifi.sys 008F7CED69FD5B30CBDE1E03C6F36A27
C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20150720.002\ENG64.SYS 5A4EC58A5F2E63DB2092B343CF1B2834
C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20150720.002\EX64.SYS 526EA496D7F06B3746775046B33027C1
C:\Windows\System32\drivers\ndis.sys 6D3A2565E01B3E4B0F1BEDB0D4B00B3F
C:\Windows\system32\DRIVERS\ndiscap.sys 8CECC8DA55F3274181FD1EA28AD76664
C:\Windows\system32\DRIVERS\NdisImPlatform.sys 269882812E9A68FFF1AFE1283D428322
C:\Windows\system32\DRIVERS\ndistapi.sys DC1D9F692C2AD84C214584C28501C1F7
C:\Windows\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59
C:\Windows\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE
C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
C:\Windows\System32\Drivers\NDProxy.sys B8F36CBC72FC5C8B8A30AD850165EA8E
C:\Windows\System32\drivers\Ndu.sys 3083926D1CC5B56EA0786527B557DD1B
C:\Windows\System32\DRIVERS\netbios.sys 42FF4975D032CAE558AE4BB8448F6E5A
C:\Windows\System32\DRIVERS\netbt.sys 0217532E19A748F0E5D569307363D5FD
C:\Windows\System32\drivers\netvsc63.sys D4DCE03870314D3354F3501F9DDD4123
C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351
C:\Windows\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC
C:\Windows\System32\drivers\nsiproxy.sys 0E046FF5823B95326D10CF1B4AF23541
C:\Windows\System32\Drivers\Ntfs.sys 7F68063A5A0461E02BC860CE0E6BFDDC
C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904
C:\Windows\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8
C:\Windows\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E
C:\Windows\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49
C:\Windows\System32\drivers\parport.sys 764B1121867B2D9B31C491668AC72B2B
C:\Windows\System32\drivers\partmgr.sys BAFF6122CFC9F95CA175AD8C348179A4
C:\Program Files\PeerBlock\pbfilter.sys D1F41F0CED2BDD82148D4E5269EE01B9
C:\Windows\System32\drivers\pci.sys 91ED124E261EA8FAA1C0FFDF2A71B0C4
C:\Windows\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4
C:\Windows\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397
C:\Windows\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D
C:\Windows\System32\drivers\pdc.sys ED54A75050211DC77F9B98C41E026858
C:\Windows\System32\drivers\peauth.sys 0ECEE590F2E2EF969FB74A6FC583A1E6
C:\Windows\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F
C:\Windows\system32\DRIVERS\pacer.sys FC0141B4A5AD6D637D883C1A89FC45C5
C:\Windows\system32\drivers\qwavedrv.sys 83868EB2924E6BC21A54337C65D614D1
C:\Windows\System32\DRIVERS\rasacd.sys B337B1F1E82A83E20A1743E008E25C0F
C:\Windows\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A
C:\Windows\System32\DRIVERS\rdbss.sys A1A5E79C0D1352AFDC08328A623DA051
C:\Windows\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32
C:\Windows\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF
C:\Windows\System32\drivers\rdpvideominiport.sys BC8A79C625568DDB7DCA49D0C2741A64
C:\Windows\System32\drivers\rdyboost.sys A26AEC49F318FEE141DDDB2C5F99B3E6
C:\Windows\System32\Drivers\ReFS.sys 615DFD97DEA56CE1C3A52185A3038FF8
C:\Windows\System32\DRIVERS\revoflt.sys 9C3AC71A9934B884FAC567A8807E9C4D
C:\Windows\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC
C:\Windows\System32\Drivers\RtsUVStor.sys 8EB6DCEB7473C232D8BC9A886E3183AC
C:\Windows\system32\DRIVERS\rtwlane.sys 50186212213BE0F38BC6D12FDC4ADA26
C:\Windows\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0
C:\Windows\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7
C:\Windows\System32\DRIVERS\scfilter.sys 13BEA6C882D4D877A5A85CA149C86BC1
C:\Windows\System32\drivers\sdbus.sys C54B6B2170BF628FD42F799A66956D75
C:\Windows\System32\drivers\sdstor.sys 0B1E929D11A8E358106955603FAC65E8
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89
C:\Windows\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431
C:\Windows\System32\drivers\serenum.sys 3CD600C089C1251BEEB4CD4CD5164F9E
C:\Windows\System32\drivers\serial.sys D864381BC9C725FAB01D94C060660166
C:\Windows\System32\drivers\sermouse.sys 148195AE95D9BC7375A08846439FDAC1
C:\Windows\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764
C:\Windows\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F
C:\Windows\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F
C:\Windows\System32\drivers\spaceport.sys D24B1945ED1F9C96DA786DBBF1E983CE
C:\Windows\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34
C:\Windows\System32\Drivers\N360x64\1507000.00B\SRTSP64.SYS E163E10191958FF6A2B0B48353F9E9FD
C:\Windows\system32\drivers\N360x64\1507000.00B\SRTSPX64.SYS 68E7B6708B9EEE021301C483825D05EA
C:\Windows\System32\DRIVERS\srv.sys 6416E79A58A8FCC33A447A4DDDD3BF04
C:\Windows\System32\DRIVERS\srv2.sys 00D8AC8E3053290BDE6EA2FB6810D2FC
C:\Windows\System32\DRIVERS\srvnet.sys D047CD668E6277FD80F0C613946F034C
C:\Windows\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B
C:\Windows\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90
C:\Windows\System32\drivers\vmstorfl.sys 8B9486B64E5FC17FB9CC04CA10B77A34
C:\Windows\System32\drivers\stornvme.sys 6B06E2D11E604BE2B1A406C4CB3B90DE
C:\Windows\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F
C:\Windows\System32\drivers\swenum.sys 65454187E0F8B6C0DCECB0287D06EC43
C:\Windows\System32\drivers\N360x64\1507000.00B\SYMDS64.SYS 5C9EE2303CA7F267665D75237862B39C
C:\Windows\System32\drivers\N360x64\1507000.00B\SYMEFA64.SYS 9F31630D7FC2DD9D5DA1CE359AAD1F46
C:\Windows\System32\drivers\N360x64\1507000.00B\SymELAM.sys 20F758E6339A16F97DD83389D582E09A
C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS 97E11C50CE52277B377396EA8838E539
C:\Windows\system32\drivers\N360x64\1507000.00B\Ironx64.SYS 2C95265BE19F338E1C1090E4E91055BB
C:\Windows\System32\Drivers\N360x64\1507000.00B\SYMNETS.SYS 5570A74FF9B1EFBC5154DD1E2F05C517
C:\Windows\system32\DRIVERS\SynTP.sys 90AAE45676DDF13048FFB9D01FBE1669
C:\Windows\System32\drivers\tcpip.sys 3C2DF97A21A9BBE6355B0A51F288EFFF
C:\Windows\system32\DRIVERS\tcpip.sys 3C2DF97A21A9BBE6355B0A51F288EFFF
C:\Windows\System32\drivers\tcpipreg.sys 41CF802064F72E55F50CA0A221FD36D4
C:\Windows\system32\DRIVERS\tdcmdpst.sys 58480A57ACF2671C343FD1D4BA990E34
C:\Windows\system32\DRIVERS\tdx.sys FFF28F9F6823EB1756C60F1649560BBF
C:\Windows\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431
C:\Windows\System32\DRIVERS\THAccel.sys C028AE1560FEA74BEAB225D2E27C3E47
C:\Windows\System32\drivers\Thotkey.sys 77CF0ECC1C2B5E616B650AB5D4931114
C:\Windows\System32\drivers\tos_sps64.sys 36391C3953D191A2AF4556D5D706C641
C:\Windows\system32\drivers\tpm.sys 82F909359600D3603FE852DB7F135626
C:\Windows\System32\drivers\TrueSight.sys 531121E7ED50084B493A69F8F8A7A927
C:\Windows\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93
C:\Windows\System32\drivers\TsUsbGD.sys 20185BEB7512EDE4EFECDFA148AC9F99
C:\Windows\system32\DRIVERS\tunnel.sys C8E0E78B5D284C2FF59BDFFDAF997242
C:\Windows\System32\drivers\TVALZ_O.SYS 54BDBF3D4DED58DA78B702471C68D4CA
C:\Windows\system32\DRIVERS\TVALZFL.sys 55A9A23DD64EB7781FCAB565B028CD0E
C:\Windows\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54
C:\Windows\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B
C:\Windows\System32\drivers\ucx01000.sys 807F8CF3E973305FC435C61CBBEE2A49
C:\Windows\System32\DRIVERS\udfs.sys C61EAF8E1E4B2F62BA4FDF457440B2C6
C:\Windows\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21
C:\Windows\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9
C:\Windows\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034
C:\Windows\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E
C:\Windows\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473
C:\Windows\System32\drivers\usbccgp.sys FF78D053A05E5A394F4E3C1816CC65A8
C:\Windows\System32\drivers\usbcir.sys 0139248F6B95CF0D837B5B46A2722D40
C:\Windows\System32\drivers\usbehci.sys 48BA326A3DBA5B5BEB5F2777F4618696
C:\Windows\System32\drivers\usbhub.sys FEF0BC107812B36849741C3211BA6B60
C:\Windows\System32\drivers\UsbHub3.sys 95B0179BDA907252025DEEA183699FB3
C:\Windows\System32\drivers\usbohci.sys 3019097FB6C985EF24C058090FF3BDBD
C:\Windows\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C
C:\Windows\System32\drivers\USBSTOR.SYS 66732C13628BDB1AB0D6FD46027327C2
C:\Windows\System32\drivers\usbuhci.sys 064260B3A5868AC894A4943543BC7AB7
C:\Windows\System32\Drivers\usbvideo.sys 5C8F604F6DC74177CDD8372D7B1ADFF0
C:\Windows\System32\drivers\USBXHCI.SYS 44603DA5A87FB491EF59C889EBBB4DDB
C:\Windows\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562
C:\Windows\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD
C:\Windows\System32\drivers\vhdmp.sys F6ECFD6128A16A4851CFE98D4E01B011
C:\Windows\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199
C:\Windows\System32\drivers\vmbus.sys 511AD3FF957A0127E6BD336FF6F89C38
C:\Windows\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F
C:\Windows\System32\drivers\volmgr.sys 55D7D963DE85162F1C49721E502F9744
C:\Windows\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7
C:\Windows\System32\drivers\volsnap.sys 64CA2B4A49A8EAF495E435623ECCE7DB
C:\Windows\System32\drivers\vpci.sys EF31713EE4C7CCFE4049F7E7F15645A2
C:\Windows\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07
C:\Windows\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B
C:\Windows\System32\drivers\vwifibus.sys BE970C369E43B509C1EDA2B8FA7CECB0
C:\Windows\system32\DRIVERS\vwififlt.sys 6B26AD573CCDD5209DF4397438B76354
C:\Windows\system32\DRIVERS\vwifimp.sys 0B48E0DFB44EE475F4FD8A8EE599AF30
C:\Windows\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B
C:\Windows\system32\drivers\WdBoot.sys 1751F6B031ADAC34724511057D2E455D
C:\Windows\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D
C:\Windows\System32\drivers\WdFilter.sys D296D0F0DB2CD1504F90405603664493
C:\Windows\System32\Drivers\WdNisDrv.sys 9F4DF0043965808973023A9B51A11136
C:\Windows\System32\DRIVERS\wfplwfs.sys 715ABA3DD164D06457A2A3C92F6EA9D5
C:\Windows\System32\drivers\wimmount.sys 5F66B7BB330AA80067FC66149A692620
C:\Windows\system32\DRIVERS\WinUsb.sys AC263C2F66405589528995AA41040599
C:\Windows\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128
C:\Windows\System32\Drivers\Wof.sys 7FC5667DF73D4B04AA457CC3A4180E09
C:\Windows\System32\DRIVERS\wpcfltr.sys A2468CC3509394A33C4C32F99563D845
C:\Windows\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A
C:\Windows\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572
C:\Windows\System32\drivers\WSDPrint.sys F586F3F1BF962FE9AE4316E0D896B22F
C:\Windows\system32\DRIVERS\WSDScan.sys 58035FD3369879E02D65989C44D27450
C:\Windows\System32\drivers\WudfPf.sys 481286719402E4BAEFEA0604AB1B5113
C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
C:\Windows\system32\DRIVERS\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-21 00:16 - 2015-07-21 00:16 - 00000003 _____ C:\Users\kaichou\others
2015-07-21 00:16 - 2015-07-21 00:16 - 00000000 ____D C:\FRST
2015-07-21 00:09 - 2015-07-21 00:09 - 00284832 _____ C:\WINDOWS\Minidump\072115-210906-01.dmp
2015-07-21 00:09 - 2015-07-21 00:09 - 00000000 ____D C:\WINDOWS\Minidump
2015-07-21 00:08 - 2015-07-21 00:08 - 991030716 _____ C:\WINDOWS\MEMORY.DMP
2015-07-20 23:37 - 2015-07-20 23:37 - 00001104 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2015-07-20 23:32 - 2015-07-20 23:33 - 02135552 _____ (Farbar) C:\Users\kaichou\Desktop\FRST64.exe
2015-07-20 23:32 - 2015-07-20 23:32 - 11069616 _____ (VS Revo Group ) C:\Users\kaichou\VSUSetup.exe
2015-07-20 23:31 - 2015-07-20 23:32 - 00008130 _____ C:\Users\kaichou\REVCE42.tmp
2015-07-20 23:21 - 2015-07-20 23:21 - 00000000 ____D C:\Users\kaichou\acro_rd_dir
2015-07-20 22:54 - 2015-07-20 23:00 - 00000000 ____D C:\Users\kaichou\scoped_dir3172_19127
2015-07-20 22:34 - 2015-07-13 14:10 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-20 22:34 - 2015-07-13 14:10 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-20 22:12 - 2015-07-20 22:12 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-20 21:09 - 2015-07-20 22:47 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Skype
2015-07-20 21:09 - 2015-07-20 21:09 - 00000000 ____D C:\Users\kaichou\Skype
2015-07-20 21:07 - 2015-07-20 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-20 21:07 - 2015-07-20 21:07 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk
2015-07-20 21:07 - 2015-07-20 21:07 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-20 21:04 - 2015-07-20 21:05 - 00000000 ____D C:\ProgramData\Skype
2015-07-20 20:52 - 2015-07-20 21:03 - 00448738 _____ C:\Users\kaichou\dd_vcredistMSI6C60.txt
2015-07-20 20:52 - 2015-07-20 21:03 - 00016588 _____ C:\Users\kaichou\dd_vcredistUI6C60.txt
2015-07-20 20:38 - 2015-07-20 20:51 - 00434506 _____ C:\Users\kaichou\dd_vcredistMSI6172.txt
2015-07-20 20:37 - 2015-07-20 20:51 - 00016096 _____ C:\Users\kaichou\dd_vcredistUI6172.txt
2015-07-20 20:02 - 2015-07-20 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-07-20 19:57 - 2015-07-20 19:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-07-20 19:57 - 2015-07-20 19:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-07-20 19:56 - 2015-07-20 20:03 - 00002706 _____ C:\Silverlight0.log
2015-07-20 19:56 - 2015-07-20 20:02 - 02810322 _____ C:\SilverlightMSI.log
2015-07-20 19:17 - 2014-04-15 16:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-07-20 19:17 - 2014-04-15 16:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-07-20 19:03 - 2015-01-05 20:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-07-20 19:03 - 2015-01-05 19:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-07-20 19:03 - 2015-01-05 18:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-07-20 19:03 - 2015-01-05 18:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-07-20 16:41 - 2015-07-20 16:43 - 00014814 _____ C:\Users\kaichou\jusched.log
2015-07-20 16:35 - 2015-07-20 16:35 - 00562784 _____ (Oracle Corporation) C:\Users\kaichou\Desktop\jxpiinstall.exe
2015-07-20 15:43 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-07-20 15:43 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-07-20 15:33 - 2015-07-20 15:35 - 01190632 _____ (Adobe Systems Incorporated) C:\Users\kaichou\Desktop\readerdc_en_ha_install.exe
2015-07-20 15:28 - 2015-07-20 15:34 - 00000000 ____D C:\Users\kaichou\scoped_dir2796_26746
2015-07-20 14:59 - 2015-06-29 15:43 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-20 14:59 - 2015-06-29 08:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-20 14:59 - 2015-06-29 08:07 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-20 14:59 - 2015-06-29 08:07 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-20 14:59 - 2015-06-29 08:07 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-20 14:59 - 2015-06-29 08:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-20 14:59 - 2015-06-26 16:21 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-20 14:59 - 2015-06-26 16:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-20 14:59 - 2015-05-21 06:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-07-20 14:39 - 2015-04-30 18:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2015-07-20 14:39 - 2015-04-30 18:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-07-20 14:39 - 2015-04-30 18:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2015-07-20 14:38 - 2015-05-11 17:24 - 00536920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-07-20 13:43 - 2015-07-20 15:21 - 00000652 _____ C:\Users\kaichou\Desktop\Rkill.txt
2015-07-20 13:43 - 2015-07-20 13:43 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\kaichou\Desktop\rkill64.exe
2015-07-20 07:20 - 2015-07-20 07:20 - 00000284 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{B62C6920-70C5-4D2F-8A17-2B8E6A32997F}.job
2015-07-20 06:59 - 2015-07-20 07:00 - 00000000 _____ C:\Users\kaichou\Desktop\LogAnalyZer.ini
2015-07-20 06:34 - 2015-07-20 06:34 - 00000000 ____D C:\Users\kaichou\New folder
2015-07-20 06:28 - 2015-07-21 00:01 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-07-20 06:28 - 2015-07-20 06:59 - 00000000 ____D C:\ProgramData\RogueKiller
2015-07-20 06:28 - 2015-07-20 06:04 - 22634056 _____ C:\Users\kaichou\Desktop\RogueKillerX64.exe
2015-07-20 06:28 - 2015-07-20 06:00 - 01490944 _____ (Adlice Softwares) C:\Users\kaichou\Desktop\LogAnalyzer.exe
2015-07-20 06:28 - 2015-07-20 05:59 - 00497240 _____ (Adlice Software) C:\Users\kaichou\Desktop\TaskSTRun.exe
2015-07-20 05:51 - 2014-07-23 20:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-07-20 05:51 - 2014-07-23 20:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-07-20 05:20 - 2015-05-12 06:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-20 01:36 - 2015-07-20 01:36 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\kaichou\Desktop\rkill.exe
2015-07-19 23:04 - 2015-07-19 23:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security Suite
2015-07-19 22:59 - 2015-07-19 22:59 - 00001453 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-19 22:54 - 2015-07-19 22:54 - 00000020 ___SH C:\Users\kaichou\ntuser.ini
2015-07-19 22:43 - 2015-07-21 00:11 - 01551686 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-19 22:40 - 2015-07-19 22:40 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-07-19 21:41 - 2015-07-19 21:41 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-07-19 21:29 - 2015-07-19 21:29 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-07-19 21:24 - 2015-07-21 00:18 - 00000000 ____D C:\Users\kaichou
2015-07-19 21:24 - 2015-07-19 21:28 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-19 21:24 - 2014-11-21 08:57 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-19 21:24 - 2014-11-21 08:57 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-19 21:24 - 2014-11-21 01:52 - 00000369 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-07-19 21:24 - 2014-11-21 01:52 - 00000369 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-07-19 21:24 - 2013-08-22 08:36 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-19 21:23 - 2015-07-19 22:42 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2015-07-19 21:23 - 2015-07-19 22:42 - 00020958 _____ C:\WINDOWS\diagerr.xml
2015-07-19 20:46 - 2015-07-19 20:46 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2015-07-19 20:46 - 2015-07-19 20:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-07-19 20:45 - 2015-07-19 20:45 - 00000000 ____D C:\Program Files\Synaptics
2015-07-19 20:44 - 2015-07-19 21:35 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-19 20:44 - 2013-11-04 19:22 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-07-19 20:44 - 2013-11-04 19:22 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-07-19 20:41 - 2015-07-19 20:41 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-07-19 20:41 - 2015-07-19 20:41 - 00000000 ____D C:\Program Files\Realtek
2015-07-19 18:43 - 2015-07-19 18:43 - 00000000 __SHD C:\Recovery
2015-07-19 18:42 - 2015-07-20 05:33 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-19 18:39 - 2015-07-19 18:39 - 00000000 ____D C:\Windows.old
2015-07-19 18:36 - 2015-07-19 18:36 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-07-19 18:36 - 2015-07-19 18:36 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-07-19 18:33 - 2015-07-19 18:33 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-07-19 18:33 - 2015-07-19 18:33 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-07-19 18:33 - 2015-07-19 18:33 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-07-19 18:33 - 2015-07-19 18:33 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-07-19 18:33 - 2015-07-19 18:33 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-07-19 18:33 - 2015-07-19 18:33 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-07-19 18:33 - 2015-07-19 18:33 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-07-19 18:33 - 2015-07-19 18:33 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-07-19 18:33 - 2015-07-19 18:33 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-07-19 18:33 - 2015-07-19 18:33 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-07-19 18:26 - 2015-07-19 18:26 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-07-19 18:26 - 2015-07-19 18:26 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-07-19 18:26 - 2015-07-19 18:26 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-07-19 18:26 - 2015-07-19 18:26 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-07-19 18:19 - 2015-07-19 18:19 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-07-19 18:19 - 2015-07-19 18:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-07-19 18:18 - 2015-07-19 18:18 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-07-19 18:18 - 2015-07-19 18:18 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-07-19 18:18 - 2015-07-19 18:18 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-07-19 18:17 - 2015-07-19 18:17 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-07-19 18:17 - 2015-07-19 18:17 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-07-19 18:16 - 2015-07-19 18:16 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-19 18:16 - 2015-07-19 18:16 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 25193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 19877376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 14453248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 12855296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-19 18:15 - 2015-07-19 18:15 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-19 18:12 - 2015-07-19 18:12 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-19 18:12 - 2015-07-19 18:12 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-07-19 18:12 - 2015-07-19 18:12 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-19 18:12 - 2015-07-19 18:12 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-07-19 18:12 - 2015-07-19 18:12 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-07-19 18:06 - 2015-07-19 18:06 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-07-19 18:06 - 2015-07-19 18:06 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-07-19 18:06 - 2015-07-19 18:06 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-07-19 18:06 - 2015-07-19 18:06 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-07-19 18:06 - 2015-07-19 18:06 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-07-19 18:05 - 2015-07-19 18:05 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-19 18:05 - 2015-07-19 18:05 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-19 18:05 - 2015-07-19 18:05 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-19 18:05 - 2015-07-19 18:05 - 02460160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-19 18:05 - 2015-07-19 18:05 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-19 18:05 - 2015-07-19 18:05 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-19 18:03 - 2015-07-19 18:03 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-07-19 18:03 - 2015-07-19 18:03 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-07-19 18:03 - 2015-07-19 18:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-07-19 18:03 - 2015-07-19 18:03 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-07-19 18:03 - 2015-07-19 18:03 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-07-19 17:58 - 2015-07-19 17:58 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-07-19 17:58 - 2015-07-19 17:58 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-07-19 17:58 - 2015-07-19 17:58 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-07-19 17:58 - 2015-07-19 17:58 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-07-19 17:56 - 2015-07-19 17:56 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-07-19 17:56 - 2015-07-19 17:56 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-07-19 17:55 - 2015-07-19 17:55 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-07-19 17:55 - 2015-07-19 17:55 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-07-19 17:52 - 2015-07-19 17:52 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-07-19 17:51 - 2015-07-19 17:51 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-19 17:50 - 2015-07-19 17:50 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-19 17:50 - 2015-07-19 17:50 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-19 17:43 - 2015-07-19 17:43 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-07-19 17:43 - 2015-07-19 17:43 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-07-19 17:43 - 2015-07-19 17:43 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-07-19 17:42 - 2015-07-19 17:42 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-07-19 17:42 - 2015-07-19 17:42 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-07-19 17:42 - 2015-07-19 17:42 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 17:42 - 2015-07-19 17:42 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 17:41 - 2015-07-19 17:41 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-07-19 17:41 - 2015-07-19 17:41 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-07-19 17:40 - 2015-07-19 17:40 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-07-19 17:40 - 2015-07-19 17:40 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-07-19 17:40 - 2015-07-19 17:40 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-07-19 17:39 - 2015-07-19 17:39 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-07-19 17:39 - 2015-07-19 17:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-07-19 17:39 - 2015-07-19 17:39 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-07-19 17:39 - 2015-07-19 17:39 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-07-19 17:39 - 2015-07-19 17:39 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-07-19 17:38 - 2015-07-19 17:38 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-07-19 17:38 - 2015-07-19 17:38 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-07-19 17:37 - 2015-07-19 17:37 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-07-19 17:37 - 2015-07-19 17:37 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-07-19 17:37 - 2015-07-19 17:37 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-07-19 17:37 - 2015-07-19 17:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-07-19 17:37 - 2015-07-19 17:37 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-07-19 17:36 - 2015-07-19 17:36 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-07-19 17:36 - 2015-07-19 17:36 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-07-19 17:36 - 2015-07-19 17:36 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-07-19 17:36 - 2015-07-19 17:36 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-07-19 17:36 - 2015-07-19 17:36 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-07-19 17:34 - 2015-07-20 22:10 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-07-19 17:34 - 2015-07-20 22:10 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-07-19 17:33 - 2015-07-19 17:33 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-07-19 17:33 - 2015-07-19 17:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-07-19 17:32 - 2015-07-19 17:32 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-07-19 17:32 - 2015-07-19 17:32 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-07-19 17:31 - 2015-07-19 17:31 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-07-19 17:31 - 2015-07-19 17:31 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-07-19 17:31 - 2015-07-19 17:31 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-07-19 17:31 - 2015-07-19 17:31 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-07-19 17:30 - 2015-07-19 17:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-07-19 17:28 - 2015-07-19 17:28 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-07-19 17:28 - 2015-07-19 17:28 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-07-19 17:27 - 2015-07-19 17:27 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-07-19 17:26 - 2015-07-19 17:26 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-07-19 17:25 - 2015-07-19 17:26 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-07-19 17:25 - 2015-07-19 17:25 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-07-19 17:24 - 2015-07-19 17:24 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-07-19 17:23 - 2015-07-19 17:23 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-19 17:23 - 2015-07-19 17:23 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-07-19 17:20 - 2015-07-19 17:20 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-07-19 17:19 - 2015-07-19 17:20 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-07-19 17:19 - 2015-07-19 17:19 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-07-19 17:19 - 2015-07-19 17:19 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-07-19 17:18 - 2015-07-19 17:18 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-07-19 17:17 - 2015-07-19 17:17 - 00410739 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-19 17:17 - 2015-07-19 17:17 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-07-19 17:16 - 2015-07-19 17:16 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-07-19 17:15 - 2015-07-19 17:15 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-07-19 17:15 - 2015-07-19 17:15 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-07-19 17:15 - 2015-07-19 17:15 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-07-19 17:14 - 2015-07-19 17:14 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-19 17:14 - 2015-07-19 17:14 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-07-19 17:14 - 2015-07-19 17:14 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-19 17:14 - 2015-07-19 17:14 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-19 17:14 - 2015-07-19 17:14 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-19 17:12 - 2015-07-19 17:12 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-07-19 17:12 - 2015-07-19 17:12 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-07-19 17:12 - 2015-07-19 17:12 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-07-19 17:12 - 2015-07-19 17:12 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 03701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 02229248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-19 17:10 - 2015-07-19 17:10 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-19 17:10 - 2015-07-19 17:10 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-19 17:10 - 2015-07-19 17:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-19 17:10 - 2015-07-19 17:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-19 17:09 - 2015-07-19 17:09 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-19 17:09 - 2015-07-19 17:09 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-19 17:09 - 2015-07-19 17:09 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-19 17:09 - 2015-07-19 17:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-19 17:08 - 2015-07-19 17:08 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-07-19 17:07 - 2015-07-19 17:07 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-07-19 17:07 - 2015-07-19 17:07 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-07-19 17:06 - 2015-07-19 17:06 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-07-19 17:06 - 2015-07-19 17:06 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-07-19 17:06 - 2015-07-19 17:06 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-07-19 17:06 - 2015-07-19 17:06 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-07-19 17:04 - 2015-07-19 17:05 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-07-19 17:04 - 2015-07-19 17:04 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-19 17:04 - 2015-07-19 17:04 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-07-19 17:04 - 2015-07-19 17:04 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-07-19 17:04 - 2015-07-19 17:04 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-07-19 17:02 - 2015-07-19 17:02 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-07-19 17:02 - 2015-07-19 17:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-07-19 17:02 - 2015-07-19 17:02 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-07-19 17:01 - 2015-07-19 17:01 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-07-19 17:01 - 2015-07-19 17:01 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-07-19 16:54 - 2015-07-19 16:54 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-07-19 16:54 - 2015-07-19 16:54 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-07-19 16:54 - 2015-07-19 16:54 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-07-19 16:53 - 2015-07-19 16:53 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-07-19 16:53 - 2015-07-19 16:53 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-07-19 16:53 - 2015-07-19 16:53 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-07-19 16:52 - 2015-07-19 16:52 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-07-19 16:52 - 2015-07-19 16:52 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-07-19 16:52 - 2015-07-19 16:52 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-07-19 16:51 - 2015-07-19 16:51 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-19 16:51 - 2015-07-19 16:51 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-19 16:51 - 2015-07-19 16:51 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-19 16:51 - 2015-07-19 16:51 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-07-19 16:49 - 2015-07-19 16:49 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-07-19 16:49 - 2015-07-19 16:49 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-07-19 16:49 - 2015-07-19 16:49 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-07-19 16:49 - 2015-07-19 16:49 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-07-19 16:49 - 2015-07-19 16:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-07-19 16:42 - 2015-07-19 16:42 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-07-19 16:42 - 2015-07-19 16:42 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-07-19 16:42 - 2015-07-19 16:42 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-19 16:42 - 2015-07-19 16:42 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-07-19 16:41 - 2015-07-19 16:41 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-07-19 16:41 - 2015-07-19 16:41 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-07-19 16:40 - 2015-07-19 16:40 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-07-19 16:40 - 2015-07-19 16:40 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-07-19 16:40 - 2015-07-19 16:40 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-07-19 16:36 - 2015-07-19 16:36 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-07-19 16:36 - 2015-07-19 16:36 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-07-19 16:36 - 2015-07-19 16:36 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-07-19 16:36 - 2015-07-19 16:36 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-07-19 16:29 - 2015-07-19 16:29 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-19 16:29 - 2015-07-19 16:29 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-19 16:28 - 2015-07-19 16:28 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-07-19 16:28 - 2015-07-19 16:28 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-07-19 16:26 - 2015-07-19 16:26 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-07-19 16:26 - 2015-07-19 16:26 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-07-19 16:26 - 2015-07-19 16:26 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-07-19 16:26 - 2015-07-19 16:26 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-07-19 16:26 - 2015-07-19 16:26 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-07-19 16:24 - 2015-07-19 16:24 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-07-19 16:12 - 2015-07-19 16:12 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-07-19 16:12 - 2015-07-19 16:12 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-07-19 16:11 - 2015-07-19 16:11 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-07-19 16:11 - 2015-07-19 16:11 - 00000000 ____D C:\Program Files\MSBuild
2015-07-19 16:07 - 2013-08-02 21:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-07-19 16:07 - 2013-08-02 21:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-07-19 16:06 - 2015-07-19 16:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-07-19 16:06 - 2015-07-19 16:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-07-19 06:05 - 2015-07-19 22:42 - 00006660 _____ C:\WINDOWS\comsetup.log
2015-07-18 20:02 - 2015-07-18 20:26 - 202882837 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 14 [480p].mkv
2015-07-18 20:01 - 2015-07-18 20:30 - 203122466 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 13.5 [480p].mkv
2015-07-18 20:00 - 2015-07-18 20:33 - 198104380 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 13 [480p].mkv
2015-07-18 20:00 - 2015-07-18 20:27 - 203758249 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 12 [480p].mkv.!ut
2015-07-18 19:59 - 2015-07-18 20:34 - 200618648 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 11 [480p].mkv
2015-07-18 15:41 - 2015-07-18 16:35 - 153770271 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Working!!! - 03 [480p].mkv
2015-07-18 13:13 - 2015-07-18 16:36 - 460830410 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 01 [720p].mkv
2015-07-18 13:13 - 2015-07-18 16:36 - 153631121 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Working!!! - 02 [480p].mkv
2015-07-18 04:19 - 2015-07-18 17:32 - 1494542336 _____ C:\Users\kaichou\Downloads\STRAPPED1.avi.!ut
2015-07-18 04:04 - 2015-07-18 17:55 - 892461159 _____ C:\Users\kaichou\Downloads\South.Central.1992.720p.WEB-DL.850MB.MkvCage.mkv
2015-07-18 03:50 - 2015-07-18 16:58 - 00000000 ____D C:\Users\kaichou\Downloads\Don't be a Menace to South Central while Drinking your Juice in the Hood rar
2015-07-18 03:21 - 2015-07-20 22:50 - 00000000 ____D C:\Program Files\PeerBlock
2015-07-18 03:21 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
2015-07-18 03:21 - 2015-07-18 03:21 - 00001747 _____ C:\Users\kaichou\Desktop\PeerBlock.lnk
2015-07-18 03:18 - 2015-07-18 03:19 - 02374320 _____ (PeerBlock, LLC ) C:\Users\kaichou\Desktop\PeerBlock-Setup_v1.2_r693.exe
2015-07-18 03:17 - 2015-07-18 04:02 - 80003946 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Bikini Warriors - 01 [720p].mkv.!ut
2015-07-18 03:15 - 2015-07-18 04:16 - 199468482 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 01 [480p].mkv.!ut
2015-07-18 02:42 - 2015-07-18 04:16 - 196607587 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 07 [480p].mkv
2015-07-18 00:47 - 2015-07-18 16:37 - 192979754 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 06 [480p].mkv
2015-07-18 00:47 - 2015-07-18 04:15 - 195759949 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 10 [480p].mkv.!ut
2015-07-18 00:47 - 2015-07-18 03:14 - 198046427 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 08 [480p].mkv
2015-07-18 00:47 - 2015-07-18 03:14 - 193335225 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 09 [480p].mkv
2015-07-18 00:38 - 2015-07-18 16:35 - 202574080 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 03 [480p].mkv
2015-07-18 00:38 - 2015-07-18 16:33 - 202423838 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 04 [480p].mkv
2015-07-18 00:37 - 2015-07-18 16:00 - 207342944 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 05 [480p].mkv
2015-07-18 00:37 - 2015-07-18 04:25 - 204702914 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 01 [480p].mkv
2015-07-18 00:37 - 2015-07-18 04:24 - 202581916 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 02 [480p].mkv
2015-07-18 00:34 - 2015-07-18 04:16 - 199983762 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 02 [480p].mkv
2015-07-18 00:33 - 2015-07-18 03:07 - 34294746 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Bikini Warriors - 02 [480p].mkv
2015-07-18 00:32 - 2015-07-18 03:32 - 358402601 _____ C:\Users\kaichou\Downloads\[HorribleSubs] GOD EATER - 01 [480p].mkv
2015-07-18 00:29 - 2015-07-18 00:30 - 00000000 ____D C:\Users\kaichou\Desktop\kk anime
2015-07-18 00:17 - 2015-07-20 07:18 - 00000000 ____D C:\Program Files (x86)\uTorrent
2015-07-17 19:03 - 2015-07-20 08:47 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-07-17 19:01 - 2015-07-17 23:00 - 00000000 ____D C:\Users\kaichou\Desktop\mbar
2015-07-17 16:27 - 2015-07-17 16:27 - 30651644 _____ C:\Users\kaichou\Documents\fff.pcapng
2015-07-17 13:42 - 2015-07-17 13:42 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\LolClient
2015-07-17 02:58 - 2015-07-17 02:58 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Wireshark
2015-07-17 02:49 - 2015-07-17 02:49 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2015-07-17 02:47 - 2015-07-17 02:51 - 00000000 ____D C:\Program Files\Wireshark
2015-07-17 02:46 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2015-07-17 02:46 - 2015-07-17 02:46 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\JAM Software
2015-07-17 02:46 - 2015-07-17 02:46 - 00000000 ____D C:\Program Files (x86)\JAM Software
2015-07-17 02:45 - 2015-07-17 02:59 - 00000000 ____D C:\Users\kaichou\Desktop\kkk
2015-07-16 17:36 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-07-16 17:36 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-07-16 17:36 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-07-16 17:36 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2015-07-16 17:35 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-07-16 17:35 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-07-16 17:35 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-07-16 17:35 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-07-16 17:35 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-07-16 17:35 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-07-16 17:35 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-07-16 17:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-07-16 17:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-07-16 17:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-07-16 17:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-07-16 17:34 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-07-16 17:34 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-07-16 17:34 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-07-16 17:34 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-07-16 17:33 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-07-16 17:33 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-07-16 17:33 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-07-16 17:33 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-07-16 17:33 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-07-16 17:33 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-07-16 17:33 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-07-16 17:33 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-07-16 17:32 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-07-16 17:32 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-07-16 17:32 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-07-16 17:32 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-07-16 17:32 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-07-16 17:32 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-07-16 17:32 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-07-16 17:32 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-07-16 17:32 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-07-16 17:32 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-07-16 17:32 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-07-16 17:32 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-07-16 17:32 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-07-16 17:31 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-07-16 17:31 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-07-16 17:31 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-07-16 17:31 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-07-16 17:31 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-07-16 17:31 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-07-16 17:31 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-07-16 17:31 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-07-16 17:31 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-07-16 17:31 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-07-16 17:30 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-07-16 17:30 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-07-16 17:30 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-07-16 17:30 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-07-16 17:30 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-07-16 17:30 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-07-16 17:30 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-07-16 17:30 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-07-16 17:30 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-07-16 17:30 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-07-16 17:30 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-07-16 17:29 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-07-16 17:29 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-07-16 17:29 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-07-16 17:29 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-07-16 17:29 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-07-16 17:29 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-07-16 17:14 - 2015-07-16 17:14 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-07-16 17:07 - 2015-07-19 21:53 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CABAL2 (US)
2015-07-16 17:07 - 2015-07-16 17:07 - 00001073 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\CABAL2 (US).lnk
2015-07-16 17:06 - 2015-07-16 22:34 - 00000000 ____D C:\Program Files (x86)\CABAL2 (US)
2015-07-16 16:54 - 2015-07-20 23:40 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-16 16:54 - 2015-07-16 16:54 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-16 04:09 - 2015-07-20 05:32 - 00002992 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2015-07-15 21:10 - 2015-07-15 21:10 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\593173B4.sys
2015-07-15 20:59 - 2015-07-15 20:59 - 00003180 _____ C:\WINDOWS\System32\Tasks\{217151D7-3529-4E68-A76E-9AFBBABCAD27}
2015-07-15 18:27 - 2015-07-15 18:27 - 00000207 _____ C:\WINDOWS\tweaking.com-regbackup-KAICHOU6464-Windows-8-(64-bit).dat
2015-07-15 07:54 - 2015-07-15 07:54 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\WinRAR
2015-07-15 07:52 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-15 07:51 - 2015-07-19 21:53 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-15 07:51 - 2015-07-15 07:51 - 00000000 ____D C:\Program Files\WinRAR
2015-07-15 06:34 - 2015-07-15 06:34 - 00000000 ____D C:\RegBackup
2015-07-15 06:33 - 2015-07-19 23:46 - 00000000 ____D C:\AdwCleaner
2015-07-15 06:10 - 2015-07-15 06:10 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\MPC-HC
2015-07-15 05:58 - 2015-07-15 05:59 - 00004752 _____ C:\WINDOWS\SysWOW64\Robesaimpi.ini
2015-07-15 05:58 - 2015-07-15 05:59 - 00002464 _____ C:\WINDOWS\SysWOW64\RobesaimpiOff.ini
2015-07-15 05:58 - 2015-07-15 05:59 - 00002464 _____ C:\WINDOWS\system32\RobesaimpiOff.ini
2015-07-14 19:20 - 2015-07-14 19:21 - 00000000 ____D C:\N360_BACKUP
2015-07-14 15:02 - 2015-07-14 15:02 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-14 03:18 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-07-14 03:17 - 2015-07-14 03:19 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2015-07-14 01:04 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-07-14 01:00 - 2015-07-14 01:05 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-07-14 00:44 - 2015-07-20 22:53 - 00000000 ___RD C:\Users\kaichou\iCloudDrive
2015-07-14 00:09 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-07-13 22:52 - 2015-07-13 22:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-07-13 15:16 - 2015-07-19 23:37 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2015-07-13 10:24 - 2015-03-04 00:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2015-07-12 23:04 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-07-12 23:04 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-07-12 23:04 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2015-07-12 23:04 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2015-07-12 23:04 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2015-07-12 23:02 - 2015-07-20 06:47 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-07-12 23:01 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-07-12 23:01 - 2015-07-12 23:01 - 00000000 ____D C:\Riot Games
2015-07-12 22:32 - 2015-07-15 22:03 - 00000533 _____ C:\WINDOWS\SynInst.log
2015-07-12 16:53 - 2015-07-20 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-07-12 16:53 - 2015-07-12 16:53 - 00000000 ____D C:\ProgramData\VS Revo Group
2015-07-12 16:53 - 2009-12-30 11:21 - 00031800 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2015-07-12 16:52 - 2015-07-12 16:52 - 00000000 ____D C:\Program Files\VS Revo Group
2015-07-12 14:28 - 2015-07-20 07:20 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-12 03:25 - 2015-07-12 03:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Auslogics
2015-07-12 01:44 - 2015-07-12 01:44 - 00000000 ____D C:\ProgramData\HitmanPro
2015-07-12 01:35 - 2015-07-20 22:39 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-07-12 01:30 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-12 01:30 - 2015-07-12 01:30 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-12 01:29 - 2015-07-12 01:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-12 01:29 - 2015-07-12 01:29 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-12 01:29 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-07-12 01:29 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-07-12 01:29 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-07-12 00:28 - 2015-07-12 00:30 - 00000000 ____D C:\9a1c296b582d83fac5d1d1
2015-07-11 17:58 - 2015-07-18 13:15 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Apple Computer
2015-07-11 17:57 - 2015-07-19 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-11 17:57 - 2015-07-11 17:57 - 00001505 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-07-11 17:35 - 2015-07-11 17:56 - 00000000 ____D C:\iTunes
2015-07-11 17:35 - 2015-07-11 17:35 - 00000000 ____D C:\ProgramData\Apple Computer
2015-07-11 17:35 - 2015-07-11 17:35 - 00000000 ____D C:\Program Files\iPod
2015-07-11 17:35 - 2015-07-11 17:35 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-07-11 17:25 - 2015-07-11 17:25 - 00000000 ___RD C:\Users\kaichou\SkyDrive
2015-07-11 16:55 - 2015-07-13 22:51 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-07-11 16:55 - 2015-07-13 22:51 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-07-11 16:48 - 2015-07-11 16:48 - 00000000 ____D C:\Program Files\Bonjour
2015-07-11 16:48 - 2015-07-11 16:48 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-07-11 16:44 - 2015-07-14 00:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-07-11 16:39 - 2015-07-11 16:54 - 00000000 ____D C:\ProgramData\Apple
2015-07-11 11:53 - 2015-07-19 22:56 - 00003228 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2015-07-11 11:53 - 2015-07-11 11:53 - 00177752 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2015-07-11 11:53 - 2015-07-11 11:53 - 00008222 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2015-07-11 11:53 - 2015-07-11 11:53 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2015-07-11 11:52 - 2015-07-11 22:13 - 00002451 _____ C:\Users\Public\Desktop\Norton Security Suite.lnk
2015-07-11 11:47 - 2015-07-19 21:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Suite
2015-07-11 11:47 - 2015-07-11 22:15 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64
2015-07-11 11:47 - 2015-07-11 11:47 - 00000000 ____D C:\Program Files (x86)\Norton Security Suite
2015-07-11 07:12 - 2015-07-11 07:12 - 00000000 ____D C:\Users\kaichou\Documents\Symantec
2015-07-11 05:40 - 2015-07-11 05:46 - 00000000 ____D C:\2dbf313b9352b5e56a97636db0cd
2015-07-11 00:14 - 2013-05-03 21:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2015-07-11 00:14 - 2013-05-03 21:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2015-07-10 17:40 - 2015-07-15 10:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-10 17:39 - 2015-07-03 08:43 - 130333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-07-10 07:50 - 2015-07-21 00:02 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-929268618-902340300-2114106167-1001
2015-07-10 07:46 - 2015-07-10 07:46 - 00000000 ____D C:\Users\Public\Downloads\Norton
2015-07-10 07:46 - 2015-07-10 07:46 - 00000000 ____D C:\ProgramData\Auslogics
2015-07-10 03:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2015-07-10 03:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-07-10 03:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-07-10 03:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-07-10 03:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-07-10 03:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-07-10 03:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2015-07-10 03:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-07-10 03:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-07-10 03:39 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-07-10 03:39 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-07-10 03:39 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-07-10 03:39 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-07-10 03:39 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-07-10 01:20 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-07-10 01:20 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-07-10 01:20 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-07-10 01:19 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-07-10 01:19 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-07-10 01:19 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-07-10 01:19 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-07-10 01:19 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-07-10 01:19 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-07-10 01:19 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-07-10 01:19 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-07-10 01:19 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-07-10 01:19 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-07-10 01:19 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-07-10 01:19 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-07-10 01:18 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-07-10 01:18 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-07-10 01:17 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-07-10 01:17 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-07-10 01:17 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-07-10 01:17 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-07-10 01:17 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-07-10 01:17 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-07-10 01:17 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-07-10 01:17 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-07-10 01:17 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-07-10 01:17 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-07-10 01:17 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-07-10 01:17 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-07-10 01:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-07-10 01:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-07-10 01:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-07-10 01:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-07-10 01:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-07-10 01:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-07-10 01:11 - 2015-07-10 01:11 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-09 23:20 - 2015-07-09 23:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-07-09 22:27 - 2015-07-17 01:53 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Mozilla
2015-07-09 22:16 - 2015-07-09 22:21 - 00001158 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-07-09 22:14 - 2015-07-10 05:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-09 22:14 - 2015-07-09 22:19 - 00001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-07-09 22:14 - 2015-07-09 22:14 - 00000000 ____D C:\ProgramData\Mozilla
2015-07-09 22:13 - 2015-07-09 22:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-09 16:22 - 2015-07-09 16:23 - 00000013 __RSH C:\WINDOWS\system32\Drivers\fbd.sys
2015-07-09 10:21 - 2015-07-09 10:21 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Macromedia
2015-07-09 10:14 - 2015-07-09 10:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2015-07-09 10:08 - 2015-07-09 10:08 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Adobe
2015-07-09 10:07 - 2015-07-09 10:07 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Anti-Theft
2015-07-09 10:01 - 2015-07-19 07:28 - 01460363 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-07-09 10:01 - 2015-07-09 21:47 - 00000000 ____D C:\WINDOWS\softwaredistribution.bak
2015-06-17 00:23 - 2015-06-17 00:23 - 00094208 _____ (Apple Inc.) C:\WINDOWS\SysWOW64\QuickTimeVR.qtx
2015-06-17 00:23 - 2015-06-17 00:23 - 00069632 _____ (Apple Inc.) C:\WINDOWS\SysWOW64\QuickTime.qts
2015-06-10 23:08 - 2015-06-10 23:08 - 06112072 _____ (Apple, Inc.) C:\WINDOWS\system32\usbaaplrc.dll
2015-06-10 23:08 - 2015-06-10 23:08 - 00054784 _____ (Apple, Inc.) C:\WINDOWS\system32\Drivers\usbaapl64.sys

