Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Skype Hijack link


  • This topic is locked This topic is locked
3 replies to this topic

#1 gary oak fj

gary oak fj

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:07 PM

Posted 15 August 2015 - 06:50 PM

2 weeks ago i accidentally clicked on a malicious link sent by a friend who had their skype hijacked, led to a weight loss page but installed a keylogger onto my system. i managed to get rid of the keylogger (program installed from something called Proxy Labs and registry infection would recreate files that were supposedly deleted, had to use Unlocker to manually delete the files and ended up wiping my hard drive to be safe) back then, but even though i changed the password, My account was used to send a new link to what i think is the same page to all of my skype friends. the link i clicked on was t.co originally, but the one that was sent through my account was https://www.linkedin...id=johnsmith("johnsmith" being the username respective to who the link was sent to, keep in mind i changed this to keep the privacy of the user). the strange thing is, i had a few of them send their task manager processes list to me, but i didn't see anything out of the ordinary, and even 2 of my more tech savvy friends believe nothing is wrong, but 1 of them will have a senior technician look at their machine on monday.

Anyway, I thought i had changed my password after i had wiped my hard drive and had a local technician give me an 'all clear', but someone still had access to my account even after i did that, presumably logging what my skype password was before i wiped the hard drive. i changed my password again and sent a help ticket to Skype customer service. Am i still infected/being logged, and what precautions should my friends take?

 

 

 

I have a FRST and Addition log file as well as a hijackthis.log, but im not seeing the option to attach it to my post, so I'll paste them here. one thing that has me worried is the Hijackthislog shows many of the O23 processes as missing files, even though they're in the folder when i check, and many of the 'missing file' processes were there on a fresh installation of windows, that i initially thought were hijacked processes which prompted me to send in my machine to tech repair in the first place, who told me I was all clean.

 

F R S T:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01
Ran by gary (administrator) on GARY-PC (15-08-2015 18:40:00)
Running from C:\Users\gary\Downloads
Loaded Profiles: gary (Available Profiles: gary)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7161-x64\Dolphin-x64\Dolphin.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7543000 2014-03-04] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1047536 2014-04-08] (MSI)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5889824 2015-07-28] (IObit)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-06-18] (Malwarebytes Corporation)
HKU\S-1-5-21-1332711597-3546667102-3002306719-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7930136 2015-07-30] (SUPERAntiSpyware)
HKU\S-1-5-21-1332711597-3546667102-3002306719-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-1332711597-3546667102-3002306719-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-12] (Valve Corporation)
HKU\S-1-5-21-1332711597-3546667102-3002306719-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53661824 2015-07-28] (Skype Technologies S.A.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-08-03]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-08-04] (IObit)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-04] (Oracle Corporation)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-04-01] (IObit)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-04] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DE5479D9-AD69-4AD6-A7CD-09B8679D79E3}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\oao50hug.default
FF DefaultSearchEngine: DuckDuckGo
FF DefaultSearchEngine.US: DuckDuckGo
FF SelectedSearchEngine: DuckDuckGo
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-08-04] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40620.0\npctrl.dll [2015-06-20] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-08-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40620.0\npctrl.dll [2015-06-19] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-08-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-08-03] (Google Inc.)
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\oao50hug.default\Extensions\iobitascsurfingprotection@iobit.com [2015-08-04]
FF Extension: S3.Google Translator - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\oao50hug.default\Extensions\s3google@translator.xpi [2015-08-05]
FF Extension: uBlock Origin - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\oao50hug.default\Extensions\uBlock0@raymondhill.net.xpi [2015-08-04]
FF Extension: NoScript - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\oao50hug.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-08-04]

Chrome:
=======
CHR Profile: C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-03]
CHR Extension: (Google Drive) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-03]
CHR Extension: (YouTube) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-03]
CHR Extension: (Google Search) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\gary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-03]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-04] (IObit)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 CmdAgent; no ImagePath
S3 cmdvirth; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20672 2015-06-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [797256 2015-06-05] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45856 2015-06-05] (COMODO)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-13] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [251632 2015-07-13] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [178520 2015-07-13] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [168208 2015-07-13] (ESET)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-03-25] (IObit)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104584 2015-06-05] (COMODO)
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-08-15] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [116736 2014-02-19] (Intel Corporation)
S3 MSICDSetup; D:\CDriver64.sys [28984 2009-08-12] (Your Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 NTIOLib_1_0_C; D:\NTIOLib_X64.sys [11888 2011-06-28] (MSI) [File not signed]
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-03-25] (IObit.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-03-25] (IObit.com)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-15 18:40 - 2015-08-15 18:40 - 00014623 _____ C:\Users\gary\Downloads\FRST.txt
2015-08-15 18:39 - 2015-08-15 18:40 - 00000000 ____D C:\FRST
2015-08-15 18:39 - 2015-08-15 18:39 - 02173952 _____ (Farbar) C:\Users\gary\Downloads\FRST64.exe
2015-08-15 15:18 - 2015-08-15 15:18 - 00009462 _____ C:\Windows\SysWOW64\hijackthis.log
2015-08-15 15:06 - 2015-08-15 15:06 - 00000023 _____ C:\Users\gary\Desktop\New Text Document.txt
2015-08-15 15:06 - 2015-08-15 15:06 - 00000000 ____D C:\Users\gary\Desktop\New folder
2015-08-10 15:05 - 2015-08-10 15:05 - 00000000 ____D C:\Users\gary\Downloads\snapper
2015-08-10 15:03 - 2015-08-10 15:03 - 00850446 _____ C:\Users\gary\Downloads\snapper.zip
2015-08-09 22:12 - 2015-08-09 22:12 - 00000000 ____D C:\Users\gary\AppData\Roaming\LolClient
2015-08-09 21:54 - 2015-08-09 21:54 - 00000000 ____D C:\ProgramData\Riot Games
2015-08-09 21:53 - 2015-08-09 21:53 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-08-09 21:53 - 2015-08-09 21:53 - 00000000 ____D C:\Riot Games
2015-08-09 21:53 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-08-09 21:53 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-08-09 21:53 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-08-09 21:52 - 2015-08-09 21:53 - 00000000 ____D C:\Users\gary\AppData\Roaming\Riot Games
2015-08-09 21:51 - 2015-08-09 21:52 - 27864920 _____ (Riot Games) C:\Users\gary\Downloads\LeagueofLegends_NA_Installer_9_15_2014.exe
2015-