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-21 00:11 - 2013-08-22 07:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-21 00:09 - 2013-08-22 07:46 - 00289006 _____ C:\WINDOWS\setupact.log
2015-07-21 00:07 - 2014-11-21 01:34 - 00012986 _____ C:\WINDOWS\PFRO.log
2015-07-21 00:00 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-07-20 23:41 - 2014-11-21 01:44 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-20 23:13 - 2012-07-26 00:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-20 22:25 - 2013-08-22 06:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-07-20 22:13 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-07-20 22:13 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-07-20 22:12 - 2014-11-21 08:56 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-20 22:12 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\AppCompat
2015-07-20 18:50 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-07-20 07:12 - 2012-11-12 23:38 - 00000000 ____D C:\Program Files (x86)\WildGames
2015-07-20 07:12 - 2012-11-12 23:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-07-20 07:12 - 2012-11-12 23:36 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2015-07-20 05:09 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\restore
2015-07-20 01:27 - 2012-11-12 23:36 - 00000000 ____D C:\ProgramData\WildTangent
2015-07-19 23:37 - 2012-07-26 01:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-07-19 23:15 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-07-19 23:13 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\rescache
2015-07-19 22:42 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\Registration
2015-07-19 22:34 - 2013-08-22 08:36 - 00000000 __RSD C:\WINDOWS\Media
2015-07-19 22:34 - 2013-08-22 08:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-19 22:06 - 2013-08-22 07:44 - 00337808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-07-19 21:53 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-07-19 21:53 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-07-19 21:53 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-07-19 21:53 - 2013-08-22 06:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\tr
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\sv
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\sk
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\ru
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\pl
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\no
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\nl
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\it
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\hu
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\fr
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\fi
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\es
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\el
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\de
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\da
2015-07-19 21:53 - 2013-03-16 01:34 - 00000000 ____D C:\WINDOWS\system32\cs
2015-07-19 21:53 - 2013-03-16 01:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2015-07-19 21:53 - 2012-11-12 23:58 - 00000000 ____D C:\WINDOWS\en
2015-07-19 21:53 - 2012-11-12 23:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toshiba
2015-07-19 21:53 - 2012-11-12 23:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-07-19 21:41 - 2013-08-22 08:37 - 00005217 _____ C:\WINDOWS\DtcInstall.log
2015-07-19 21:41 - 2012-07-25 22:37 - 00000000 ____D C:\Users\Default.migrated
2015-07-19 21:40 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-07-19 21:40 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-07-19 21:40 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-07-19 21:40 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-07-19 21:40 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-07-19 21:40 - 2013-03-16 01:30 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-07-19 21:39 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\IME
2015-07-19 21:36 - 2013-08-22 08:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-07-19 21:36 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\Help
2015-07-19 21:36 - 2012-11-12 23:06 - 00000000 ____D C:\ProgramData\PRICache
2015-07-19 21:35 - 2013-08-22 08:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-07-19 21:35 - 2013-08-22 08:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-07-19 21:34 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-19 21:29 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-07-19 20:32 - 2013-08-22 06:36 - 00000000 __RHD C:\Users\Default
2015-07-19 18:40 - 2013-08-22 08:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-07-19 18:36 - 2013-08-22 08:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-07-19 18:35 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-07-19 18:35 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-07-19 18:04 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-07-19 17:42 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-07-19 17:38 - 2013-08-22 08:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-07-19 17:37 - 2014-11-21 01:39 - 02473472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-07-19 17:37 - 2013-08-22 08:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-19 17:37 - 2013-08-22 08:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-19 17:36 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-07-19 17:36 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-07-19 17:06 - 2013-08-22 08:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-19 16:38 - 2014-11-21 01:25 - 00000000 ____D C:\Program Files\Windows Journal
2015-07-19 16:26 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-07-19 05:55 - 2014-11-21 15:09 - 00000000 ___HD C:\$Windows.~BT
2015-07-17 17:21 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2015-07-16 17:32 - 2012-11-12 23:57 - 00029700 _____ C:\WINDOWS\DirectX.log
2015-07-11 13:10 - 2012-11-12 23:30 - 00000000 ____D C:\ProgramData\Norton
2015-07-09 21:41 - 2012-11-12 23:35 - 00000000 ____D C:\ProgramData\Toshiba

==================== Files in the root of some directories =======

2015-07-10 01:28 - 2015-07-20 23:51 - 0007605 _____ () C:\Users\kaichou\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Users\kaichou\VSUSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Firmware Boot Manager
---------------------
identifier              {fwbootmgr}
displayorder            {bootmgr}
                        {12002431-5e5b-11e4-bef4-806e6f6e6963}
                        {1200242f-5e5b-11e4-bef4-806e6f6e6963}
                        {12002430-5e5b-11e4-bef4-806e6f6e6963}
timeout                 2

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {1d3d5753-2e22-11e5-bea4-008cfa422575}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Firmware Application (101fffff)
-------------------------------
identifier              {1200242f-5e5b-11e4-bef4-806e6f6e6963}
description             EFI USB Device

Firmware Application (101fffff)
-------------------------------
identifier              {12002430-5e5b-11e4-bef4-806e6f6e6963}
description             EFI DVD/CDROM

Firmware Application (101fffff)
-------------------------------
identifier              {12002431-5e5b-11e4-bef4-806e6f6e6963}
description             EFI Network

Firmware Application (101fffff)
-------------------------------
identifier              {92ea2eef-8e11-11e2-be6c-806e6f6e6963}
description             EFI Network 0 for IPv6 (00-8C-FA-42-25-75)

Firmware Application (101fffff)
-------------------------------
identifier              {d8e4b142-2b6f-11e5-be95-806e6f6e6963}
description             EFI Network 0 for IPv6 (00-8C-FA-42-25-75)

Firmware Application (101fffff)
-------------------------------
identifier              {d8e4b143-2b6f-11e5-be95-806e6f6e6963}
description             EFI Network 0 for IPv4 (00-8C-FA-42-25-75)

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.efi
description             Windows 8.1
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {1d3d5755-2e22-11e5-bea4-008cfa422575}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {1d3d5753-2e22-11e5-bea4-008cfa422575}
nx                      OptIn
bootmenupolicy          Standard

Windows Boot Loader
-------------------
identifier              {1d3d5755-2e22-11e5-bea4-008cfa422575}
device                  ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{1d3d5756-2e22-11e5-bea4-008cfa422575}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{1d3d5756-2e22-11e5-bea4-008cfa422575}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e85a-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e85b-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-us
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e85b-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e86e-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e86f-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e86f-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e879-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e87a-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e87a-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Resume from Hibernate
---------------------
identifier              {1d3d5753-2e22-11e5-bea4-008cfa422575}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {1d3d5755-2e22-11e5-bea4-008cfa422575}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e85e-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e865-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e870-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e86e-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e877-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e879-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {89287081-8e11-11e2-a327-008cfa422575}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\memtest.efi
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 No

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {1d3d5752-2e22-11e5-bea4-008cfa422575}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {1d3d5756-2e22-11e5-bea4-008cfa422575}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume5
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e85b-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e867-931f-11e2-be72-c0d962485258}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {3d12e86f-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e872-931f-11e2-be72-c0d962485258}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {3d12e87a-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi



LastRegBack: 2015-07-19 20:31

==================== End of log ============================



BC AdBot (Login to Remove)

 


m

#2 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 21 July 2015 - 11:06 AM

Wow, I'm sorry for making so many topics. I had a cloudflare error just now...



#3 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 24 July 2015 - 12:44 PM

Greetings jeffpho54 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

This does not appear to be malware related. There are some strange entries in your BCD listing. I would recommend you open a Topic in the Windows 8 Forum.

If you have not reformatted and checked your computer performance before either downloading files via Peer to Peer or moved torrent downloaded files back onto your computer I would recommend you try that. Those types of files from untrusted sources bring with them a level of risk that will bite you sooner or later.

I am going to close this Topic but if you need to send me a Personal Message.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 24 July 2015 - 12:44 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 26 July 2015 - 01:16 PM

This topic has been re-opened at the request of the person who originally posted.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 26 July 2015 - 01:17 PM

Please rerun FRST and make sure you place a check mark in Addition.txt. Copy and paste both logs in your reply.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 12:10 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-07-2015
Ran by kaichou (administrator) on KAICHOU6464 on 26-07-2015 21:44:58
Running from E:\
Loaded Profiles: kaichou (Available Profiles: kaichou)
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13261456 2012-11-29] (Realtek Semiconductor)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2608040 2012-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [169896 2012-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-04] ()
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [ToshibaAppPlace] => C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe [552960 2010-09-23] (Toshiba)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.toshiba.com?cid=J13
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://home.toshiba.com?cid=J13
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.toshiba.com?cid=J13
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.toshiba.com?cid=J13
HKU\S-1-5-21-929268618-902340300-2114106167-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.toshiba.com?cid=J13
HKU\S-1-5-21-929268618-902340300-2114106167-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://toshiba13.msn.com/?pc=TNJB
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> DefaultScope {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
Hosts: 127.0.0.1    localhost
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{99F5F091-BD45-4D4E-83BC-7033B0B4B5CD}: [DhcpNameServer] 75.75.75.75 75.75.76.76

FireFox:
========
FF ProfilePath: C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\e3tbmwqt.default
FF DefaultSearchEngine.US: Google
FF Homepage: https://www.google.com/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-22] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-22] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-28] (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-11] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-02] (Adobe Systems Inc.)
FF Extension: YouTube mp3 - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\e3tbmwqt.default\Extensions\info@youtube-mp3.org.xpi [2015-07-22]
FF Extension: NoScript - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\e3tbmwqt.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-07-22]
FF Extension: Adblock Plus - C:\Users\kaichou\AppData\Roaming\Mozilla\Firefox\Profiles\e3tbmwqt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S4 taisregispinger; C:\Program Files (x86)\Toshiba\ToshibaRegistration\TaisRegistPinger.exe [2196120 2012-08-03] (Toshiba America Information Systems.)
S2 THAccelSvc; C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe [214488 2012-08-10] (TOSHIBA CORPORATION)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 rspSanity; C:\Windows\System32\DRIVERS\rspSanity64.sys [31328 2012-10-29] (Resplendence Software Projects Sp.)
S3 RTL8192Ce; C:\Windows\system32\DRIVERS\rtwlane.sys [1549384 2013-05-02] (Realtek Semiconductor Corporation                           )
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1549384 2013-05-02] (Realtek Semiconductor Corporation                           )
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [18840 2015-03-31] ()
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-16] (Synaptics Incorporated)
R0 THAccel; C:\Windows\System32\DRIVERS\THAccel.sys [131520 2012-08-10] (TOSHIBA CORPORATION)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows ® Win 7 DDK provider)

========================== Drivers MD5 =======================

C:\Windows\System32\drivers\1394ohci.sys E890C46E4754F0DF51BAFCC8D2E07498
C:\Windows\System32\drivers\3ware.sys 4F18D4C7EA14F11A7211F60D553C03DB
C:\Windows\System32\drivers\ACPI.sys 975AABEB243B800C23626D6B652C5A9C
C:\Windows\System32\Drivers\acpiex.sys DC968C37822117E576B933F34A2D130C
C:\Windows\System32\drivers\acpipagr.sys 0CA9F7C3A78227C21A0A7854E245CFB2
C:\Windows\System32\drivers\acpipmi.sys 8EB8DA03B142D3DD1EB9ED8107A76C43
C:\Windows\System32\drivers\acpitime.sys CBCE725C5D86ABA7D2604E22951AA9B8
C:\Windows\System32\drivers\adp94xx.sys 93C6388592B99925C1D1576E465BC80F
C:\Windows\System32\drivers\adpahci.sys D27763E0247292654E7F7D16444C7C72
C:\Windows\System32\drivers\adpu320.sys 67B90070FF48F794AF19F9FCF0080D75
C:\Windows\system32\drivers\afd.sys FE7FB9612D354EB41DF4F0FF5D6FB259
C:\Windows\System32\drivers\agp440.sys 01590377A5AB19E792528C628A2A68F9
C:\Windows\System32\drivers\amdk8.sys 5A81054B824004B1ECC04F0034A1CDF9
C:\Windows\System32\drivers\amdppm.sys B849D453E644FAB9BC8EF6DC8CA9C4C6
C:\Windows\System32\drivers\amdsata.sys 35A0EB5AECB0FA3C41A2FB514A562304
C:\Windows\System32\drivers\amdsbs.sys 00452671904F5EE94B50BF0219C97164
C:\Windows\System32\drivers\amdxata.sys EA3FFE53E92E59C87E3ECA9BEB20D9B7
C:\Windows\system32\drivers\appid.sys 83B3682CE922FB0F415734B26D9D6233
C:\Windows\System32\drivers\arc.sys E933401B392387F4BE34DE8BAF1722A7
C:\Windows\System32\drivers\arcsas.sys 07CA323EF2E8247A568AB0F3662AD644
C:\Windows\system32\DRIVERS\asyncmac.sys 74DBAEC35366C4EE7670428808715A6A
C:\Windows\System32\drivers\atapi.sys A721FF570C2387E383BDDEA9632863C9
C:\Windows\System32\drivers\bxvbda.sys 87AB5BB072A3F128541D5B815F82FFDD
C:\Windows\System32\drivers\BasicDisplay.sys 81703BC5D68DEDBB086C2368FBE7B334
C:\Windows\System32\drivers\BasicRender.sys 5EC68164E14D25675C98BBB5F09E8606
C:\Windows\System32\Drivers\Beep.sys 9E7AEA59776D904607985AFFE7E5E183
C:\Windows\System32\DRIVERS\bowser.sys B17AC10B47C7FCB44D22A1F06415840E
C:\Windows\System32\drivers\BthAvrcpTg.sys 6695200F455E251F0BCC9CE4D0978D59
C:\Windows\System32\drivers\bthhfenum.sys 616EB8748C988AEE98D93DA141C3D3B4
C:\Windows\System32\drivers\BthHFHid.sys DCB4EBD928A6FB368BE6CAE522412DE1
C:\Windows\System32\drivers\bthmodem.sys 033916CE8784A848B9A3D686B7F66D97
C:\Windows\System32\DRIVERS\cdfs.sys 990B1BABE6E81FB18E65A87EBEFB1772
C:\Windows\System32\drivers\cdrom.sys 339BFF85D788268752DA8C9644B188EE
C:\Windows\System32\drivers\circlass.sys F64B7D1A37CC1D5F421D5359EEC81E2E
C:\Windows\System32\drivers\CLFS.sys 94250D5AE3E7269DB29BCF96E07F21A6
C:\Windows\System32\drivers\CmBatt.sys 2DC8538A2260647484A6C921CA837313
C:\Windows\System32\Drivers\cng.sys 45845AF69F92DEA0347168DFC6FA917B
C:\Windows\System32\drivers\CompositeBus.sys 0E5B1E9E7122EDAAF1F6CE047965CA92
C:\Windows\System32\drivers\condrv.sys D9CB0782AF819548072AA45B70F8B22D
C:\Windows\System32\drivers\dam.sys FAEF4C245BE832DB41B15DAAC336AFB7
C:\Windows\System32\Drivers\dfsc.sys 431141C6859990824D17F71C30A78728
C:\Windows\System32\drivers\discache.sys 3C736FAE17BA6F91BA37594AAB139CD0
C:\Windows\System32\drivers\disk.sys AE3786294CC246A5403783E1B86A0168
C:\Windows\System32\drivers\dmvsc.sys 82A7C72593793FE1EADA7A305BD1567A
C:\Windows\system32\drivers\drmkaud.sys 9C7C183F937951AE17C5B8B3259CF3FF
C:\Windows\System32\drivers\dxgkrnl.sys E6AF4DF1817953D73C519B17CF849756
C:\Windows\System32\drivers\evbda.sys 5AB97B3282D7D6114949D1EB5C8598E4
C:\Windows\System32\drivers\EhStorClass.sys 66D60BD9A4C05616ABECA2A901475098
C:\Windows\System32\drivers\EhStorTcgDrv.sys A61D0F543024E458C0FE32352E1978E2
C:\Windows\System32\drivers\errdev.sys D790D058D67582DB9C84C2D33695FE6B
C:\Windows\System32\Drivers\exfat.sys 7A4D6FEB8C52B3FE855E4DCDF9107E03
C:\Windows\System32\Drivers\fastfat.sys 60996602A7111FD2D086E803F33E4282
C:\Windows\System32\drivers\fdc.sys 73B2D11DF0B6E03A0CB0323218ACB3E4
C:\Windows\System32\drivers\fileinfo.sys 88A9EBACD1058ABB237A6B4E96E7F397
C:\Windows\System32\drivers\filetrace.sys 9E4EE3A0B00FF7D5F42A4AF9744CBA02
C:\Windows\System32\drivers\flpydisk.sys B1D4C168FF7B8579E3745888658FFB1D
C:\Windows\System32\drivers\fltmgr.sys B33EC133AE4E6C1881D2302D93D2467D
C:\Windows\System32\drivers\FsDepends.sys A5F7873A39E4E9FAAAE59B7E9E36B705
C:\Windows\System32\Drivers\Fs_Rec.sys A6DD7D491F587F4BC13FB972977DC8E8
C:\Windows\System32\DRIVERS\fvevol.sys C1646A95EAC515F60CDB2A7A8A013C1E
C:\Windows\System32\drivers\FwLnk.sys 40A5690A50D003429E6AF655D765AAF4
C:\Windows\System32\drivers\fxppm.sys A969D92973DFA895E7776B4BFE36DBB2
C:\Windows\System32\drivers\gagp30kx.sys 52BC441E07A827EBAB70CDC7EAEDB28D
C:\Windows\System32\drivers\vmgencounter.sys 721F8EEF5E9747F32670DEFF7FB92541
C:\Windows\System32\Drivers\msgpioclx.sys FC2B8B06BDBD3B6457F5A3DA9AD2410E
C:\Windows\system32\drivers\HdAudio.sys 630555943E5A3FE21010CE91EC7FC84F
C:\Windows\System32\drivers\HDAudBus.sys 58CC013EFA9893057160EDA018D8ADCE
C:\Windows\System32\drivers\HidBatt.sys 3F76BBA53D65E85A7F53E7A71082082C
C:\Windows\System32\drivers\hidbth.sys 085F150D002B7F0153D3C06DDF33A143
C:\Windows\System32\drivers\hidi2c.sys CC4A07E51D89575CAB6F4EB590D87CD4
C:\Windows\System32\drivers\hidir.sys DC96F7DACB777CDEAEF9958A50BFDA06
C:\Windows\System32\drivers\hidusb.sys 012C354B4AB48E9A7A657DF39E3A2073
C:\Windows\System32\drivers\HpSAMD.sys 64DB7A8D97CA53DCCF93D0A1E08342CF
C:\Windows\System32\drivers\HTTP.sys 258A9103842E36CD27D07D5A1F6D2A23
C:\Windows\System32\drivers\hwpolicy.sys 2A98301068801700906C06649860FE94
C:\Windows\System32\drivers\hyperkbd.sys DC76901D82097C9E297F20C287CB9A27
C:\Windows\system32\DRIVERS\HyperVideo.sys 716413AB3CA12DE0A7222D28C1C9352C
C:\Windows\System32\drivers\i8042prt.sys C9E9CBF73AFFBFE3E801EFB516787BA3
C:\Windows\System32\drivers\iaStorA.sys 57CD95DEB3529181BCC931DD2DFB2341
C:\Windows\System32\drivers\iaStorV.sys 5E394EBD26FD68AA9300332C46BEDD62
C:\Windows\system32\DRIVERS\igdkmd64.sys C63C32080615F49A4B8CA50523D6AA59
C:\Windows\System32\drivers\iirsp.sys 24847A06B84339FEEDE5CABF3D27D320
C:\Windows\system32\drivers\RTKVHD64.sys 9FEAC097F98F883D0A389C1C36C5DFBD
C:\Windows\system32\DRIVERS\IntcDAud.sys F5495B38BFB9149925F54F65AB40EFBF
C:\Windows\System32\drivers\intelide.sys 4F37726CF764CA18A8A84F85EF3A7F24
C:\Windows\System32\drivers\intelppm.sys E15CDF68DD73423F15D4AC404793AF0D
C:\Windows\System32\DRIVERS\ipfltdrv.sys 8FCA66234A0933D796BB780B7953BAB9
C:\Windows\System32\drivers\IPMIDrv.sys A4071DA3AE419F9694BFCB267C7DB8D7
C:\Windows\System32\drivers\ipnat.sys 3969B9C218DD3FAA9F4ED2FFC3651C02
C:\Windows\System32\drivers\irenum.sys 25CD7C4BB2863FFC2B0B311F0AEBF77C
C:\Windows\System32\drivers\isapnp.sys D940C5BB9DC92E588533C19ABCC3D2C2
C:\Windows\System32\drivers\msiscsi.sys E6530FD4F61B40F338BF4355A21B9A09
C:\Windows\System32\drivers\kbdclass.sys 8FBD94B69D6423E20ABCD59D86368B21
C:\Windows\System32\drivers\kbdhid.sys E88C932ABDF8185A62C8F2FC7B051FB6
C:\Windows\system32\DRIVERS\kdnic.sys FB6C185092E18011EF49989425C2AA87
C:\Windows\System32\Drivers\ksecdd.sys 559A933F5647A7A2783C8A0C6CB0514C
C:\Windows\System32\Drivers\ksecpkg.sys A01C9741FD25D87D9E2609A9B1C914C4
C:\Windows\system32\drivers\ksthunk.sys 81492FEEBF2F26455B00EE8DBAE8A1B0
C:\Windows\system32\DRIVERS\L1C63x64.sys 917D9184F4D40A64410832CF68AC0508
C:\Windows\system32\DRIVERS\lltdio.sys CEEFD29FC551F289810B0B9381B321DC
C:\Windows\System32\drivers\lsi_sas.sys 022CDD12161B063D7852B1075BF3FFF2
C:\Windows\System32\drivers\lsi_sas2.sys 07AD59D669B996F29F91817F0ECFA34F
C:\Windows\System32\drivers\lsi_scsi.sys 216FB796AA4E252ACCE93B1BCB80B5EC
C:\Windows\System32\drivers\lsi_sss.sys 5E80530AF37102488EE980B4A92AF99F
C:\Windows\system32\drivers\luafv.sys 2BDC5D711FA61307CE6190D47C956368
C:\Windows\System32\drivers\megasas.sys 9B0D829C3BE4E7472DB9DD2B79908E3C
C:\Windows\System32\drivers\MegaSR.sys ECC3F54C7AFC318271C4F0B4606D8DB0
C:\Windows\System32\drivers\HECIx64.sys 772A1DEEDFDBC244183B5C805D1B7D85
C:\Windows\System32\drivers\modem.sys 780098AD5DA8A4822E2563984C85EF7B
C:\Windows\System32\drivers\monitor.sys EA8EAD3F5B762F889CC7F3966625B48B
C:\Windows\System32\drivers\mouclass.sys 618446B98C79776654340CE27C73485E
C:\Windows\System32\drivers\mouhid.sys C0ADEBED913295803B579ED288936CBB
C:\Windows\System32\drivers\mountmgr.sys E7E9DBFDD3F25ED0C05B99AE9FA18BDE
C:\Windows\System32\drivers\mpsdrv.sys 4CCBBD4944777CA100B9A6C2F149A46F
C:\Windows\system32\drivers\mrxdav.sys 25560C1656DC7F0723A0CC0B0E1C6BED
C:\Windows\System32\DRIVERS\mrxsmb.sys 6BA2A5D1C74E7CB3AFAF301A7E5D9E44
C:\Windows\System32\DRIVERS\mrxsmb10.sys 7E86B45D5F84E0F96AE18BEAC7A51EE4
C:\Windows\System32\DRIVERS\mrxsmb20.sys 1BB4582396718EDEFF8A4493AEF67D66
C:\Windows\system32\DRIVERS\bridge.sys 98487487D6B3797CA927E9D7B030AE13
C:\Windows\System32\Drivers\Msfs.sys 3886F1F2A4D2900ABAA7E4486BEEE6A2
C:\Windows\System32\drivers\msgpiowin32.sys C32A7A39B960A42BA9D4FBE47213CA03
C:\Windows\System32\drivers\mshidkmdf.sys D3857A767B91A061B408CCAB02DA4F40
C:\Windows\System32\drivers\mshidumdf.sys 839B48910FB1E887635C48F3EC11A05E
C:\Windows\System32\drivers\msisadrv.sys 55C0DB741E3AB7463242B185B1C2997C
C:\Windows\system32\drivers\MSKSSRV.sys 509809566E49F4411055864EA8D437CD
C:\Windows\system32\DRIVERS\mslldp.sys 63145201D6458E4958E572E7D6FC2604
C:\Windows\system32\drivers\MSPCLOCK.sys 99D526E803DB6D7FF290FD98B6204641
C:\Windows\system32\drivers\MSPQM.sys 06FA77C3E2A491ADCD704C5E73006269
C:\Windows\System32\Drivers\MsRPC.sys E134EC4DE11CF78CB01432D180710D84
C:\Windows\System32\drivers\mssmbios.sys B5AECF12F09DEE97C9FCAA5BA016CE1E
C:\Windows\system32\drivers\MSTEE.sys 72D66A05E0F99F2528F6C6204FD22AA1
C:\Windows\System32\drivers\MTConfig.sys 8AAAE399FC255FA105D4158CBA289001
C:\Windows\System32\Drivers\mup.sys 3BCB702F3E6CC622DCAFCAA45D7CDE0A
C:\Windows\System32\drivers\mvumis.sys 3A1E095277BBD406CEA8EA6B76950664
C:\Windows\system32\DRIVERS\nwifi.sys 43D7388A90A4C6EA346A4D6FF0377479
C:\Windows\System32\drivers\ndis.sys A10E176F3B2BF83EDE7B5C4658C93B66
C:\Windows\system32\DRIVERS\ndiscap.sys 39C8A1D9D46F5E83A016BCAB72455284
C:\Windows\system32\DRIVERS\NdisImPlatform.sys 762941932B7E4C588E48A577BA9D6440
C:\Windows\system32\DRIVERS\ndistapi.sys 7A6F8A6D0E01432EBA294EF29CDD0FA7
C:\Windows\system32\DRIVERS\ndisuio.sys 79AB68BB3FFF974AD4F41FA559F4EC67
C:\Windows\system32\DRIVERS\ndiswan.sys 62C7DBF4F9301F76CF87D4B9D8F57BF8
C:\Windows\system32\DRIVERS\ndiswan.sys 62C7DBF4F9301F76CF87D4B9D8F57BF8
C:\Windows\System32\Drivers\NDProxy.sys 3730942D7DB2F8BB5F84542B7FF6F650
C:\Windows\System32\drivers\Ndu.sys D3F60A4345FCA9C1BE68AD7D0D6DE770
C:\Windows\System32\DRIVERS\netbios.sys 7C203A76394F9AE68F69EEE5F9612C4A
C:\Windows\System32\DRIVERS\netbt.sys 7CEC25C682D319D484630B3952C31A11
C:\Windows\System32\drivers\nfrd960.sys 12DD2800E4EEA37DC9AE256AD62423B4
C:\Windows\System32\Drivers\Npfs.sys 17E19A742FB30C002F8B43575451DBE1
C:\Windows\System32\drivers\npsvctrig.sys 8ED299C30792544264E558BEA79F0947
C:\Windows\System32\drivers\nsiproxy.sys 689B3B1E95C70ABF7AFF29F9406EF1E0
C:\Windows\System32\Drivers\Ntfs.sys 7BE3EDFFA3216F989A6BDCB14795DD08
C:\Windows\System32\Drivers\Null.sys 4163ADE07DB51843AE31F65B94F5398D
C:\Windows\System32\drivers\nvraid.sys D6D34118263412D3AAA8348A9572B7F2
C:\Windows\System32\drivers\nvstor.sys 27AFC428D1D32ABD04A86763A4EDDEA9
C:\Windows\System32\drivers\nv_agp.sys 051CFB5107BAAE510419BDC41F8C4036
C:\Windows\System32\drivers\parport.sys 4563DAF8C6A740AD7F501E219BD10766
C:\Windows\System32\drivers\partmgr.sys D6ACCF9F2EEEEA711C14EFD976E573F3
C:\Windows\System32\drivers\pci.sys 4A003E8F718C1E6A2050CA98CD53E3E2
C:\Windows\System32\drivers\pciide.sys F9908D274D458220F91E89B54D78D837
C:\Windows\System32\drivers\pcmcia.sys 84D19CB6102627932DCB5DFDF89FE269
C:\Windows\System32\drivers\pcw.sys CEBBAD5391C2644560C55628A40BFD27
C:\Windows\System32\drivers\pdc.sys 0698DEDEAD6A00AD0D468C687D830FBF
C:\Windows\System32\drivers\peauth.sys 61FE70659CD43E07F94DA4DC31DEC493
C:\Windows\system32\DRIVERS\raspptp.sys 362D47E5B4D67270DE4B8606036F4ADD
C:\Windows\System32\drivers\processr.sys DD979EB6A7212F60E4AFBE96EDC7AE6D
C:\Windows\system32\DRIVERS\pacer.sys EB8034147D4820CD31BFCB11A2A652DF
C:\Windows\system32\drivers\qwavedrv.sys 13D47BB0CCA2FC51BD15F8E85C6A078E
C:\Windows\System32\DRIVERS\rasacd.sys 873C60F8178100557740A832FCE10B5F
C:\Windows\system32\DRIVERS\AgileVpn.sys 69B93F623B130976243ECA3D84CC99CA
C:\Windows\system32\DRIVERS\rasl2tp.sys A14D625C5AEE5FFE0F47D1A1D419FAAE
C:\Windows\system32\DRIVERS\raspppoe.sys 00695B9C2DB6111064499C529E90C042
C:\Windows\system32\DRIVERS\rassstp.sys A7F24D8CD1956B0A1FDCB86CC5114DE4
C:\Windows\System32\DRIVERS\rdbss.sys CA03D642ACE58E1BA54E4B383F91CD69
C:\Windows\System32\drivers\rdpbus.sys CA7DF5EC95D8DE0DD24BE7FF97369F68
C:\Windows\System32\drivers\rdpdr.sys B2A3AD74FF2E2FFA73AF2567108231B3
C:\Windows\System32\drivers\rdpvideominiport.sys 57F4787E4602A3FCA719C0A33137C6DA
C:\Windows\System32\Drivers\RDPWD.sys B3CB0721E81E30419CE7D837EF4EA151
C:\Windows\System32\drivers\rdyboost.sys 62C1F8A0685FE07E998AA296C4F697C4
C:\Windows\system32\DRIVERS\rspndr.sys E04E770DD198B9399640717145E79EBF
C:\Windows\System32\DRIVERS\rspSanity64.sys 68F242EA45FF2AAC1012A9765A97DC7D
C:\Windows\System32\Drivers\RtsUVStor.sys 8EB6DCEB7473C232D8BC9A886E3183AC
C:\Windows\system32\DRIVERS\rtwlane.sys 0157E747F432BF4FA9D1BCFDE7A26DD8
C:\Windows\system32\DRIVERS\rtwlane.sys 0157E747F432BF4FA9D1BCFDE7A26DD8
C:\Windows\System32\drivers\vms3cap.sys 752EC7DCD2F96871A3857EEE6AFE965A
C:\Windows\System32\drivers\sbp2port.sys 9C7B28CE0D136DB226E24DB3BC817F92
C:\Windows\System32\DRIVERS\scfilter.sys 5D7733A12756B267FCA021672B26BC9E
C:\Windows\System32\drivers\sdbus.sys F58B030A0664385C707B8C1C63682041
C:\Windows\System32\drivers\sdstor.sys BB107AA9980B0DA4E19A3A90C3BD4460
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\WINDOWS\system32\drivers\semav6msr64.sys 7D84A4ED0FCCA3D098881A3F3283724B
C:\Windows\System32\drivers\SerCx.sys 87C46B239A7EEF30FDFDD5E9BD46130C
C:\Windows\System32\drivers\serenum.sys 7A1F9347C85FD55E39B8A76B3A25C5AD
C:\Windows\System32\drivers\serial.sys F640A0A218BBF857F1D04A15D7D939F6
C:\Windows\System32\drivers\sermouse.sys F1A5F56B2620B862CC28FF96A0A6DAAB
C:\Windows\System32\drivers\sfloppy.sys 7EE65419B29302C795714FF8073969A1
C:\Windows\System32\drivers\SiSRaid2.sys 2560721D6F16D5B611C36A3A9D28C1B2
C:\Windows\System32\drivers\sisraid4.sys 3AA8FDE1DBF65BB8B88B053529554A0D
C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys 4A2972573225A2DE4DEC0AD68529DF0F
C:\Windows\System32\drivers\spaceport.sys 9110193D93960E38B8692E4519C75D72
C:\Windows\System32\drivers\SpbCx.sys 3D8679C8DF52EB26EB7583A4E0A29202
C:\Windows\System32\DRIVERS\srv.sys 0F1FCD575A03ABDE13FCA9D0ADE4DDA6
C:\Windows\System32\DRIVERS\srv2.sys B56A855B23676CCE05B626C6037FD02F
C:\Windows\System32\DRIVERS\srvnet.sys 78E9665C8DC59106D133CBEF0F0C3DE3
C:\Windows\System32\drivers\stexstor.sys 4E85355B94CFCB67C135F6521A4895A7
C:\Windows\System32\drivers\storahci.sys B240874B2CA0CD02E8CD11E140B14C57
C:\Windows\System32\DRIVERS\vmstorfl.sys F74DBC95A57B1EE866D3732EB5F79BE2
C:\Windows\System32\drivers\storvsc.sys 543CD3CC0E05B8D8815E0D4F040B6F59
C:\Windows\System32\drivers\swenum.sys 4AFD66AAE74FFB5986BC240744DC5FC9
C:\Windows\system32\DRIVERS\SynTP.sys 157DFCD1E83E964A5074742AE2DFA0C1
C:\Windows\System32\drivers\tcpip.sys 2AE9136724568DB4F08BC04F131CFC54
C:\Windows\system32\DRIVERS\tcpip.sys 2AE9136724568DB4F08BC04F131CFC54
C:\Windows\System32\drivers\tcpipreg.sys 8F2A13A5DF99D72FDDE87F502A66F989
C:\Windows\system32\DRIVERS\tdcmdpst.sys 58480A57ACF2671C343FD1D4BA990E34
C:\Windows\system32\DRIVERS\tdx.sys 73DC722CE5DF26D7638CE2446F2655C7
C:\Windows\System32\drivers\terminpt.sys F7C8AB5D8AFFAA318D6A21093D139BF4
C:\Windows\System32\DRIVERS\THAccel.sys C028AE1560FEA74BEAB225D2E27C3E47
C:\Windows\System32\drivers\Thotkey.sys 16E745743BABAF480B7718442F38B076
C:\Windows\System32\drivers\tos_sps64.sys 36391C3953D191A2AF4556D5D706C641
C:\Windows\system32\drivers\tpm.sys E94F7A7B48C7638D1F3F8089344C97B7
C:\Windows\System32\drivers\tsusbflt.sys 4E7C5FB10A50435523DE0CAA37DE2BD3
C:\Windows\System32\drivers\TsUsbGD.sys 16D684A820872EE54F6370703AC0B513
C:\Windows\system32\DRIVERS\tunnel.sys 78C9EE193AC2B4CBDBC48B620314D740
C:\Windows\System32\drivers\TVALZ_O.SYS 54BDBF3D4DED58DA78B702471C68D4CA
C:\Windows\system32\DRIVERS\TVALZFL.sys 55A9A23DD64EB7781FCAB565B028CD0E
C:\Windows\System32\drivers\uagp35.sys 6D4F67CA56ACA2085DFA2CD89EAFBC1A
C:\Windows\System32\drivers\uaspstor.sys 6FD6D03B7752C78712E5CFF29A305026
C:\Windows\System32\drivers\ucx01000.sys 061BA3EE0D2BE17944990544008CF190
C:\Windows\System32\DRIVERS\udfs.sys 25C50F4EDF70D0A831E0566BD181CCF2
C:\Windows\System32\drivers\uliagpkx.sys 07FEBCDF24FABA0D47B635D85A0FFB7A
C:\Windows\System32\drivers\umbus.sys 02CEB3FE6152668A7BA420B93B664860
C:\Windows\System32\drivers\umpass.sys 991EE6B5FC41EAEF99C8AF5B92F2CA09
C:\Windows\System32\drivers\usbccgp.sys C976C4306F9AE133D6BBD47FDFC3BF92
C:\Windows\System32\drivers\usbcir.sys 427B6DB8C05A5A977E8C3525370A2595
C:\Windows\System32\drivers\usbehci.sys B24FDEB1B18496F1B463782235AA3AF1
C:\Windows\System32\drivers\usbhub.sys F8C2A832DF9403F5EA8080CBDBDA95FB
C:\Windows\System32\drivers\UsbHub3.sys FAAB461D5AEB21EE5FC5C0DBD6648223
C:\Windows\System32\drivers\usbohci.sys 325F6179009B5A7F6118951A5BA422AB
C:\Windows\System32\drivers\usbprint.sys 9FDBA6982582A6F2354144980F641E7B
C:\Windows\System32\drivers\USBSTOR.SYS BFC7FE4AAEB61317A921871B4085EF4B
C:\Windows\System32\drivers\usbuhci.sys 1ABF657259DB57F7E5558E4DF1357C0C
C:\Windows\System32\Drivers\usbvideo.sys 9EF7C01D3ACCBC243B5CB1A95865B2FF
C:\Windows\System32\drivers\USBXHCI.SYS 8DC398D7B8E02C929A2096E74A170970
C:\Windows\System32\drivers\vdrvroot.sys BACECBFF9C97F7627A60B0E0F1FE7EE8
C:\Windows\System32\drivers\VerifierExt.sys 74FA2D4368DE6F6CE14393EDF1F342BE
C:\Windows\System32\drivers\vhdmp.sys D4051AA2ACD38AABF9DEC24B8A331EB1
C:\Windows\System32\drivers\viaide.sys F5B4A14B00E89250C50982AC762DDD1D
C:\Windows\System32\drivers\vmbus.sys 78DB50F7329F6D1311658DABFFFC8BE0
C:\Windows\System32\drivers\VMBusHID.sys ECFEE2F2BA3932C7880D1A8F67D68F91
C:\Windows\System32\drivers\volmgr.sys CB60FAAED8B49B812EBBF77EB87D9B18
C:\Windows\System32\drivers\volmgrx.sys A74101DA9809251BCD0E5A26BAE0F824
C:\Windows\System32\drivers\volsnap.sys AA37946941ED3805AB3A924965907147
C:\Windows\System32\drivers\vpci.sys A8DA1C1B52ECEA3726DEBED4FF1B700D
C:\Windows\System32\drivers\vsmraid.sys 38A60CD9C009C55C6D3B5586F8E6A353
C:\Windows\System32\drivers\vstxraid.sys A0F6FE0FC2F647C22BBFD6BD4249DBCC
C:\Windows\System32\drivers\vwifibus.sys 62460A45435A26A334907E3F2EA45611
C:\Windows\system32\DRIVERS\vwififlt.sys 095E943D27025E4D588AF0A72CC2318F
C:\Windows\system32\DRIVERS\vwifimp.sys 73FA1A41A97A5C34ADC03B3577FF1A86
C:\Windows\System32\drivers\wacompen.sys 6B806E893714019969E2B50D7EF6A4D9
C:\Windows\system32\DRIVERS\wanarp.sys 61F6972FF9AC9A8D0B4D62076DC30051
C:\Windows\system32\DRIVERS\wanarp.sys 61F6972FF9AC9A8D0B4D62076DC30051
C:\Windows\System32\drivers\wd.sys B3A4D918DAB90505B6BC7B70632913CB
C:\Windows\System32\drivers\WdBoot.sys 5A416C253D2C50327928ABC4A1D8A0F2
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\drivers\WdFilter.sys 6FBA6CD2348DEC440D0C6D511C55F3FE
C:\Windows\System32\DRIVERS\wfplwfs.sys 8FDA12E934C7BB7CC317F90FC70DC4FC
C:\Windows\System32\drivers\wimmount.sys A3C7624A42A3447EF5EDD1ED37FE4E60
C:\Windows\System32\drivers\WinUsb.sys BB20956C424531003F7FA6CD36F11D5D
C:\Windows\System32\drivers\wmiacpi.sys E2A596CACFC6504306CDB7B593B90084
C:\Windows\System32\DRIVERS\wpcfltr.sys C6FF953D5D6F2EAE3B8883474D5076B3
C:\Windows\System32\drivers\WpdUpFltr.sys 0346CAFC181C91C6E2330332EB332ED6
C:\Windows\system32\drivers\ws2ifsl.sys BC8B5CB336E63BB25EAD1CE8EDD34B81
C:\Windows\System32\drivers\WSDPrint.sys 74EFDA0526862C3D8D01A776182798EA
C:\Windows\System32\drivers\WSDScan.sys FA07DF46070F0826139709EF4D31FB71
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\drivers\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\system32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\System32\drivers\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-26 21:42 - 2015-07-26 21:43 - 00281624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-07-26 21:16 - 2015-07-26 21:16 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\LolClient
2015-07-26 20:07 - 2015-07-26 21:02 - 161809382 _____ C:\Users\kaichou\Desktop\[HorribleSubs] Shokugeki no Soma - 01 [480p].mkv
2015-07-26 20:07 - 2015-07-26 21:00 - 162078551 _____ C:\Users\kaichou\Desktop\[HorribleSubs] Shokugeki no Soma - 02 [480p].mkv
2015-07-26 18:18 - 2015-07-26 18:20 - 10215144 _____ C:\Users\kaichou\Desktop\HSS-4.15.3-install-plain-701-plain.exe
2015-07-26 17:16 - 2015-07-26 17:16 - 00899072 _____ (Farbar) C:\Users\kaichou\Desktop\FSS.exe
2015-07-26 17:13 - 2015-07-26 17:13 - 01114112 _____ C:\Users\kaichou\Desktop\ipv6 tunnels.msi
2015-07-26 17:12 - 2015-07-26 17:12 - 01112064 _____ C:\Users\kaichou\Desktop\MicrosoftFixit50409.msi
2015-07-26 16:52 - 2015-07-26 16:53 - 01650688 _____ (Farbar) C:\Users\kaichou\Desktop\FRST.exe
2015-07-26 09:18 - 2015-07-26 21:40 - 00291809 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-26 04:48 - 2015-07-26 04:48 - 00002800 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-07-26 03:19 - 2015-07-26 03:19 - 00000000 ____D C:\WINDOWS\pss
2015-07-26 02:40 - 2015-07-26 02:32 - 00000350 _____ C:\Users\kaichou\Desktop\Resume MapleStory Downloader.url
2015-07-26 02:36 - 2015-07-26 02:36 - 00000000 ____D C:\Users\kaichou\Desktop\MapleStory
2015-07-26 01:28 - 2015-07-26 01:28 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-07-26 01:27 - 2015-07-26 01:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-07-26 01:27 - 2015-07-26 01:27 - 00000000 ____D C:\Riot Games
2015-07-26 00:36 - 2015-07-26 01:28 - 00000000 __SHD C:\AI_RecycleBin
2015-07-26 00:34 - 2015-07-26 10:00 - 00000894 _____ C:\Users\kaichou\Desktop\Rkill.txt
2015-07-25 22:10 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-07-25 22:10 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-07-25 22:10 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-07-25 22:10 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-07-25 22:10 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-07-25 22:10 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-07-25 22:09 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-07-25 22:09 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-07-25 22:07 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2015-07-25 22:06 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-07-25 22:06 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2015-07-25 22:05 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-07-25 22:05 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-07-25 22:04 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-07-25 22:04 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-07-25 22:03 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-07-25 22:03 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-07-25 22:02 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-07-25 22:02 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-07-25 22:02 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-07-25 22:02 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-07-25 22:01 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-07-25 22:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-07-25 22:01 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-07-25 22:01 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-07-25 22:01 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-07-25 22:00 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-07-25 22:00 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-07-25 22:00 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-07-25 22:00 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-07-25 21:59 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-07-25 21:59 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-07-25 21:59 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-07-25 21:59 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-07-25 21:59 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-07-25 21:58 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-07-25 21:58 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-07-25 21:58 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-07-25 21:58 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-07-25 21:58 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-07-25 21:58 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-07-25 21:58 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-07-25 21:58 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-07-25 21:58 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-07-25 21:57 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-07-25 21:57 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-07-25 21:57 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-07-25 21:57 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-07-25 21:56 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-07-25 21:56 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-07-25 21:56 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-07-25 21:56 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-07-25 21:55 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-07-25 21:55 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-07-25 21:55 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-07-25 21:54 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-07-25 21:54 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-07-25 21:54 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-07-25 21:54 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-07-25 21:53 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-07-25 21:53 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-07-25 21:53 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-07-25 21:53 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-07-25 21:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-07-25 21:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-07-25 21:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-07-25 21:50 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-07-25 21:50 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-07-25 21:50 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-07-25 21:50 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-07-25 21:49 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-07-25 21:49 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-07-25 21:49 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-07-25 21:49 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-07-25 21:48 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-07-25 21:48 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-07-25 21:48 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-07-25 21:48 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-07-25 21:47 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-07-25 21:46 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-07-25 21:46 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-07-25 21:46 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-07-25 21:44 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-07-25 21:44 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-07-25 21:44 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-07-25 21:43 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-07-25 21:43 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-07-25 21:43 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-07-25 21:43 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-07-25 21:43 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-07-25 21:42 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-07-25 21:42 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-07-25 21:42 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-07-25 21:42 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-07-25 21:42 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-07-25 21:42 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-07-25 21:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-07-25 21:41 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-07-25 21:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2015-07-25 21:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-07-25 21:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-07-25 21:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-07-25 21:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-07-25 21:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-07-25 21:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-07-25 21:39 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-07-25 21:39 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2015-07-25 21:39 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-07-25 21:39 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-07-25 21:39 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-07-25 21:39 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-07-25 21:38 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-07-25 21:38 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-07-25 21:37 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-07-25 21:37 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-07-25 21:37 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-07-25 21:37 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-07-25 21:37 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-07-25 21:37 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-07-25 21:37 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-07-25 21:36 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-07-25 21:36 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-07-25 21:36 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-07-25 21:35 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-07-25 21:35 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-07-25 21:35 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-07-25 21:35 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-07-25 21:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-07-25 21:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-07-25 21:31 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-07-25 21:31 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-07-25 21:30 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-07-25 21:30 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-07-25 21:30 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-07-25 21:30 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-07-25 21:30 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-07-25 21:30 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-07-25 21:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-07-25 21:29 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-07-25 21:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-07-25 21:29 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-07-25 21:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-07-25 21:29 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-07-25 21:28 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-07-25 21:28 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-07-25 21:28 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-07-25 21:28 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-07-25 20:12 - 2015-07-25 20:29 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-07-25 20:10 - 2015-07-25 22:12 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-07-25 20:00 - 2015-07-25 20:16 - 191177814 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 15 [480p].mkv
2015-07-25 18:07 - 2015-07-25 18:18 - 203758249 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 12 [480p].mkv
2015-07-25 17:10 - 2015-07-25 17:10 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\MPC-HC
2015-07-25 15:51 - 2015-07-25 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-07-25 15:50 - 2015-07-25 15:52 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2015-07-25 07:59 - 2014-07-08 15:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2015-07-25 07:59 - 2014-06-17 16:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-07-25 07:59 - 2014-06-11 07:47 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2015-07-25 07:59 - 2014-06-10 21:40 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-07-25 07:59 - 2014-06-10 15:44 - 01403896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-07-25 07:59 - 2014-02-04 03:57 - 01271664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-07-25 07:58 - 2014-07-08 15:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-07-25 07:58 - 2014-07-06 22:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-07-25 07:58 - 2014-07-06 22:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-07-25 07:58 - 2014-07-04 03:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2015-07-25 07:58 - 2014-06-28 00:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-07-25 07:58 - 2014-06-27 23:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-07-25 07:58 - 2014-06-17 16:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-07-25 07:57 - 2014-07-11 21:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2015-07-25 07:57 - 2014-07-11 21:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2015-07-25 07:57 - 2014-07-11 21:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2015-07-25 07:57 - 2014-07-11 21:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2015-07-25 07:57 - 2014-07-11 21:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2015-07-25 07:57 - 2014-07-11 21:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2015-07-25 07:57 - 2014-07-11 21:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2015-07-25 07:57 - 2014-07-08 15:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2015-07-25 07:57 - 2014-07-08 15:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2015-07-25 07:56 - 2014-07-11 21:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2015-07-25 07:56 - 2014-07-11 21:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2015-07-25 07:56 - 2014-07-11 21:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2015-07-25 07:56 - 2014-07-11 21:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2015-07-25 07:56 - 2014-07-11 21:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2015-07-25 06:23 - 2015-07-25 21:46 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2015-07-25 05:23 - 2015-03-04 00:26 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe
2015-07-25 05:23 - 2015-03-04 00:26 - 00467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2015-07-25 05:23 - 2015-03-04 00:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2015-07-25 05:23 - 2015-03-03 23:41 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-07-25 05:23 - 2015-03-03 23:41 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-25 05:23 - 2015-03-03 21:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-07-25 05:23 - 2015-03-03 21:53 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-25 05:23 - 2014-10-21 18:01 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-07-25 05:23 - 2014-10-21 18:00 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-25 02:51 - 2015-07-13 14:22 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-25 02:51 - 2015-07-13 14:22 - 00177632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-25 01:23 - 2015-07-25 01:23 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-25 01:23 - 2015-07-25 01:23 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-24 12:49 - 2014-10-08 21:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-07-24 12:49 - 2014-10-08 21:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-07-24 12:49 - 2014-10-08 21:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-07-24 12:49 - 2014-10-08 20:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-07-24 12:49 - 2014-10-08 20:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-07-24 08:00 - 2015-01-08 23:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-07-24 08:00 - 2015-01-08 22:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-07-24 07:37 - 2015-04-30 06:07 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-24 07:37 - 2015-04-30 06:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-24 07:24 - 2014-07-15 15:51 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2015-07-24 06:49 - 2015-07-24 06:49 - 27457024 _____ C:\WINDOWS\system32\SETB854.tmp
2015-07-24 01:36 - 2015-07-24 01:51 - 00000000 ____D C:\EEK
2015-07-24 00:12 - 2013-06-01 04:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-07-24 00:12 - 2013-06-01 03:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-07-24 00:12 - 2013-06-01 02:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-07-24 00:12 - 2013-06-01 02:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-07-24 00:11 - 2013-06-01 02:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-07-24 00:11 - 2013-06-01 02:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-07-24 00:11 - 2013-06-01 02:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2015-07-24 00:11 - 2013-06-01 02:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2015-07-24 00:11 - 2013-06-01 02:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-07-24 00:11 - 2013-06-01 02:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-07-24 00:11 - 2013-05-24 15:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-07-24 00:10 - 2013-06-01 02:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2015-07-24 00:10 - 2013-06-01 02:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2015-07-24 00:10 - 2013-06-01 02:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2015-07-24 00:10 - 2013-06-01 02:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-07-24 00:10 - 2013-06-01 02:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2015-07-24 00:10 - 2013-06-01 02:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2015-07-24 00:10 - 2013-06-01 02:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2015-07-24 00:10 - 2013-05-31 20:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2015-07-24 00:10 - 2013-05-24 15:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-07-24 00:09 - 2013-06-16 15:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-07-24 00:08 - 2014-01-26 20:39 - 01939288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-07-24 00:07 - 2014-02-03 16:56 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-07-24 00:07 - 2014-02-03 16:56 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2015-07-24 00:07 - 2014-01-02 16:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2015-07-24 00:07 - 2014-01-02 16:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2015-07-24 00:06 - 2014-01-30 17:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-07-24 00:06 - 2014-01-30 17:06 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-07-24 00:05 - 2014-01-15 16:42 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2015-07-23 23:47 - 2014-03-24 16:42 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2015-07-23 23:47 - 2014-03-24 15:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2015-07-23 23:31 - 2013-09-19 00:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-07-23 23:31 - 2013-08-29 22:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2015-07-23 23:31 - 2013-08-29 22:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2015-07-23 23:30 - 2013-10-04 23:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2015-07-23 23:30 - 2013-08-29 16:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2015-07-23 23:30 - 2013-08-29 16:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2015-07-23 23:29 - 2014-06-04 18:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2015-07-23 23:29 - 2014-06-03 16:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2015-07-23 23:27 - 2014-09-12 23:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-07-23 23:27 - 2014-08-28 21:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-07-23 23:27 - 2014-08-28 21:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2015-07-23 23:27 - 2014-07-24 06:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2015-07-23 23:26 - 2014-08-28 21:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2015-07-23 23:25 - 2014-09-02 19:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2015-07-23 23:25 - 2014-09-02 19:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2015-07-23 23:25 - 2014-08-28 21:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2015-07-23 23:25 - 2014-08-27 23:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2015-07-23 23:25 - 2014-08-27 23:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-07-23 23:25 - 2014-08-27 22:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2015-07-23 23:25 - 2014-08-27 22:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-07-23 23:25 - 2014-08-27 22:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2015-07-23 23:25 - 2014-08-27 22:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2015-07-23 23:11 - 2013-07-24 16:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-23 23:11 - 2013-07-24 16:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-23 23:10 - 2013-08-29 22:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-07-23 23:10 - 2013-08-29 16:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-07-23 23:09 - 2013-08-29 22:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2015-07-23 23:09 - 2013-08-20 23:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2015-07-23 23:09 - 2013-08-09 23:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2015-07-23 23:08 - 2013-07-08 15:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-07-23 23:08 - 2013-07-02 17:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-23 23:08 - 2013-07-02 17:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-23 23:08 - 2013-06-28 23:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-07-23 23:07 - 2013-07-09 01:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2015-07-23 23:07 - 2013-07-08 15:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-07-23 23:07 - 2013-07-08 15:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2015-07-23 23:07 - 2013-07-02 17:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-07-23 23:07 - 2013-07-02 17:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-07-23 23:07 - 2013-06-30 15:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2015-07-23 23:07 - 2013-06-28 23:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-07-23 23:07 - 2013-06-25 20:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-07-23 23:07 - 2013-06-25 19:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2015-07-23 23:07 - 2013-06-24 15:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-07-23 23:07 - 2013-06-18 22:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2015-07-23 23:07 - 2013-06-18 22:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2015-07-23 23:07 - 2013-06-18 15:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2015-07-23 23:07 - 2013-06-18 15:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2015-07-23 23:07 - 2013-06-11 16:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-07-23 23:07 - 2013-06-06 01:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2015-07-23 23:06 - 2013-07-08 20:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2015-07-23 23:06 - 2013-07-08 15:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2015-07-23 23:06 - 2013-06-30 15:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2015-07-23 23:06 - 2013-06-11 16:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-07-23 22:42 - 2012-10-11 23:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2015-07-23 22:42 - 2012-10-11 22:39 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dskquota.dll
2015-07-23 22:40 - 2012-10-23 21:54 - 00396008 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-07-23 22:39 - 2012-10-16 21:32 - 01172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-07-23 22:39 - 2012-10-16 21:32 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2015-07-23 22:39 - 2012-10-16 20:57 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-07-23 22:39 - 2012-10-16 20:57 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2015-07-23 22:35 - 2012-10-11 00:47 - 00793200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-07-23 22:35 - 2012-10-10 22:46 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-07-23 22:35 - 2012-10-10 22:45 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2015-07-23 22:35 - 2012-10-10 22:07 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-07-23 22:34 - 2012-10-11 00:23 - 00441576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-07-23 22:34 - 2012-10-10 22:46 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2015-07-23 22:34 - 2012-10-10 22:42 - 00612416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-07-23 22:34 - 2012-10-10 22:07 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2015-07-23 22:33 - 2012-10-11 00:25 - 00056552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-07-23 22:33 - 2012-10-11 00:13 - 00033512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2015-07-23 22:33 - 2012-10-10 22:45 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2015-07-23 22:33 - 2012-10-10 22:44 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2015-07-23 22:33 - 2012-10-10 22:44 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2015-07-23 22:33 - 2012-10-10 22:43 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2015-07-23 22:33 - 2012-10-10 22:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2015-07-23 22:33 - 2012-10-10 22:07 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2015-07-23 22:33 - 2012-10-10 22:06 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2015-07-23 22:33 - 2012-10-10 22:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2015-07-23 22:33 - 2012-10-10 22:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2015-07-23 22:32 - 2012-10-10 22:44 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2015-07-23 22:32 - 2012-10-10 22:43 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2015-07-23 22:32 - 2012-10-10 22:23 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-pdc.dll
2015-07-23 22:32 - 2012-10-10 22:07 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-07-23 22:32 - 2012-10-10 22:06 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2015-07-23 22:32 - 2012-10-10 22:06 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2015-07-23 22:31 - 2012-10-10 22:43 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2015-07-23 22:31 - 2012-10-10 22:43 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2015-07-23 22:31 - 2012-10-10 22:05 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2015-07-23 22:30 - 2012-10-10 22:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2015-07-23 22:30 - 2012-10-10 22:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2015-07-23 22:30 - 2012-10-10 22:43 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2015-07-23 22:30 - 2012-10-10 22:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2015-07-23 22:29 - 2012-10-10 22:23 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdhebl3.dll
2015-07-23 22:29 - 2012-10-10 21:42 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdhebl3.dll
2015-07-23 16:59 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2015-07-23 16:59 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2015-07-23 16:59 - 2014-01-30 17:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-07-23 16:56 - 2013-03-02 01:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-07-23 16:56 - 2013-03-01 19:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-07-23 16:56 - 2012-12-14 21:55 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-07-23 16:56 - 2012-11-02 22:26 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysreset.exe
2015-07-23 16:56 - 2012-11-02 22:25 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\resetengmig.dll
2015-07-23 16:41 - 2013-10-30 22:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-07-23 16:41 - 2013-10-30 22:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2015-07-23 16:41 - 2013-10-30 21:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2015-07-23 16:41 - 2013-10-13 13:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2015-07-23 16:41 - 2013-08-26 22:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2015-07-23 16:41 - 2013-08-26 22:19 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2015-07-23 16:41 - 2013-08-26 15:29 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-07-23 16:41 - 2013-08-26 15:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-07-23 16:40 - 2013-10-30 20:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2015-07-23 16:40 - 2012-10-10 22:46 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2015-07-23 16:40 - 2012-10-10 22:44 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2015-07-23 16:40 - 2012-10-10 22:07 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2015-07-23 16:37 - 2013-02-02 01:38 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-07-23 16:37 - 2013-02-02 01:20 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-07-23 16:36 - 2013-02-02 01:40 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlroamextension.dll
2015-07-23 16:36 - 2013-02-02 01:40 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-07-23 16:36 - 2013-02-02 01:40 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-07-23 16:36 - 2013-02-02 01:40 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tasklist.exe
2015-07-23 16:36 - 2013-02-02 01:40 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskkill.exe
2015-07-23 16:36 - 2013-02-02 01:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskkill.exe
2015-07-23 16:36 - 2013-02-02 01:24 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\tasklist.exe
2015-07-23 16:36 - 2013-02-02 01:23 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2015-07-23 16:36 - 2013-02-02 01:23 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlroamextension.dll
2015-07-23 16:36 - 2013-02-02 01:23 - 00475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-07-23 16:36 - 2013-02-02 01:23 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-07-23 16:36 - 2013-02-02 01:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2015-07-23 16:36 - 2013-02-02 01:20 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hotspotauth.dll
2015-07-23 16:36 - 2013-02-02 00:25 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2015-07-23 16:34 - 2013-02-01 22:41 - 01437184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-07-23 16:34 - 2013-02-01 22:31 - 01690624 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-07-23 16:23 - 2012-11-26 23:39 - 01122768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2015-07-23 16:23 - 2012-11-26 21:49 - 01027152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-07-23 16:23 - 2012-11-26 21:20 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-07-23 16:23 - 2012-11-26 21:19 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2015-07-23 16:23 - 2012-11-26 21:19 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2015-07-23 16:23 - 2012-11-26 21:19 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-07-23 16:22 - 2012-11-26 21:20 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2015-07-23 16:22 - 2012-11-26 21:20 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-07-23 16:22 - 2012-10-12 01:08 - 00027880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-07-23 16:21 - 2012-11-26 21:20 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vds_ps.dll
2015-07-23 16:21 - 2012-11-26 20:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2015-07-23 16:21 - 2012-11-26 20:55 - 00029952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthhfHid.sys
2015-07-23 16:21 - 2012-10-11 23:14 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-07-23 16:21 - 2012-09-10 22:28 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2015-07-23 16:21 - 2012-09-10 22:27 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds_ps.dll
2015-07-23 16:14 - 2013-05-03 23:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-07-23 16:13 - 2013-05-03 23:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-07-23 16:13 - 2013-05-03 23:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2015-07-23 16:13 - 2013-05-03 21:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2015-07-23 16:12 - 2013-05-03 23:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2015-07-23 16:12 - 2013-05-03 23:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2015-07-23 16:12 - 2013-05-03 23:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-07-23 16:12 - 2013-05-03 21:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2015-07-23 16:12 - 2013-05-03 21:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2015-07-23 16:12 - 2013-05-03 21:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2015-07-23 16:11 - 2013-05-04 00:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2015-07-23 16:11 - 2013-05-03 23:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2015-07-23 16:11 - 2013-05-03 23:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-07-23 16:11 - 2013-05-03 23:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2015-07-23 16:11 - 2013-05-03 23:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-07-23 16:11 - 2013-05-03 23:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-07-23 16:11 - 2013-05-03 23:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-07-23 16:11 - 2013-05-03 23:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-07-23 16:11 - 2013-05-03 23:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2015-07-23 16:11 - 2013-05-03 23:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2015-07-23 16:11 - 2013-05-03 23:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2015-07-23 16:11 - 2013-05-03 21:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2015-07-23 16:11 - 2013-05-03 21:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-07-23 16:11 - 2013-05-03 21:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2015-07-23 16:11 - 2013-05-03 21:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2015-07-23 16:11 - 2013-05-03 21:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2015-07-23 16:11 - 2013-05-03 21:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2015-07-23 16:11 - 2013-05-03 21:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-07-23 16:11 - 2013-05-03 21:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-07-23 16:11 - 2013-05-03 21:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2015-07-23 16:11 - 2013-05-03 21:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2015-07-23 16:11 - 2013-03-01 19:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2015-07-23 16:11 - 2013-03-01 19:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2015-07-23 16:11 - 2013-02-02 01:39 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2015-07-23 16:11 - 2013-02-02 01:39 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2015-07-23 16:08 - 2013-05-14 19:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2015-07-23 16:08 - 2013-05-14 19:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-07-23 16:08 - 2013-05-14 19:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2015-07-23 16:08 - 2013-05-14 19:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-07-23 16:06 - 2014-07-16 15:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2015-07-23 16:06 - 2014-07-11 21:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2015-07-23 16:06 - 2014-06-27 23:57 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-07-23 16:05 - 2014-07-24 06:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-07-23 16:05 - 2014-07-11 23:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2015-07-23 16:05 - 2014-07-11 21:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2015-07-23 16:05 - 2014-06-27 19:23 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-07-23 16:04 - 2014-07-16 16:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2015-07-23 16:04 - 2014-07-16 15:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2015-07-23 15:59 - 2013-08-09 22:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-07-23 15:59 - 2013-08-09 20:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-07-23 15:59 - 2013-08-01 23:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2015-07-23 15:59 - 2013-08-01 22:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2015-07-23 15:59 - 2013-07-24 16:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2015-07-23 15:59 - 2013-07-24 16:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2015-07-23 15:58 - 2013-08-09 22:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2015-07-23 15:58 - 2013-03-02 01:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2015-07-23 15:52 - 2014-06-12 16:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-23 15:52 - 2014-06-12 16:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-23 15:51 - 2014-06-05 10:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-07-23 15:51 - 2013-03-05 23:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2015-07-23 15:20 - 2013-08-02 23:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2015-07-23 15:20 - 2013-08-02 23:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2015-07-23 15:20 - 2013-08-02 23:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2015-07-23 15:20 - 2013-08-02 22:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2015-07-23 15:20 - 2013-08-02 22:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2015-07-23 15:20 - 2013-08-02 22:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2015-07-23 14:56 - 2012-11-19 22:24 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2015-07-23 14:56 - 2012-11-19 22:17 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2015-07-23 14:56 - 2012-11-19 22:02 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKURD.DLL
2015-07-23 14:56 - 2012-11-19 21:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDKURD.DLL
2015-07-23 14:56 - 2012-11-19 21:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2015-07-23 14:52 - 2012-11-05 21:18 - 11459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2015-07-23 14:50 - 2012-11-05 21:19 - 08552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2015-07-23 14:49 - 2012-11-05 21:20 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2015-07-23 14:49 - 2012-11-05 21:20 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-07-23 14:49 - 2012-11-05 21:19 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-07-23 14:48 - 2012-11-05 21:20 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2015-07-23 14:48 - 2012-11-05 21:20 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-07-23 14:48 - 2012-11-05 21:19 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-07-23 14:48 - 2012-11-05 21:19 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2015-07-23 14:48 - 2012-11-05 21:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2015-07-23 14:48 - 2012-11-05 21:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-07-23 14:48 - 2012-11-05 21:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2015-07-23 14:48 - 2012-11-05 21:17 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-07-23 14:47 - 2012-11-05 21:19 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2015-07-23 14:47 - 2012-11-05 21:19 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2015-07-23 14:47 - 2012-11-05 21:19 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-07-23 14:46 - 2012-11-05 21:20 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2015-07-23 14:46 - 2012-11-05 21:20 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2015-07-23 14:46 - 2012-11-05 21:20 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-07-23 14:46 - 2012-11-05 21:19 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2015-07-23 14:46 - 2012-11-05 21:19 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-07-23 14:46 - 2012-11-05 21:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-07-23 14:46 - 2012-11-05 21:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-07-23 14:45 - 2012-11-05 21:20 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-07-23 14:45 - 2012-11-05 21:19 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-07-23 14:45 - 2012-11-05 21:19 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2015-07-23 14:45 - 2012-11-05 21:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2015-07-23 14:45 - 2012-11-05 21:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2015-07-23 14:45 - 2012-11-05 20:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2015-07-23 14:45 - 2012-11-05 20:56 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2015-07-23 14:45 - 2012-11-05 20:55 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2015-07-23 14:45 - 2012-11-05 20:55 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2015-07-23 14:45 - 2012-11-05 20:55 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2015-07-23 14:45 - 2012-11-05 20:55 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2015-07-23 14:45 - 2012-11-05 20:55 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fxppm.sys
2015-07-23 14:36 - 2014-03-01 02:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2015-07-23 14:36 - 2014-03-01 02:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2015-07-23 14:36 - 2014-03-01 01:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2015-07-23 14:36 - 2014-02-28 23:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2015-07-23 14:36 - 2014-02-14 21:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2015-07-23 14:36 - 2013-11-25 16:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2015-07-23 14:36 - 2013-06-28 20:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2015-07-23 14:36 - 2013-05-03 21:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2015-07-23 14:33 - 2014-05-28 21:04 - 00094552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-07-23 13:58 - 2015-02-24 00:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-07-23 13:57 - 2015-03-17 00:00 - 06971712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-07-23 13:57 - 2015-03-16 23:52 - 01822696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-07-23 13:56 - 2015-03-16 21:45 - 01409496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-07-23 13:51 - 2015-06-27 09:36 - 00171352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-23 13:51 - 2015-06-27 06:56 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-07-23 13:51 - 2015-06-27 06:55 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-23 13:51 - 2015-06-27 06:55 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-23 13:51 - 2015-06-27 06:46 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-23 13:51 - 2015-06-27 06:46 - 00829952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-23 13:51 - 2015-06-27 06:46 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-07-23 13:51 - 2015-06-27 06:46 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-23 13:51 - 2015-06-27 06:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-23 13:51 - 2015-06-25 11:29 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-23 13:51 - 2015-06-25 11:27 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-23 13:49 - 2015-06-17 07:13 - 01150264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-23 13:49 - 2015-06-17 06:44 - 01567560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-23 13:49 - 2015-04-12 22:30 - 01839616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-07-23 13:49 - 2015-04-12 22:30 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-07-23 13:49 - 2015-01-29 01:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-07-23 13:49 - 2015-01-28 23:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-07-23 13:48 - 2015-04-12 22:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-07-23 13:48 - 2015-04-12 21:05 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-07-23 13:48 - 2015-01-23 23:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-07-23 13:48 - 2015-01-23 22:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2015-07-23 13:48 - 2014-12-10 23:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-07-23 13:44 - 2015-01-06 21:25 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-23 13:40 - 2015-05-08 16:39 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-07-23 13:40 - 2015-05-08 13:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-07-23 13:40 - 2014-12-07 23:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-07-23 13:40 - 2014-12-07 22:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-07-23 13:39 - 2015-06-09 06:57 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-07-23 13:39 - 2015-01-23 21:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-07-23 13:39 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-07-23 13:38 - 2015-03-04 00:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-07-23 13:38 - 2015-03-03 23:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-07-23 13:38 - 2015-03-03 21:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-07-23 13:33 - 2015-06-15 08:22 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-07-23 13:33 - 2015-06-15 08:22 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-23 13:33 - 2015-06-15 08:22 - 02037760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-23 13:33 - 2015-06-15 08:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-23 13:33 - 2015-06-15 08:21 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-23 13:33 - 2015-06-15 08:20 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-07-23 13:33 - 2015-06-15 08:20 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-23 13:33 - 2015-06-15 08:19 - 02307072 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-23 13:33 - 2014-10-11 00:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2015-07-23 13:33 - 2014-10-10 22:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2015-07-23 13:31 - 2014-12-06 00:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-07-23 13:31 - 2014-12-06 00:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-07-23 13:31 - 2014-12-06 00:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-07-23 13:31 - 2014-12-06 00:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2015-07-23 13:31 - 2014-12-06 00:50 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-23 13:31 - 2014-12-05 23:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2015-07-23 13:31 - 2013-07-08 23:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2015-07-23 13:31 - 2013-07-08 21:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2015-07-23 13:30 - 2015-07-14 12:43 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-23 13:30 - 2015-07-14 12:43 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-23 13:30 - 2014-12-06 00:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-07-23 13:30 - 2014-12-06 00:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-07-23 13:30 - 2014-12-06 00:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-07-23 13:30 - 2014-12-05 23:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-07-23 13:30 - 2014-12-05 23:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-07-23 13:30 - 2014-12-05 23:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-07-23 13:30 - 2014-10-02 18:21 - 00522728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-07-23 13:30 - 2014-10-02 15:29 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-23 13:29 - 2015-07-14 13:11 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-23 13:29 - 2015-07-14 13:09 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-23 13:29 - 2012-11-07 21:24 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-07-23 13:29 - 2012-11-07 21:24 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-07-23 13:29 - 2012-11-07 21:20 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-07-23 13:29 - 2012-11-07 21:20 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-07-23 13:29 - 2012-11-07 21:02 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-07-23 13:29 - 2012-11-07 21:01 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-07-23 13:27 - 2013-06-21 22:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-07-23 13:27 - 2013-06-21 22:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2015-07-23 13:26 - 2013-07-05 15:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2015-07-23 13:26 - 2013-07-05 15:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2015-07-23 13:23 - 2014-11-04 23:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-07-23 13:23 - 2014-11-04 23:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-07-23 13:23 - 2014-10-29 07:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-07-23 13:22 - 2014-08-27 23:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-07-23 13:18 - 2014-11-14 23:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-23 13:18 - 2014-11-14 22:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-23 13:18 - 2014-11-14 22:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-23 13:18 - 2014-11-14 22:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-07-23 13:18 - 2014-11-14 20:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-23 13:18 - 2014-11-14 20:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-23 13:18 - 2014-11-14 20:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-23 13:18 - 2014-11-14 20:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-23 13:15 - 2014-07-23 20:33 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-07-23 13:15 - 2014-07-23 20:33 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-07-23 13:04 - 2014-10-08 20:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-07-23 13:04 - 2014-10-08 20:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-07-23 13:04 - 2014-10-08 20:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-07-23 13:04 - 2014-09-21 22:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-07-23 13:04 - 2014-09-21 20:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-07-23 13:03 - 2015-04-30 06:44 - 00478296 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-07-23 13:03 - 2015-04-30 06:44 - 00478296 _____ C:\WINDOWS\system32\locale.nls
2015-07-23 13:01 - 2015-06-15 08:22 - 13771264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-23 13:01 - 2015-06-15 08:22 - 02056704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-23 13:01 - 2015-06-15 08:22 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-23 13:01 - 2015-06-15 08:20 - 15415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-23 13:01 - 2015-06-15 08:20 - 02656768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-23 13:01 - 2015-06-15 08:20 - 02237440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-07-23 13:00 - 2015-06-15 08:22 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-23 13:00 - 2015-06-15 08:20 - 01409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-23 13:00 - 2015-06-15 08:20 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-23 13:00 - 2015-06-15 08:20 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-23 13:00 - 2015-06-15 08:20 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-23 13:00 - 2015-06-15 08:20 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-23 13:00 - 2015-06-15 08:19 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-23 13:00 - 2015-06-15 08:19 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-23 13:00 - 2015-05-27 19:04 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-07-23 13:00 - 2015-05-27 19:03 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-07-23 13:00 - 2015-05-27 19:01 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-07-23 13:00 - 2015-05-27 17:43 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-23 13:00 - 2015-05-27 15:14 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-07-23 12:59 - 2015-06-15 08:22 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-23 12:59 - 2015-06-15 08:22 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-23 12:59 - 2015-06-15 08:20 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-07-23 12:59 - 2015-06-15 08:20 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-23 12:59 - 2015-05-27 19:03 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2015-07-23 12:59 - 2015-05-27 19:02 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-23 12:59 - 2015-05-27 19:01 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2015-07-23 12:59 - 2015-05-27 19:01 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-07-23 12:59 - 2015-05-27 19:01 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-07-23 12:59 - 2015-05-27 19:01 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-07-23 12:59 - 2015-05-27 17:45 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2015-07-23 12:59 - 2015-05-27 17:44 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-23 12:59 - 2015-05-27 17:43 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2015-07-23 12:59 - 2015-05-27 17:43 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2015-07-23 12:59 - 2015-05-27 17:43 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-07-23 12:59 - 2015-05-27 17:43 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2015-07-23 12:59 - 2015-05-27 17:24 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-07-23 12:59 - 2015-05-27 17:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-07-23 12:59 - 2015-05-27 17:22 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2015-07-23 12:59 - 2015-05-27 17:20 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2015-07-23 12:59 - 2015-05-27 17:00 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-07-23 12:59 - 2015-05-27 16:55 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-07-23 12:58 - 2015-06-27 06:55 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-23 12:58 - 2015-06-27 06:46 - 03960320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-23 12:58 - 2013-10-18 22:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2015-07-23 12:58 - 2013-10-18 21:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2015-07-23 12:58 - 2013-07-01 15:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2015-07-23 12:58 - 2012-10-10 22:19 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys
2015-07-23 12:48 - 2015-03-27 01:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2015-07-23 12:48 - 2012-10-10 00:04 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\synceng.dll
2015-07-23 12:48 - 2012-10-09 23:31 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\synceng.dll
2015-07-23 12:42 - 2013-03-01 19:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-07-23 12:41 - 2013-03-02 01:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-07-23 12:41 - 2013-03-02 01:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-07-23 12:41 - 2013-03-02 01:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-07-23 12:41 - 2013-03-02 01:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2015-07-23 12:41 - 2013-03-01 19:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2015-07-23 12:41 - 2013-03-01 19:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2015-07-23 12:41 - 2013-03-01 19:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-07-23 12:40 - 2013-03-02 03:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2015-07-23 12:40 - 2013-03-02 01:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2015-07-23 12:40 - 2013-03-02 01:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2015-07-23 12:40 - 2013-03-01 19:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2015-07-23 12:40 - 2013-03-01 19:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2015-07-23 12:40 - 2013-03-01 19:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2015-07-23 12:40 - 2013-03-01 19:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2015-07-23 12:40 - 2013-03-01 19:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2015-07-23 12:40 - 2013-03-01 19:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-07-23 12:39 - 2013-02-28 21:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2015-07-23 12:36 - 2014-07-06 22:51 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-07-23 12:35 - 2014-07-06 22:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2015-07-23 12:35 - 2014-07-06 22:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-07-23 12:35 - 2014-07-06 22:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2015-07-23 12:35 - 2014-07-06 21:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2015-07-23 12:35 - 2014-07-06 21:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2015-07-23 12:35 - 2014-07-06 21:00 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-07-23 12:35 - 2014-07-06 20:59 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll
2015-07-23 12:32 - 2013-08-15 22:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2015-07-23 12:31 - 2013-08-15 22:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-07-23 12:31 - 2013-08-15 22:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2015-07-23 12:31 - 2013-08-15 22:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2015-07-23 12:31 - 2013-08-15 22:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2015-07-23 12:31 - 2013-08-15 22:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2015-07-23 12:31 - 2013-08-15 15:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2015-07-23 12:31 - 2013-08-15 15:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2015-07-23 12:31 - 2013-08-15 15:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2015-07-23 12:31 - 2013-08-15 15:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2015-07-23 12:31 - 2013-08-15 15:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2015-07-23 12:25 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2015-07-23 12:25 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2015-07-23 12:24 - 2014-07-31 16:40 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-07-23 12:17 - 2013-02-11 17:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-07-23 12:12 - 2012-08-30 17:52 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2015-07-23 12:11 - 2012-08-30 17:53 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2015-07-23 11:44 - 2015-07-02 13:31 - 19291136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-23 11:43 - 2015-07-02 12:15 - 14384640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-23 11:42 - 2013-01-09 16:23 - 02094592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2015-07-23 11:42 - 2013-01-09 16:23 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-07-23 11:41 - 2013-01-09 16:26 - 01752064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2015-07-23 11:41 - 2013-01-09 16:26 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2015-07-23 11:41 - 2013-01-09 16:23 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2015-07-23 11:41 - 2013-01-09 16:23 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-07-23 11:40 - 2013-01-09 18:53 - 00028904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-07-23 11:40 - 2013-01-09 18:29 - 00091880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2015-07-23 11:40 - 2013-01-09 16:26 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-07-23 11:40 - 2013-01-09 16:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-07-23 11:40 - 2013-01-09 16:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaacmgr.exe
2015-07-23 11:40 - 2013-01-09 16:22 - 00894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2015-07-23 11:40 - 2013-01-09 16:22 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2015-07-23 11:40 - 2013-01-09 16:22 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2015-07-23 11:39 - 2013-01-09 16:26 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2015-07-23 11:39 - 2013-01-09 16:26 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaacmgr.exe
2015-07-23 11:39 - 2012-11-01 22:19 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2015-07-23 11:39 - 2012-11-01 22:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2015-07-23 11:39 - 2012-11-01 22:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2015-07-23 11:38 - 2012-11-01 22:18 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2015-07-23 11:38 - 2012-11-01 22:18 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2015-07-23 11:38 - 2012-11-01 22:18 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2015-07-23 11:34 - 2015-04-30 13:20 - 05331968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2015-07-23 11:34 - 2015-04-30 13:20 - 01174528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-07-23 11:34 - 2015-04-30 13:20 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2015-07-23 11:32 - 2015-06-09 06:09 - 00411133 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-23 11:32 - 2014-12-18 21:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-07-23 11:27 - 2015-01-31 06:48 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-07-23 11:27 - 2015-01-30 22:55 - 00275712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-07-23 11:14 - 2014-09-02 19:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2015-07-23 11:14 - 2014-09-02 19:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2015-07-23 11:10 - 2015-05-11 15:49 - 00527704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-07-23 10:48 - 2013-06-30 18:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-07-23 10:48 - 2013-06-30 18:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2015-07-23 10:48 - 2013-06-30 18:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2015-07-23 10:48 - 2013-06-30 18:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2015-07-23 10:48 - 2013-06-28 20:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2015-07-23 10:48 - 2013-06-28 20:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2015-07-23 10:36 - 2013-04-23 15:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2015-07-23 10:35 - 2013-04-23 16:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2015-07-23 10:35 - 2013-04-23 16:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2015-07-23 10:35 - 2013-04-23 15:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2015-07-23 10:33 - 2015-03-14 01:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-07-23 10:33 - 2015-03-13 23:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-07-23 10:16 - 2014-11-25 23:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-07-23 10:16 - 2014-11-25 21:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-07-23 10:16 - 2012-10-23 20:25 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2015-07-23 10:16 - 2012-10-23 19:48 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2015-07-23 10:13 - 2014-03-10 17:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2015-07-23 10:13 - 2014-03-10 17:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-07-23 10:12 - 2014-03-10 17:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2015-07-23 10:12 - 2014-03-10 17:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll
2015-07-23 10:12 - 2014-03-10 17:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2015-07-23 10:06 - 2013-12-04 16:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2015-07-23 10:06 - 2013-12-04 16:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2015-07-23 09:51 - 2013-07-01 18:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-07-23 09:51 - 2013-07-01 18:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2015-07-23 08:48 - 2015-03-03 23:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-07-23 08:48 - 2015-03-03 23:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2015-07-23 08:48 - 2015-03-03 21:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2015-07-23 08:46 - 2015-03-03 23:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-07-23 08:46 - 2015-03-03 21:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-07-23 08:12 - 2015-06-11 13:29 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-23 08:12 - 2015-06-11 09:27 - 01024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-23 08:05 - 2013-11-19 17:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-07-23 08:05 - 2013-11-19 16:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-07-23 07:58 - 2015-07-23 07:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2015-07-23 07:54 - 2015-07-23 07:54 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-07-23 07:53 - 2015-06-29 09:18 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-23 07:53 - 2015-06-29 06:27 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-23 07:53 - 2015-06-29 06:27 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-23 07:53 - 2015-06-29 06:27 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-23 07:53 - 2015-06-29 06:27 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-23 07:53 - 2015-06-29 06:27 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-23 07:53 - 2015-06-26 06:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-23 07:53 - 2015-05-22 13:44 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-07-23 07:52 - 2015-07-23 07:52 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-07-23 07:52 - 2015-06-29 06:28 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-23 07:51 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-07-23 07:50 - 2015-06-24 18:54 - 04064768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-23 07:48 - 2012-10-23 20:25 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2015-07-23 07:48 - 2012-10-23 20:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2015-07-23 07:48 - 2012-10-23 20:24 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2015-07-23 07:48 - 2012-10-23 20:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2015-07-23 07:43 - 2012-11-02 22:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-07-23 07:43 - 2012-11-02 22:26 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-07-23 07:43 - 2012-11-02 22:24 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-07-23 07:43 - 2012-11-02 22:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-07-23 07:43 - 2012-11-02 22:04 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-07-23 07:43 - 2012-11-02 22:04 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-07-23 07:43 - 2012-11-02 22:00 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-07-23 07:43 - 2012-11-02 22:00 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-07-23 07:23 - 2013-07-12 21:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-07-23 07:22 - 2013-07-12 21:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2015-07-23 07:22 - 2013-07-12 21:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2015-07-23 07:21 - 2013-07-12 23:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-07-23 07:21 - 2013-07-12 23:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2015-07-23 07:21 - 2013-07-12 23:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2015-07-23 07:21 - 2013-07-12 23:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2015-07-23 07:19 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-07-23 07:19 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-07-23 07:15 - 2015-03-11 22:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-07-23 07:15 - 2015-03-11 22:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2015-07-23 07:15 - 2015-03-11 20:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-07-23 07:12 - 2013-10-10 02:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2015-07-23 07:12 - 2013-10-10 02:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2015-07-23 07:12 - 2013-10-10 02:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2015-07-23 07:12 - 2013-10-10 02:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2015-07-23 07:12 - 2013-10-10 02:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2015-07-23 07:12 - 2013-10-10 02:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2015-07-23 07:12 - 2013-10-10 02:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2015-07-23 07:12 - 2013-04-02 16:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2015-07-23 07:11 - 2013-04-02 16:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2015-07-23 06:54 - 2014-12-17 23:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-07-23 06:54 - 2013-06-10 12:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-07-23 06:53 - 2014-12-18 01:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-07-23 06:53 - 2014-12-17 23:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-07-23 06:53 - 2014-12-17 23:51 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-07-23 06:53 - 2014-12-17 23:50 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-07-23 06:53 - 2013-06-10 12:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-07-23 06:38 - 2013-08-22 18:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-07-23 06:37 - 2013-08-23 00:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-07-23 06:17 - 2015-05-01 20:59 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-07-23 06:17 - 2015-01-15 03:00 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2015-07-23 06:17 - 2015-01-15 02:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-07-23 06:17 - 2014-09-24 16:29 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-07-23 06:17 - 2014-03-09 18:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2015-07-23 06:12 - 2015-05-01 20:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-07-23 06:12 - 2015-01-15 04:44 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-07-23 06:12 - 2015-01-15 04:43 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-23 06:12 - 2015-01-15 02:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-07-23 06:12 - 2014-09-24 16:01 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-07-23 06:11 - 2015-05-01 23:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2015-07-23 06:11 - 2015-04-13 15:09 - 00570248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-07-23 06:11 - 2014-03-10 17:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2015-07-23 06:11 - 2014-03-10 17:38 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2015-07-23 06:11 - 2014-03-10 17:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2015-07-23 06:06 - 2013-03-21 20:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-07-23 06:06 - 2013-03-21 15:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-07-23 03:38 - 2015-07-23 04:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-23 03:36 - 2015-07-03 08:43 - 130333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-07-23 02:45 - 2014-04-16 11:20 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-07-23 02:45 - 2014-04-16 11:20 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-07-23 02:00 - 2015-07-23 02:35 - 00000000 ____D C:\Program Files\PeerBlock
2015-07-23 02:00 - 2015-07-23 02:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
2015-07-23 00:50 - 2015-07-23 00:51 - 00000000 ____D C:\44d69fd5823f4a02e07f479489
2015-07-22 22:34 - 2015-07-23 00:54 - 00000000 ____D C:\WINDOWS\Minidump
2015-07-22 21:37 - 2015-07-22 21:37 - 00003142 _____ C:\WINDOWS\System32\Tasks\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2}
2015-07-22 20:50 - 2015-07-26 16:43 - 00007612 _____ C:\Users\kaichou\AppData\Local\Resmon.ResmonCfg
2015-07-22 20:47 - 2015-07-22 20:47 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\WinRAR
2015-07-22 20:46 - 2015-07-22 20:46 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-22 20:46 - 2015-07-22 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-22 20:46 - 2015-07-22 20:46 - 00000000 ____D C:\Program Files\WinRAR
2015-07-22 19:56 - 2015-07-22 20:03 - 00000000 ____D C:\Users\kaichou\Documents\Graphics
2015-07-22 19:56 - 2015-07-22 19:56 - 00000000 ____D C:\Users\kaichou\Documents\DisplayAudio
2015-07-22 19:22 - 2015-07-22 19:22 - 00000000 ____D C:\Users\kaichou\New folder (2)
2015-07-22 18:59 - 2015-07-22 18:59 - 00000000 ____D C:\Users\kaichou\AppData\Local\Intel
2015-07-22 18:42 - 2015-03-31 07:25 - 00018840 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys
2015-07-22 16:16 - 2015-01-23 23:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-07-22 16:16 - 2015-01-23 22:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-07-22 14:21 - 2014-10-10 22:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-07-22 14:21 - 2014-10-10 22:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-07-22 14:13 - 2013-04-08 21:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-07-22 14:13 - 2013-04-08 21:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-07-22 14:13 - 2013-04-08 21:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-07-22 14:13 - 2013-04-08 21:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2015-07-22 14:13 - 2013-04-08 14:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-07-22 14:13 - 2013-04-08 14:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-07-22 14:13 - 2013-04-08 14:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-07-22 14:12 - 2013-04-08 22:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-07-22 14:12 - 2013-04-08 22:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-07-22 14:12 - 2013-04-08 22:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2015-07-22 14:12 - 2013-04-08 21:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-07-22 14:12 - 2013-04-08 21:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-07-22 14:12 - 2013-04-08 21:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2015-07-22 14:12 - 2013-04-08 21:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2015-07-22 14:12 - 2013-04-08 21:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-07-22 14:12 - 2013-04-08 21:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2015-07-22 14:12 - 2013-04-08 19:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2015-07-22 14:12 - 2013-04-08 16:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-07-22 14:12 - 2013-04-08 14:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-07-22 14:12 - 2013-04-08 14:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2015-07-22 14:12 - 2013-04-08 14:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-07-22 14:12 - 2013-03-15 15:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2015-07-22 14:11 - 2013-04-08 22:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-07-22 14:11 - 2013-04-08 21:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-07-22 14:11 - 2013-04-08 21:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-07-22 14:11 - 2013-04-08 21:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-07-22 14:11 - 2013-04-08 16:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-07-22 14:11 - 2013-04-08 14:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-07-22 14:11 - 2013-03-15 15:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2015-07-22 14:10 - 2013-04-08 22:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll
2015-07-22 14:10 - 2013-04-08 21:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2015-07-22 14:10 - 2013-04-08 21:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-07-22 14:10 - 2013-04-08 21:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2015-07-22 14:10 - 2013-04-08 21:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2015-07-22 14:10 - 2013-04-08 21:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2015-07-22 14:10 - 2013-04-08 16:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2015-07-22 14:10 - 2013-04-08 14:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2015-07-22 14:10 - 2013-04-08 14:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-07-22 14:10 - 2013-04-08 14:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2015-07-22 14:10 - 2013-04-08 14:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-07-22 14:10 - 2013-04-04 16:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-07-22 14:10 - 2013-03-02 03:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-07-22 14:10 - 2013-02-02 01:40 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsRasterService.dll
2015-07-22 14:10 - 2013-02-02 01:23 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-07-22 14:09 - 2013-04-08 22:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2015-07-22 14:09 - 2013-04-08 21:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2015-07-22 14:09 - 2013-04-08 21:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-07-22 14:09 - 2013-04-08 21:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll
2015-07-22 14:09 - 2013-04-08 21:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-07-22 14:09 - 2013-04-08 21:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2015-07-22 14:09 - 2013-04-08 21:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2015-07-22 14:09 - 2013-04-08 21:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2015-07-22 14:09 - 2013-04-08 19:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-07-22 14:09 - 2013-04-08 19:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-07-22 14:09 - 2013-04-08 19:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-07-22 14:09 - 2013-04-08 14:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-07-22 14:09 - 2013-04-08 14:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2015-07-22 14:09 - 2013-04-08 14:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2015-07-22 14:09 - 2013-04-08 14:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll
2015-07-22 14:09 - 2013-04-08 14:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2015-07-22 14:09 - 2013-04-08 14:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2015-07-22 14:09 - 2013-01-09 18:40 - 00303848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-07-22 14:09 - 2012-12-12 21:00 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2015-07-22 14:09 - 2012-12-12 20:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2015-07-22 14:09 - 2012-11-19 21:54 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidi2c.sys
2015-07-22 14:09 - 2012-11-05 22:00 - 00463768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-07-22 14:09 - 2012-10-10 22:44 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-07-22 14:09 - 2012-10-10 22:44 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2015-07-22 14:09 - 2012-10-10 22:06 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2015-07-22 14:09 - 2012-10-10 22:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2015-07-22 13:59 - 2015-02-18 00:39 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-07-22 13:59 - 2015-02-18 00:38 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2015-07-22 13:58 - 2012-11-09 21:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-07-22 13:58 - 2012-11-09 21:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll
2015-07-22 13:58 - 2012-11-09 21:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll
2015-07-22 13:58 - 2012-11-09 21:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll
2015-07-22 13:57 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-07-22 13:57 - 2014-04-12 02:10 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-07-22 13:57 - 2014-04-12 02:09 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2015-07-22 13:57 - 2014-04-12 00:23 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2015-07-22 13:56 - 2014-11-08 04:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-07-22 13:56 - 2014-11-07 23:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-07-22 13:56 - 2014-04-12 02:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2015-07-22 13:56 - 2014-04-12 02:07 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-07-22 13:56 - 2014-04-12 00:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2015-07-22 13:56 - 2014-04-12 00:22 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2015-07-22 13:56 - 2014-04-11 23:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2015-07-22 13:54 - 2015-04-24 20:41 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-07-22 13:54 - 2015-04-24 16:13 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-07-22 13:53 - 2013-09-27 20:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-07-22 13:53 - 2013-03-02 02:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-07-22 13:53 - 2012-10-10 22:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2015-07-22 13:53 - 2012-10-10 22:19 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2015-07-22 13:53 - 2012-10-10 22:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2015-07-22 13:52 - 2014-06-10 15:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-07-22 13:52 - 2014-06-10 15:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-07-22 13:51 - 2015-02-16 23:54 - 19777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-22 13:51 - 2015-02-16 22:13 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-22 10:21 - 2014-10-23 05:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-07-22 10:21 - 2014-10-23 04:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-07-22 08:19 - 2014-12-18 23:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-07-22 07:54 - 2015-07-22 07:55 - 01086486 _____ C:\Users\kaichou\Documents\duplicate.txt
2015-07-22 07:25 - 2012-10-31 21:41 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-07-22 07:25 - 2012-10-31 21:40 - 02361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-07-22 07:25 - 2012-10-31 21:21 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2015-07-22 07:25 - 2012-10-31 21:20 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2015-07-22 07:24 - 2014-08-21 16:56 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-07-22 07:24 - 2014-08-21 16:27 - 01845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-07-22 07:24 - 2012-10-31 21:21 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2015-07-22 07:24 - 2012-10-31 21:20 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2015-07-22 07:23 - 2015-04-05 22:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-07-22 07:23 - 2015-04-05 21:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-07-22 07:23 - 2013-10-31 22:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2015-07-22 07:22 - 2013-10-31 20:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2015-07-22 07:21 - 2014-10-30 00:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-07-22 07:21 - 2014-10-29 22:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-07-22 04:27 - 2015-07-22 04:27 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-22 04:13 - 2015-07-05 03:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-07-22 03:26 - 2015-07-22 03:26 - 00000013 __RSH C:\WINDOWS\system32\Drivers\fbd.sys
2015-07-22 01:56 - 2015-07-22 01:56 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-22 01:56 - 2015-07-22 01:56 - 00000000 ____D C:\Program Files\CCleaner
2015-07-22 01:48 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-07-22 01:48 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-07-22 01:48 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2015-07-22 01:48 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2015-07-22 01:48 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2015-07-22 01:37 - 2015-07-22 01:37 - 00000000 ____D C:\Users\kaichou\AppData\Local\Macromedia
2015-07-22 01:28 - 2015-07-22 01:28 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-07-22 01:28 - 2015-07-22 01:28 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-07-22 01:22 - 2015-07-26 01:17 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Riot Games
2015-07-22 01:10 - 2015-07-22 01:10 - 00866452 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-07-22 01:09 - 2015-07-26 21:40 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-22 01:09 - 2015-07-22 01:09 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-22 01:08 - 2015-07-22 01:08 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Intel Corporation
2015-07-22 01:03 - 2015-07-22 01:05 - 27864920 _____ (Riot Games) C:\Users\kaichou\Downloads\LeagueofLegends_NA_Installer_9_15_2014.exe
2015-07-22 01:03 - 2015-07-22 01:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-22 00:58 - 2015-07-22 01:04 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Skype
2015-07-22 00:58 - 2015-07-22 00:58 - 00000273 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk
2015-07-22 00:58 - 2015-07-22 00:58 - 00000000 ____D C:\Users\kaichou\AppData\Local\Skype
2015-07-22 00:55 - 2015-07-26 16:49 - 00000000 ____D C:\ProgramData\Skype
2015-07-22 00:48 - 2015-07-22 00:55 - 00000000 ____D C:\Users\kaichou\AppData\Local\Mozilla
2015-07-22 00:48 - 2015-07-22 00:48 - 00001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-07-22 00:48 - 2015-07-22 00:48 - 00001158 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-07-22 00:48 - 2015-07-22 00:48 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Mozilla
2015-07-22 00:48 - 2015-07-22 00:48 - 00000000 ____D C:\ProgramData\Mozilla
2015-07-22 00:47 - 2015-07-22 00:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-22 00:41 - 2015-07-22 00:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-22 00:35 - 2015-07-22 06:39 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-07-22 00:23 - 2015-07-22 00:27 - 00000000 ____D C:\Users\kaichou\AppData\Local\Pokki
2015-07-22 00:08 - 2013-08-15 22:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-22 00:08 - 2013-08-15 22:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-22 00:08 - 2013-08-15 15:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-22 00:08 - 2012-11-05 21:00 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wushareduxresources.dll
2015-07-22 00:05 - 2015-07-22 00:05 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-07-22 00:04 - 2015-07-22 01:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-22 00:00 - 2015-07-22 00:01 - 00000000 ___RD C:\Users\kaichou\Documents\Notes
2015-07-21 23:58 - 2015-07-22 00:08 - 00000000 ____D C:\Users\kaichou\AppData\Local\TOSHIBA
2015-07-21 23:53 - 2015-07-26 19:24 - 00000000 ____D C:\Users\kaichou\AppData\Local\CrashDumps
2015-07-21 23:51 - 2015-07-22 01:06 - 00000000 ____D C:\Users\kaichou\AppData\Local\Adobe
2015-07-21 23:48 - 2015-07-22 00:50 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-07-21 23:48 - 2015-07-22 00:31 - 00000000 ____D C:\ProgramData\RogueKiller
2015-07-21 23:32 - 2015-07-21 23:32 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Macromedia
2015-07-21 23:30 - 2015-07-21 23:30 - 00004943 _____ C:\Users\kaichou\AppData\Local\Temp17.html
2015-07-21 23:28 - 2015-07-21 23:28 - 00000000 ____D C:\ProgramData\Sun
2015-07-21 23:25 - 2015-07-21 23:21 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-07-21 23:22 - 2015-07-21 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-21 23:17 - 2015-07-21 23:27 - 00000000 ____D C:\ProgramData\Oracle
2015-07-21 23:16 - 2015-07-21 23:16 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-21 23:11 - 2015-07-21 23:20 - 00001293 _____ C:\Users\kaichou\AppData\Local\Temp1.html
2015-07-21 23:09 - 2012-10-29 08:20 - 00031328 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspSanity64.sys
2015-07-21 23:07 - 2015-07-26 18:37 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-929268618-902340300-2114106167-1001
2015-07-21 22:59 - 2015-07-21 22:59 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2015-07-21 22:51 - 2015-07-21 22:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-07-21 22:48 - 2015-07-22 01:50 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Adobe
2015-07-21 22:48 - 2015-07-21 22:48 - 00001441 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-21 22:45 - 2015-07-21 22:45 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\WinBatch
2015-07-21 22:37 - 2015-07-21 22:37 - 00000000 ____D C:\Users\kaichou\AppData\Local\VirtualStore
2015-07-21 22:35 - 2015-07-26 16:18 - 00000000 ____D C:\Users\kaichou\AppData\Local\Packages
2015-07-21 22:24 - 2015-07-21 22:24 - 00000020 ___SH C:\Users\kaichou\ntuser.ini
2015-07-21 22:18 - 2015-07-21 22:19 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Anti-Theft
2015-07-21 22:06 - 2015-07-22 22:35 - 00000000 ____D C:\Users\kaichou
2015-07-21 22:06 - 2012-11-12 23:57 - 00002107 _____ C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2015-07-21 22:06 - 2012-07-26 01:13 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-21 22:06 - 2012-07-26 01:13 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-21 22:06 - 2012-07-26 01:13 - 00000000 ___RD C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-21 22:06 - 2012-07-26 01:13 - 00000000 ____D C:\Users\kaichou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-21 22:05 - 2015-07-21 22:09 - 00017148 _____ C:\WINDOWS\diagwrn.xml
2015-07-21 22:05 - 2015-07-21 22:09 - 00017148 _____ C:\WINDOWS\diagerr.xml
2015-07-21 19:31 - 2015-07-26 09:20 - 00000000 ____D C:\Windows.old
2015-07-21 18:56 - 2015-07-21 18:56 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-07-21 16:29 - 2015-07-21 16:29 - 00000000 ____D C:\$WINDOWS.~BT
2015-07-21 16:25 - 2015-07-22 05:18 - 00000000 ___HD C:\$SysReset
2015-07-21 14:49 - 2015-07-21 14:56 - 00000000 ____D C:\Users\kaichou\scoped_dir2940_29527
2015-07-21 14:38 - 2015-07-21 14:38 - 00032768 ___HT C:\Users\kaichou\etilqs_ZY0fpoa2dZJ9aX5
2015-07-21 14:38 - 2015-07-21 14:38 - 00000512 ___HT C:\Users\kaichou\etilqs_VaA1N1XOnzThY5C
2015-07-21 08:47 - 2013-10-21 04:12 - 02946264 _____ (Realtek Semiconductor Corporation ) C:\Users\kaichou\rtwlane.sys
2015-07-21 08:42 - 2013-09-25 19:50 - 00162392 ____R (Symantec Corporation) C:\Users\kaichou\ccsetx64.sys
2015-07-21 08:40 - 2013-09-09 19:47 - 00493656 ____R (Symantec Corporation) C:\Users\kaichou\symds64.sys
2015-07-21 05:09 - 2015-07-21 06:13 - 195759949 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 10 [480p].mkv
2015-07-21 03:11 - 2015-07-21 03:11 - 00000013 _____ C:\Users\kaichou\jawshtml.html
2015-07-21 03:10 - 2015-07-21 03:19 - 00008852 _____ C:\Users\kaichou\JavaDeployReg.log
2015-07-21 03:10 - 2015-07-21 03:19 - 00000000 ____D C:\Users\kaichou\hsperfdata_kaichou
2015-07-21 01:12 - 2015-07-21 02:08 - 04194304 _____ C:\Users\kaichou\rspDisMonLog.etl
2015-07-21 00:47 - 2015-07-21 00:47 - 00000000 _____ C:\Users\kaichou\DMI9156.tmp
2015-07-21 00:16 - 2015-07-26 21:45 - 00000000 ____D C:\FRST
2015-07-20 23:32 - 2015-07-20 23:32 - 11069616 _____ (VS Revo Group ) C:\Users\kaichou\VSUSetup.exe
2015-07-20 23:31 - 2015-07-20 23:32 - 00008130 _____ C:\Users\kaichou\REVCE42.tmp
2015-07-20 23:21 - 2015-07-21 09:04 - 00000000 ____D C:\Users\kaichou\acro_rd_dir
2015-07-20 22:54 - 2015-07-20 23:00 - 00000000 ____D C:\Users\kaichou\scoped_dir3172_19127
2015-07-20 21:09 - 2015-07-20 21:09 - 00000000 ____D C:\Users\kaichou\Skype
2015-07-20 20:52 - 2015-07-20 21:03 - 00448738 _____ C:\Users\kaichou\dd_vcredistMSI6C60.txt
2015-07-20 20:52 - 2015-07-20 21:03 - 00016588 _____ C:\Users\kaichou\dd_vcredistUI6C60.txt
2015-07-20 20:38 - 2015-07-20 20:51 - 00434506 _____ C:\Users\kaichou\dd_vcredistMSI6172.txt
2015-07-20 20:37 - 2015-07-20 20:51 - 00016096 _____ C:\Users\kaichou\dd_vcredistUI6172.txt
2015-07-20 19:56 - 2015-07-20 20:03 - 00002706 _____ C:\Silverlight0.log
2015-07-20 19:56 - 2015-07-20 20:02 - 02810322 _____ C:\SilverlightMSI.log
2015-07-20 16:41 - 2015-07-21 14:30 - 00069529 _____ C:\Users\kaichou\jusched.log
2015-07-20 15:28 - 2015-07-20 15:34 - 00000000 ____D C:\Users\kaichou\scoped_dir2796_26746
2015-07-20 06:34 - 2015-07-20 06:34 - 00000000 ____D C:\Users\kaichou\New folder
2015-07-19 18:43 - 2015-07-19 18:43 - 00000000 __SHD C:\Recovery
2015-07-18 20:02 - 2015-07-18 20:26 - 202882837 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 14 [480p].mkv
2015-07-18 20:01 - 2015-07-18 20:30 - 203122466 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 13.5 [480p].mkv
2015-07-18 20:00 - 2015-07-18 20:33 - 198104380 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 13 [480p].mkv
2015-07-18 20:00 - 2015-07-18 20:27 - 203758249 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 12 [480p].mkv.!ut
2015-07-18 19:59 - 2015-07-18 20:34 - 200618648 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 11 [480p].mkv
2015-07-18 15:41 - 2015-07-18 16:35 - 153770271 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Working!!! - 03 [480p].mkv
2015-07-18 13:13 - 2015-07-18 16:36 - 460830410 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 01 [720p].mkv
2015-07-18 13:13 - 2015-07-18 16:36 - 153631121 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Working!!! - 02 [480p].mkv
2015-07-18 03:17 - 2015-07-18 04:02 - 80003946 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Bikini Warriors - 01 [720p].mkv.!ut
2015-07-18 03:15 - 2015-07-18 04:16 - 199468482 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 01 [480p].mkv.!ut
2015-07-18 02:42 - 2015-07-18 04:16 - 196607587 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 07 [480p].mkv
2015-07-18 00:47 - 2015-07-18 16:37 - 192979754 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 06 [480p].mkv
2015-07-18 00:47 - 2015-07-18 04:15 - 195759949 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 10 [480p].mkv.!ut
2015-07-18 00:47 - 2015-07-18 03:14 - 198046427 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 08 [480p].mkv
2015-07-18 00:47 - 2015-07-18 03:14 - 193335225 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 09 [480p].mkv
2015-07-18 00:38 - 2015-07-18 16:35 - 202574080 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 03 [480p].mkv
2015-07-18 00:38 - 2015-07-18 16:33 - 202423838 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 04 [480p].mkv
2015-07-18 00:37 - 2015-07-18 16:00 - 207342944 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 05 [480p].mkv
2015-07-18 00:37 - 2015-07-18 04:25 - 204702914 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 01 [480p].mkv
2015-07-18 00:37 - 2015-07-18 04:24 - 202581916 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Arslan Senki - 02 [480p].mkv
2015-07-18 00:34 - 2015-07-18 04:16 - 199983762 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Prison School - 02 [480p].mkv
2015-07-18 00:33 - 2015-07-18 03:07 - 34294746 _____ C:\Users\kaichou\Downloads\[HorribleSubs] Bikini Warriors - 02 [480p].mkv
2015-07-18 00:32 - 2015-07-18 03:32 - 358402601 _____ C:\Users\kaichou\Downloads\[HorribleSubs] GOD EATER - 01 [480p].mkv
2015-07-17 19:01 - 2015-07-22 02:41 - 00000000 ____D C:\Users\kaichou\Desktop\mbar
2015-07-17 16:27 - 2015-07-17 16:27 - 30651644 _____ C:\Users\kaichou\Documents\fff.pcapng
2015-07-17 02:45 - 2015-07-26 10:00 - 00000000 ___RD C:\Users\kaichou\Desktop\kkk
2015-07-15 06:34 - 2015-07-15 06:34 - 00000000 ____D C:\RegBackup
2015-07-15 06:33 - 2015-07-19 23:46 - 00000000 ____D C:\AdwCleaner
2015-07-14 19:20 - 2015-07-14 19:21 - 00000000 ____D C:\N360_BACKUP
2015-07-14 00:44 - 2015-07-26 16:40 - 00000000 ___RD C:\Users\kaichou\iCloudDrive
2015-07-12 00:28 - 2015-07-12 00:30 - 00000000 ____D C:\9a1c296b582d83fac5d1d1
2015-07-11 17:35 - 2015-07-11 17:56 - 00000000 ____D C:\iTunes
2015-07-11 17:25 - 2015-07-11 17:25 - 00000000 ___RD C:\Users\kaichou\SkyDrive
2015-07-11 07:12 - 2015-07-11 07:12 - 00000000 ____D C:\Users\kaichou\Documents\Symantec
2015-07-11 05:40 - 2015-07-11 05:46 - 00000000 ____D C:\2dbf313b9352b5e56a97636db0cd
2015-07-10 07:46 - 2015-07-10 07:46 - 00000000 ____D C:\Users\Public\Downloads\Norton
2015-06-04 22:46 - 2015-06-04 22:46 - 00319456 ____N (Microsoft Corporation) C:\Users\kaichou\Documents\DIFxAPI.dll

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-26 21:38 - 2012-07-26 00:28 - 00850046 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-26 21:33 - 2012-07-26 00:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-26 21:31 - 2012-07-25 22:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-07-26 21:00 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\sru
2015-07-26 16:19 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2015-07-26 15:13 - 2012-07-26 00:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-26 11:05 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2015-07-26 02:52 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-07-26 01:04 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\AppCompat
2015-07-25 06:23 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\WinStore
2015-07-25 02:30 - 2012-07-25 22:38 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-07-25 02:22 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-25 02:21 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-07-25 02:19 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-25 02:19 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-25 02:15 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-25 02:15 - 2012-07-26 01:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-25 02:14 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Windows Defender
2015-07-25 02:14 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-07-25 02:06 - 2012-07-26 01:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-25 02:06 - 2012-07-25 22:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-07-25 02:03 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2015-07-25 01:42 - 2012-07-26 00:52 - 00000000 ____D C:\Program Files\Windows Journal
2015-07-25 01:41 - 2012-07-26 01:12 - 00000000 ___RD C:\WINDOWS\ToastData
2015-07-25 01:32 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-07-25 01:32 - 2012-07-26 01:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-07-25 01:32 - 2012-07-25 22:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-07-25 01:31 - 2012-07-25 22:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-07-25 01:25 - 2012-07-26 01:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-23 05:22 - 2012-07-25 22:37 - 00000000 ____D C:\WINDOWS\servicing
2015-07-22 22:59 - 2013-03-16 01:26 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-07-22 22:59 - 2012-11-12 23:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-07-22 18:41 - 2013-03-16 01:22 - 00000000 ____D C:\ProgramData\Intel
2015-07-22 18:41 - 2013-03-16 01:22 - 00000000 ____D C:\Program Files\Intel
2015-07-22 13:27 - 2012-11-12 23:30 - 00000000 ____D C:\ProgramData\Norton
2015-07-22 06:20 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\rescache
2015-07-22 04:21 - 2012-07-25 22:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-07-22 03:10 - 2012-11-12 23:28 - 00000000 ____D C:\ProgramData\Adobe
2015-07-22 02:49 - 2013-03-16 01:20 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-22 02:41 - 2012-11-13 14:44 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-21 23:57 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\restore
2015-07-21 23:54 - 2012-11-12 23:35 - 00000000 ____D C:\ProgramData\Toshiba
2015-07-21 23:42 - 2012-07-26 01:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-07-21 22:49 - 2012-07-26 00:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-07-21 22:34 - 2012-07-26 01:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-07-21 22:09 - 2012-07-26 01:12 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-21 22:09 - 2012-07-26 01:12 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-07-21 19:31 - 2012-07-26 01:13 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template

==================== Files in the root of some directories =======

2015-07-22 20:50 - 2015-07-26 16:43 - 0007612 _____ () C:\Users\kaichou\AppData\Local\Resmon.ResmonCfg
2015-07-21 23:11 - 2015-07-21 23:20 - 0001293 _____ () C:\Users\kaichou\AppData\Local\Temp1.html
2015-07-21 23:30 - 2015-07-21 23:30 - 0004943 _____ () C:\Users\kaichou\AppData\Local\Temp17.html

Files to move or delete:
====================
C:\Users\kaichou\VSUSetup.exe


Some files in TEMP:
====================
C:\Users\kaichou\AppData\Local\Temp\mpam-4a3c1776.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Firmware Boot Manager
---------------------
identifier              {fwbootmgr}
displayorder            {bootmgr}
                        {12002431-5e5b-11e4-bef4-806e6f6e6963}
                        {1200242f-5e5b-11e4-bef4-806e6f6e6963}
                        {12002430-5e5b-11e4-bef4-806e6f6e6963}
timeout                 2

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
integrityservices       Enable
default                 {current}
resumeobject            {1d3d5757-2e22-11e5-bea4-008cfa422575}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Firmware Application (101fffff)
-------------------------------
identifier              {1200242f-5e5b-11e4-bef4-806e6f6e6963}
description             EFI USB Device

Firmware Application (101fffff)
-------------------------------
identifier              {12002430-5e5b-11e4-bef4-806e6f6e6963}
description             EFI DVD/CDROM

Firmware Application (101fffff)
-------------------------------
identifier              {12002431-5e5b-11e4-bef4-806e6f6e6963}
description             EFI Network

Firmware Application (101fffff)
-------------------------------
identifier              {92ea2eef-8e11-11e2-be6c-806e6f6e6963}
description             EFI Network 0 for IPv6 (00-8C-FA-42-25-75)

Firmware Application (101fffff)
-------------------------------
identifier              {a66325ba-3382-11e5-be7e-806e6f6e6963}
description             EFI Network 0 for IPv6 (00-8C-FA-42-25-75)

Firmware Application (101fffff)
-------------------------------
identifier              {a66325bb-3382-11e5-be7e-806e6f6e6963}
description             EFI Network 0 for IPv4 (00-8C-FA-42-25-75)

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.efi
description             Windows 8
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {1d3d5759-2e22-11e5-bea4-008cfa422575}
integrityservices       Enable
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {1d3d5757-2e22-11e5-bea4-008cfa422575}
nx                      OptIn
bootmenupolicy          Standard
detecthal               Yes

Windows Boot Loader
-------------------
identifier              {1d3d5759-2e22-11e5-bea4-008cfa422575}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1d3d575a-2e22-11e5-bea4-008cfa422575}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1d3d575a-2e22-11e5-bea4-008cfa422575}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e85a-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e85b-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-us
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e85b-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e86e-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e86f-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e86f-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3d12e879-931f-11e2-be72-c0d962485258}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e87a-931f-11e2-be72-c0d962485258}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{3d12e87a-931f-11e2-be72-c0d962485258}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Resume from Hibernate
---------------------
identifier              {1d3d5757-2e22-11e5-bea4-008cfa422575}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {1d3d5759-2e22-11e5-bea4-008cfa422575}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e85e-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e865-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e870-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e86e-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {3d12e877-931f-11e2-be72-c0d962485258}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e879-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {89287081-8e11-11e2-a327-008cfa422575}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {3d12e85a-931f-11e2-be72-c0d962485258}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\memtest.efi
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 No

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {1d3d5752-2e22-11e5-bea4-008cfa422575}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {1d3d575a-2e22-11e5-bea4-008cfa422575}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e85b-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e867-931f-11e2-be72-c0d962485258}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {3d12e86f-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3d12e872-931f-11e2-be72-c0d962485258}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {3d12e87a-931f-11e2-be72-c0d962485258}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi



LastRegBack: 2015-07-26 09:33

==================== End of log ============================



#8 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 12:11 AM

Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-07-2015
Ran by kaichou at 2015-07-26 21:49:13
Running from E:\
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-929268618-902340300-2114106167-500 - Administrator - Disabled)
Guest (S-1-5-21-929268618-902340300-2114106167-501 - Limited - Disabled)
kaichou (S-1-5-21-929268618-902340300-2114106167-1001 - Administrator - Enabled) => C:\Users\kaichou

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.6 - Atheros Communications Inc.)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Combined Community Codec Pack 2014-07-13 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2014.07.13.0 - CCCP Project)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Gardenscapes: Mansion Makeover (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{9EBB95BB-503E-4363-B8C8-75ADE9044A5B}) (Version: 10.3.5890.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 en-US)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
Origin (HKLM-x32\...\Origin) (Version: 9.0.15.60 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6794 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.5 - Synaptics Incorporated)
Toshiba App Place (HKLM-x32\...\{ED3CBA78-488F-4E8C-B33F-8E3BF4DDB4D2}) (Version: 1.0.6.3 - Toshiba)
TOSHIBA Application Installer (HKLM-x32\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.4 - TOSHIBA)
TOSHIBA Audio Enhancement (HKLM\...\{F2DE0088-CF05-4DAB-AC4D-9D2C4D657456}) (Version: 1.0.2.8 - TOSHIBA Corporation)
Toshiba Book Place (HKLM-x32\...\{24B45620-22B6-4E4A-B836-FF30A0B0404E}) (Version: 3.1.9534 - K-NFB Reading Technology, Inc.)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.02.01.6407 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.0.6415 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6425.01 - Toshiba Corporation)
TOSHIBA HDD Accelerator (HKLM\...\{DB4D9937-0B14-4EF1-BF9A-BB7E3B9DCB04}) (Version: 1.1.0001 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM-x32\...\{B1786E63-2127-42C9-95A3-146E5F727BF1}) (Version: v1.0.0.8 - TOSHIBA Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.8.17.640104 - Toshiba Corporation)
TOSHIBA Quality Application (HKLM-x32\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.8 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.2.0.54043005 - Toshiba Corporation)
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.2.2.00 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM\...\{FBFCEEA5-96EA-4C8E-9262-43CBBEBAE413}) (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0014 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0002.32002 - Toshiba Corporation)
TOSHIBA User's Guide (HKLM-x32\...\{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 - TOSHIBA)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.1.0.12-A - Toshiba Corporation)
TOSHIBARegistration (HKLM-x32\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.1.6 - TOSHIBA)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.9.7 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
WinRAR 5.30 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.1 - win.rar GmbH)
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

26-07-2015 20:26:47 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-25 22:26 - 2015-07-22 00:07 - 00000768 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1    localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {117A4F57-79B3-416B-8E62-E4971D363FBC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {53FB4963-FF29-40FC-AA97-89D44EB79225} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
Task: {5AF2A8DA-898E-4DC6-9D93-F1C549F45A4A} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-07-31] (TOSHIBA Corporation)
Task: {5B162978-F448-4340-A2EF-A13B1B5FBA07} - System32\Tasks\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2} => pcalua.exe -a C:\Users\kaichou\Desktop\win64_153336.exe -d C:\Users\kaichou\Desktop
Task: {9908559F-ABFC-4C24-AB08-F38BA3E17A63} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-22] (Adobe Systems Incorporated)
Task: {B5AC388F-91D4-4C0A-B339-16A07492E00F} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe
Task: {C27EBEE4-8CC5-45A8-AFD2-1278984BDB2D} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe
Task: {D065B5B6-DDD8-4CB7-A75A-BA3521C1DE1B} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {F76CB99E-45CB-4959-BCEC-B35AACD19963} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "UseAlternateShell"="1"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-929268618-902340300-2114106167-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Innovation\Aqua.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: Intel® Capability Licensing Service Interface => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: taisregispinger => 2
MSCONFIG\Services: TMachInfo => 3
MSCONFIG\Services: TOSHIBA eco Utility Service => 2
MSCONFIG\Services: UNS => 2
HKLM\...\StartupApproved\Run: => "TCrdMain"
HKLM\...\StartupApproved\Run: => "TODDMain"
HKLM\...\StartupApproved\Run: => "TosWaitSrv"
HKLM\...\StartupApproved\Run32: => "ToshibaAppPlace"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "TosWaitSrv"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-929268618-902340300-2114106167-1001\...\StartupApproved\Run: => "uTorrent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C42C9C11-7201-4803-8F22-D676678AA92C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ED8E71CD-9D55-4CA3-9A00-B8C13E88D5B7}] => (Allow) LPort=2869
FirewallRules: [{80A23B66-0313-4174-83CC-A33F322A58B9}] => (Allow) LPort=1900
FirewallRules: [{DE66961D-A133-461D-BF63-B82D04ADE15B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{97747604-4D7D-4B55-B2BD-4987A24B6202}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{298FEBA4-B9A9-498B-9D47-D02D31D6AABB}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{DAA4FAE2-3F6F-4FD2-B9C5-042FE58167C1}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{5DC083CF-726C-4BEB-ADF8-0F3E2E0332F7}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D28CDABB-F732-4A15-A94E-D839C139B267}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft Kernel Debug Network Adapter
Description: Microsoft Kernel Debug Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kdnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TOSHIBA Web Camera - HD
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/26/2015 09:20:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 6.2.9200.16628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1314

Start Time: 01d0c80c13afb7d1

Termination Time: 31

Application Path: C:\WINDOWS\explorer.exe

Report Id: ae771bfc-3416-11e5-be80-008cfa422575

Faulting package full name:

Faulting package-relative application ID:

Error: (07/26/2015 07:24:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 39.0.0.5659, time stamp: 0x55934d06
Faulting module name: mozalloc.dll, version: 39.0.0.5659, time stamp: 0x55933a83
Exception code: 0x80000003
Fault offset: 0x00001aa1
Faulting process id: 0xaf4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (07/26/2015 06:29:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: explorer.exe, version: 6.2.9200.16628, time stamp: 0x51a94434
Faulting module name: DUI70.dll, version: 6.2.9200.16384, time stamp: 0x50108e6a
Exception code: 0xc0000005
Fault offset: 0x0000000000002ceb
Faulting process id: 0xdf0
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3
Faulting package full name: explorer.exe4
Faulting package-relative application ID: explorer.exe5

Error: (07/26/2015 05:20:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 39.0.0.5659, time stamp: 0x55934d06
Faulting module name: NPSWF32_18_0_0_209.dll, version: 18.0.0.209, time stamp: 0x55a1efba
Exception code: 0x80000003
Fault offset: 0x003624bd
Faulting process id: 0xf60
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (07/26/2015 04:36:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program helppane.exe version 6.2.9200.16451 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: e40

Start Time: 01d0c7fba0842f3c

Termination Time: 18

Application Path: C:\Windows\helppane.exe

Report Id: 1fb8bd04-33ef-11e5-be80-008cfa422575

Faulting package full name:

Faulting package-relative application ID:

Error: (07/26/2015 04:10:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 6.2.9200.16628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 638

Start Time: 01d0c7f1908d2291

Termination Time: 137

Application Path: C:\WINDOWS\explorer.exe

Report Id: 1fe0c4c1-33eb-11e5-be80-008cfa422575

Faulting package full name:

Faulting package-relative application ID:

Error: (07/26/2015 03:42:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mmc.exe, version: 6.2.9200.16496, time stamp: 0x50ece2e8
Faulting module name: KERNELBASE.dll, version: 6.2.9200.17366, time stamp: 0x554d4531
Exception code: 0x00000000
Fault offset: 0x000000000004aea8
Faulting process id: 0x280
Faulting application start time: 0xmmc.exe0
Faulting application path: mmc.exe1
Faulting module path: mmc.exe2
Report Id: mmc.exe3
Faulting package full name: mmc.exe4
Faulting package-relative application ID: mmc.exe5

Error: (07/26/2015 11:17:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KAICHOU6464)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (07/26/2015 11:17:58 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 16.4.4206.722 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 10bc

Start Time: 01d0c7cd97994a77

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: a17d78ef-33c2-11e5-be80-008cfa422575

Faulting package full name: microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe

Faulting package-relative application ID: Microsoft.WindowsLive.Mail

Error: (07/26/2015 10:59:46 AM) (Source: TOSHIBA Service Station) (EventID: 0) (User: )
Description: TSS Load: could not communicate with TMachInfo service


System errors:
=============
Error: (07/26/2015 09:45:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Windows Media Player Network Sharing Service service depends on the Windows Search service which failed to start because of the following error:
%%1058

Error: (07/26/2015 09:43:51 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (07/26/2015 09:43:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Location Awareness service depends on the DHCP Client service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Location Awareness service depends on the DHCP Client service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub System service which failed to start because of the following error:
%%31

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
%%1068

Error: (07/26/2015 09:43:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Store Interface Service service depends on the NSI Proxy Service Driver service which failed to start because of the following error:
%%31


Microsoft Office:
=========================
Error: (07/26/2015 09:20:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: explorer.exe6.2.9200.16628131401d0c80c13afb7d131C:\WINDOWS\explorer.exeae771bfc-3416-11e5-be80-008cfa422575

Error: (07/26/2015 07:24:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe39.0.0.565955934d06mozalloc.dll39.0.0.565955933a838000000300001aa1af401d0c813084045afC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll91d0ba00-3406-11e5-be80-008cfa422575

Error: (07/26/2015 06:29:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe6.2.9200.1662851a94434DUI70.dll6.2.9200.1638450108e6ac00000050000000000002cebdf001d0c7fcf8f7319aC:\WINDOWS\explorer.exeC:\WINDOWS\SYSTEM32\DUI70.dllf1c7e435-33fe-11e5-be80-008cfa422575

Error: (07/26/2015 05:20:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe39.0.0.565955934d06NPSWF32_18_0_0_209.dll18.0.0.20955a1efba80000003003624bdf6001d0c801d0649c64C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll5892367a-33f5-11e5-be80-008cfa422575

Error: (07/26/2015 04:36:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: helppane.exe6.2.9200.16451e4001d0c7fba0842f3c18C:\Windows\helppane.exe1fb8bd04-33ef-11e5-be80-008cfa422575

Error: (07/26/2015 04:10:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: explorer.exe6.2.9200.1662863801d0c7f1908d2291137C:\WINDOWS\explorer.exe1fe0c4c1-33eb-11e5-be80-008cfa422575

Error: (07/26/2015 03:42:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mmc.exe6.2.9200.1649650ece2e8KERNELBASE.dll6.2.9200.17366554d453100000000000000000004aea828001d0c7f2b50cd682C:\WINDOWS\system32\mmc.exeC:\WINDOWS\system32\KERNELBASE.dll98a21d2f-33e7-11e5-be80-008cfa422575

Error: (07/26/2015 11:17:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KAICHOU6464)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2144927142

Error: (07/26/2015 11:17:58 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe16.4.4206.72210bc01d0c7cd97994a774294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exea17d78ef-33c2-11e5-be80-008cfa422575microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbweMicrosoft.WindowsLive.Mail

Error: (07/26/2015 10:59:46 AM) (Source: TOSHIBA Service Station) (EventID: 0) (User: )
Description: TSS Load: could not communicate with TMachInfo service


==================== Memory info ===========================

Processor: Intel® Celeron® CPU 1000M @ 1.80GHz
Percentage of memory in use: 10%
Total physical RAM: 8076.21 MB
Available physical RAM: 7195.94 MB
Total Virtual: 16268.21 MB
Available Virtual: 15414.66 MB

==================== Drives ================================

Drive c: (TI10657300E) (Fixed) (Total:286.43 GB) (Free:220.16 GB) NTFS
Drive e: (RECOVERY) (Removable) (Total:7.29 GB) (Free:7.14 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 7.3 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End of log ============================



#9 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 02:41 PM

So I think my laptop is part of a botnet.

 

I logged in today and found out I joined a homegroup and had my file sharing enabled.



#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 27 July 2015 - 03:12 PM

Please run this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> DefaultScope {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
2015-07-24 06:49 - 2015-07-24 06:49 - 27457024 _____ C:\WINDOWS\system32\SETB854.tmp
C:\Users\kaichou\DMI9156.tmp
2015-07-20 23:31 - 2015-07-20 23:32 - 00008130 _____ C:\Users\kaichou\REVCE42.tmp
2015-07-21 23:11 - 2015-07-21 23:20 - 0001293 _____ () C:\Users\kaichou\AppData\Local\Temp1.html
2015-07-21 23:30 - 2015-07-21 23:30 - 0004943 _____ () C:\Users\kaichou\AppData\Local\Temp17.html
C:\Users\kaichou\VSUSetup.exe
C:\Users\kaichou\AppData\Local\Temp\mpam-4a3c1776.exe
Task: {5B162978-F448-4340-A2EF-A13B1B5FBA07} - System32\Tasks\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2} => pcalua.exe -a C:\Users\kaichou\Desktop\win64_153336.exe -d C:\Users\kaichou\Desktop
Folder: C:\44d69fd5823f4a02e07f479489
Folder: C:\Users\kaichou\scoped_dir2940_29527
Folder: C:\Users\kaichou\etilqs_ZY0fpoa2dZJ9aX5
Folder: C:\Users\kaichou\etilqs_VaA1N1XOnzThY5C
Folder: C:\Users\kaichou\scoped_dir3172_19127
Folder: C:\Users\kaichou\scoped_dir2796_26746
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#11 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 03:21 PM

Fix result of Farbar Recovery Scan Tool (x64) Version:26-07-2015
Ran by kaichou at 2015-07-27 13:18:04 Run:1
Running from C:\Users\kaichou\Desktop
Loaded Profiles: kaichou (Available Profiles: kaichou)
Boot Mode: Normal
==============================================

fixlist content:
*****************
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> DefaultScope {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
SearchScopes: HKU\S-1-5-21-929268618-902340300-2114106167-1001 -> {57E20AB1-B2C2-48A7-A68E-07BC126459D3} URL =
2015-07-24 06:49 - 2015-07-24 06:49 - 27457024 _____ C:\WINDOWS\system32\SETB854.tmp
C:\Users\kaichou\DMI9156.tmp
2015-07-20 23:31 - 2015-07-20 23:32 - 00008130 _____ C:\Users\kaichou\REVCE42.tmp
2015-07-21 23:11 - 2015-07-21 23:20 - 0001293 _____ () C:\Users\kaichou\AppData\Local\Temp1.html
2015-07-21 23:30 - 2015-07-21 23:30 - 0004943 _____ () C:\Users\kaichou\AppData\Local\Temp17.html
C:\Users\kaichou\VSUSetup.exe
C:\Users\kaichou\AppData\Local\Temp\mpam-4a3c1776.exe
Task: {5B162978-F448-4340-A2EF-A13B1B5FBA07} - System32\Tasks\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2} => pcalua.exe -a C:\Users\kaichou\Desktop\win64_153336.exe -d C:\Users\kaichou\Desktop
Folder: C:\44d69fd5823f4a02e07f479489
Folder: C:\Users\kaichou\scoped_dir2940_29527
Folder: C:\Users\kaichou\etilqs_ZY0fpoa2dZJ9aX5
Folder: C:\Users\kaichou\etilqs_VaA1N1XOnzThY5C
Folder: C:\Users\kaichou\scoped_dir3172_19127
Folder: C:\Users\kaichou\scoped_dir2796_26746
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
HKU\S-1-5-21-929268618-902340300-2114106167-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-929268618-902340300-2114106167-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{57E20AB1-B2C2-48A7-A68E-07BC126459D3}" => key removed successfully
HKCR\CLSID\{57E20AB1-B2C2-48A7-A68E-07BC126459D3} => key not found.
C:\WINDOWS\system32\SETB854.tmp => moved successfully.
C:\Users\kaichou\DMI9156.tmp => moved successfully.
C:\Users\kaichou\REVCE42.tmp => moved successfully.
C:\Users\kaichou\AppData\Local\Temp1.html => moved successfully.
C:\Users\kaichou\AppData\Local\Temp17.html => moved successfully.
C:\Users\kaichou\VSUSetup.exe => moved successfully.
C:\Users\kaichou\AppData\Local\Temp\mpam-4a3c1776.exe => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B162978-F448-4340-A2EF-A13B1B5FBA07}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B162978-F448-4340-A2EF-A13B1B5FBA07}" => key removed successfully
C:\Windows\System32\Tasks\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5FEC280B-DAE3-44F5-8852-B5E3249A4EA2}" => key removed successfully

========================= Folder: C:\44d69fd5823f4a02e07f479489 ========================

2015-07-23 00:51 - 2015-02-14 10:23 - 5376953 _____ () C:\44d69fd5823f4a02e07f479489\Windows8-RT-KB3023217-x64.cab
2015-07-23 00:51 - 2015-02-14 10:28 - 0000447 _____ () C:\44d69fd5823f4a02e07f479489\Windows8-RT-KB3023217-x64.xml
2015-07-23 00:51 - 2015-02-14 10:28 - 0000514 _____ () C:\44d69fd5823f4a02e07f479489\Windows8-RT-KB3023217-x64-pkgProperties.txt
2015-07-23 00:50 - 2015-02-14 10:33 - 0183254 _____ () C:\44d69fd5823f4a02e07f479489\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\Users\kaichou\scoped_dir2940_29527 ========================

2015-07-21 14:52 - 2015-07-21 14:56 - 0006144 _____ () C:\Users\kaichou\scoped_dir2940_29527\Cookies
2015-07-21 14:52 - 2015-07-21 14:56 - 0004640 _____ () C:\Users\kaichou\scoped_dir2940_29527\Cookies-journal
2015-07-21 14:55 - 2015-07-21 14:57 - 0045056 _____ () C:\Users\kaichou\scoped_dir2940_29527\data_0
2015-07-21 14:55 - 2015-07-21 14:57 - 0270336 _____ () C:\Users\kaichou\scoped_dir2940_29527\data_1
2015-07-21 14:55 - 2015-07-21 14:57 - 1056768 _____ () C:\Users\kaichou\scoped_dir2940_29527\data_2
2015-07-21 14:55 - 2015-07-21 14:57 - 4202496 _____ () C:\Users\kaichou\scoped_dir2940_29527\data_3
2015-07-21 14:56 - 2015-07-21 14:56 - 0200860 _____ () C:\Users\kaichou\scoped_dir2940_29527\f_000001
2015-07-21 14:56 - 2015-07-21 14:56 - 0098412 _____ () C:\Users\kaichou\scoped_dir2940_29527\f_000002
2015-07-21 14:55 - 2015-07-21 14:55 - 0524656 _____ () C:\Users\kaichou\scoped_dir2940_29527\index
2015-07-21 14:49 - 2015-07-21 14:49 - 0000000 ____D () C:\Users\kaichou\scoped_dir2940_29527\Dictionaries
2015-07-21 14:52 - 2015-07-21 14:52 - 0000000 ____D () C:\Users\kaichou\scoped_dir2940_29527\GPUCache
2015-07-21 14:52 - 2015-07-21 14:52 - 0008192 _____ () C:\Users\kaichou\scoped_dir2940_29527\GPUCache\data_0
2015-07-21 14:52 - 2015-07-21 14:52 - 0270336 _____ () C:\Users\kaichou\scoped_dir2940_29527\GPUCache\data_1
2015-07-21 14:52 - 2015-07-21 14:52 - 0008192 _____ () C:\Users\kaichou\scoped_dir2940_29527\GPUCache\data_2
2015-07-21 14:52 - 2015-07-21 14:52 - 0008192 _____ () C:\Users\kaichou\scoped_dir2940_29527\GPUCache\data_3
2015-07-21 14:52 - 2015-07-21 14:52 - 0262512 _____ () C:\Users\kaichou\scoped_dir2940_29527\GPUCache\index
2015-07-21 14:55 - 2015-07-21 14:55 - 0000000 ____D () C:\Users\kaichou\scoped_dir2940_29527\Local Storage
2015-07-21 14:55 - 2015-07-21 14:56 - 0021504 _____ () C:\Users\kaichou\scoped_dir2940_29527\Local Storage\http_127.0.0.1_49792.localstorage
2015-07-21 14:55 - 2015-07-21 14:56 - 0003608 _____ () C:\Users\kaichou\scoped_dir2940_29527\Local Storage\http_127.0.0.1_49792.localstorage-journal

====== End of Folder: ======


========================= Folder: C:\Users\kaichou\etilqs_ZY0fpoa2dZJ9aX5 ========================

 => is not folder.

========================= Folder: C:\Users\kaichou\etilqs_VaA1N1XOnzThY5C ========================

 => is not folder.

========================= Folder: C:\Users\kaichou\scoped_dir3172_19127 ========================

2015-07-20 22:57 - 2015-07-20 23:00 - 0006144 _____ () C:\Users\kaichou\scoped_dir3172_19127\Cookies
2015-07-20 22:57 - 2015-07-20 23:00 - 0004640 _____ () C:\Users\kaichou\scoped_dir3172_19127\Cookies-journal
2015-07-20 22:59 - 2015-07-20 23:00 - 0045056 _____ () C:\Users\kaichou\scoped_dir3172_19127\data_0
2015-07-20 22:59 - 2015-07-20 23:00 - 0270336 _____ () C:\Users\kaichou\scoped_dir3172_19127\data_1
2015-07-20 22:59 - 2015-07-20 23:00 - 1056768 _____ () C:\Users\kaichou\scoped_dir3172_19127\data_2
2015-07-20 22:59 - 2015-07-20 23:00 - 4202496 _____ () C:\Users\kaichou\scoped_dir3172_19127\data_3
2015-07-20 23:00 - 2015-07-20 23:00 - 0200860 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000001
2015-07-20 23:00 - 2015-07-20 23:00 - 0098412 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000002
2015-07-20 23:00 - 2015-07-20 23:00 - 0022542 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000003
2015-07-20 23:00 - 2015-07-20 23:00 - 0022542 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000004
2015-07-20 23:00 - 2015-07-20 23:00 - 0071170 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000005
2015-07-20 23:00 - 2015-07-20 23:00 - 0018393 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000006
2015-07-20 23:00 - 2015-07-20 23:00 - 0201440 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000007
2015-07-20 23:00 - 2015-07-20 23:00 - 0034033 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000008
2015-07-20 23:00 - 2015-07-20 23:00 - 0034700 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000009
2015-07-20 23:00 - 2015-07-20 23:00 - 0086494 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000a
2015-07-20 23:00 - 2015-07-20 23:00 - 0085537 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000b
2015-07-20 23:00 - 2015-07-20 23:00 - 0030927 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000c
2015-07-20 23:00 - 2015-07-20 23:00 - 0017907 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000d
2015-07-20 23:00 - 2015-07-20 23:00 - 0045662 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000e
2015-07-20 23:00 - 2015-07-20 23:00 - 0045025 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00000f
2015-07-20 23:00 - 2015-07-20 23:00 - 0073397 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000010
2015-07-20 23:00 - 2015-07-20 23:00 - 0201440 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000011
2015-07-20 23:00 - 2015-07-20 23:00 - 0200860 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000012
2015-07-20 23:00 - 2015-07-20 23:00 - 0044004 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000013
2015-07-20 23:00 - 2015-07-20 23:00 - 0096072 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000014
2015-07-20 23:00 - 2015-07-20 23:00 - 0182636 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000015
2015-07-20 23:00 - 2015-07-20 23:00 - 0181724 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000016
2015-07-20 23:00 - 2015-07-20 23:00 - 0098412 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000017
2015-07-20 23:00 - 2015-07-20 23:00 - 0096976 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000018
2015-07-20 23:00 - 2015-07-20 23:00 - 0201284 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_000019
2015-07-20 23:00 - 2015-07-20 23:00 - 0088803 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00001a
2015-07-20 23:00 - 2015-07-20 23:00 - 0021740 _____ () C:\Users\kaichou\scoped_dir3172_19127\f_00001b
2015-07-20 22:59 - 2015-07-20 22:59 - 0524656 _____ () C:\Users\kaichou\scoped_dir3172_19127\index
2015-07-20 22:54 - 2015-07-20 22:54 - 0000000 ____D () C:\Users\kaichou\scoped_dir3172_19127\Dictionaries
2015-07-20 22:57 - 2015-07-20 22:57 - 0000000 ____D () C:\Users\kaichou\scoped_dir3172_19127\GPUCache
2015-07-20 22:57 - 2015-07-20 22:57 - 0008192 _____ () C:\Users\kaichou\scoped_dir3172_19127\GPUCache\data_0
2015-07-20 22:57 - 2015-07-20 22:57 - 0270336 _____ () C:\Users\kaichou\scoped_dir3172_19127\GPUCache\data_1
2015-07-20 22:57 - 2015-07-20 22:57 - 0008192 _____ () C:\Users\kaichou\scoped_dir3172_19127\GPUCache\data_2
2015-07-20 22:57 - 2015-07-20 22:57 - 0008192 _____ () C:\Users\kaichou\scoped_dir3172_19127\GPUCache\data_3
2015-07-20 22:57 - 2015-07-20 22:57 - 0262512 _____ () C:\Users\kaichou\scoped_dir3172_19127\GPUCache\index
2015-07-20 22:59 - 2015-07-20 22:59 - 0000000 ____D () C:\Users\kaichou\scoped_dir3172_19127\Local Storage
2015-07-20 22:59 - 2015-07-20 23:00 - 0021504 _____ () C:\Users\kaichou\scoped_dir3172_19127\Local Storage\http_127.0.0.1_49286.localstorage
2015-07-20 22:59 - 2015-07-20 23:00 - 0003608 _____ () C:\Users\kaichou\scoped_dir3172_19127\Local Storage\http_127.0.0.1_49286.localstorage-journal

====== End of Folder: ======


========================= Folder: C:\Users\kaichou\scoped_dir2796_26746 ========================

2015-07-20 15:29 - 2015-07-20 15:31 - 0006144 _____ () C:\Users\kaichou\scoped_dir2796_26746\Cookies
2015-07-20 15:29 - 2015-07-20 15:33 - 0004640 _____ () C:\Users\kaichou\scoped_dir2796_26746\Cookies-journal
2015-07-20 15:33 - 2015-07-20 15:34 - 0045056 _____ () C:\Users\kaichou\scoped_dir2796_26746\data_0
2015-07-20 15:33 - 2015-07-20 15:34 - 0270336 _____ () C:\Users\kaichou\scoped_dir2796_26746\data_1
2015-07-20 15:33 - 2015-07-20 15:34 - 1056768 _____ () C:\Users\kaichou\scoped_dir2796_26746\data_2
2015-07-20 15:33 - 2015-07-20 15:34 - 4202496 _____ () C:\Users\kaichou\scoped_dir2796_26746\data_3
2015-07-20 15:33 - 2015-07-20 15:33 - 0098412 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000001
2015-07-20 15:33 - 2015-07-20 15:33 - 0200860 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000002
2015-07-20 15:33 - 2015-07-20 15:33 - 0020571 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000003
2015-07-20 15:34 - 2015-07-20 15:34 - 0018393 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000004
2015-07-20 15:34 - 2015-07-20 15:34 - 0020571 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000005
2015-07-20 15:34 - 2015-07-20 15:34 - 0085537 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000006
2015-07-20 15:34 - 2015-07-20 15:34 - 0201440 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000007
2015-07-20 15:34 - 2015-07-20 15:34 - 0096072 _____ () C:\Users\kaichou\scoped_dir2796_26746\f_000008
2015-07-20 15:33 - 2015-07-20 15:33 - 0524656 _____ () C:\Users\kaichou\scoped_dir2796_26746\index
2015-07-20 15:29 - 2015-07-20 15:29 - 0000000 ____D () C:\Users\kaichou\scoped_dir2796_26746\Dictionaries
2015-07-20 15:29 - 2015-07-20 15:29 - 0000000 ____D () C:\Users\kaichou\scoped_dir2796_26746\GPUCache
2015-07-20 15:29 - 2015-07-20 15:29 - 0008192 _____ () C:\Users\kaichou\scoped_dir2796_26746\GPUCache\data_0
2015-07-20 15:29 - 2015-07-20 15:29 - 0270336 _____ () C:\Users\kaichou\scoped_dir2796_26746\GPUCache\data_1
2015-07-20 15:29 - 2015-07-20 15:29 - 0008192 _____ () C:\Users\kaichou\scoped_dir2796_26746\GPUCache\data_2
2015-07-20 15:29 - 2015-07-20 15:29 - 0008192 _____ () C:\Users\kaichou\scoped_dir2796_26746\GPUCache\data_3
2015-07-20 15:29 - 2015-07-20 15:29 - 0262512 _____ () C:\Users\kaichou\scoped_dir2796_26746\GPUCache\index
2015-07-20 15:33 - 2015-07-20 15:33 - 0000000 ____D () C:\Users\kaichou\scoped_dir2796_26746\Local Storage
2015-07-20 15:33 - 2015-07-20 15:33 - 0003072 _____ () C:\Users\kaichou\scoped_dir2796_26746\Local Storage\http_127.0.0.1_53415.localstorage
2015-07-20 15:33 - 2015-07-20 15:33 - 0000512 _____ () C:\Users\kaichou\scoped_dir2796_26746\Local Storage\http_127.0.0.1_53415.localstorage-journal

====== End of Folder: ======


==== End of Fixlog 13:18:17 ====

 

 

 

Thank you!

 

 

I hope when I turn off my laptop or idle, the problems won't somehow magically come back.



#12 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 27 July 2015 - 03:28 PM

Do you have any idea what these are?

C:\Users\kaichou\scoped_dir2940_29527
C:\Users\kaichou\scoped_dir3172_19127
C:\Users\kaichou\scoped_dir2796_26746


Please do this.

===================================================

Virustotal Online Virus Scanner

--------------------
  • Please go to Virustotal
  • Select Choose File
  • Navigate to the following file (if multiple files then one at a time), double click on it so the file name is populated, then click Scan it!
  • IMPORTANT! If the file is listed as already analyzed, click on Reanalyse file now button.

C:\Users\kaichou\etilqs_ZY0fpoa2dZJ9aX5
C:\Users\kaichou\etilqs_VaA1N1XOnzThY5C

  • Once completed, highlight the information in the address bar and copy then paste the link in your reply
virustotal.jpg

===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Recognize folders?
  • Virustotal link

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#13 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 03:43 PM

Folders:

 

I have no idea... the date modified for those folders was on 7/20/2015. I "refreshed" my laptop on the 21st.

 

Virus total:

 

https://www.virustotal.com/en/file/076a27c79e5ace2a3d47f9dd2e83e4ff6ea8872b3c2218f66c92b89b55f36560/analysis/1438029378/

 

https://www.virustotal.com/en/file/4c3d4be7d5ab8d64fe227735bdd75ca4649fec98eedb3797f18e857c11d4303e/analysis/1438029410/



#14 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,531 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:47 PM

Posted 27 July 2015 - 04:00 PM

Let's delete those folders.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
C:\Users\kaichou\scoped_dir2940_29527
C:\Users\kaichou\scoped_dir3172_19127
C:\Users\kaichou\scoped_dir2796_26746
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlist
  • Are you experiencing any performance abnormalities?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#15 jeffpho54

jeffpho54
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 27 July 2015 - 04:28 PM

Fix result of Farbar Recovery Scan Tool (x64) Version:26-07-2015
Ran by kaichou at 2015-07-27 14:21:03 Run:2
Running from C:\Users\kaichou\Desktop
Loaded Profiles: kaichou (Available Profiles: kaichou)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\Users\kaichou\scoped_dir2940_29527
C:\Users\kaichou\scoped_dir3172_19127
C:\Users\kaichou\scoped_dir2796_26746
*****************

C:\Users\kaichou\scoped_dir2940_29527 => moved successfully.
C:\Users\kaichou\scoped_dir3172_19127 => moved successfully.
C:\Users\kaichou\scoped_dir2796_26746 => moved successfully.

==== End of Fixlog 14:21:04 ====

 

Performance issues:

 

I can't really tell yet.

 

*Just checked Performance monitor and I saw a file AM_Delta.exe when I was about to click on it, it terminated and disappeared.*






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users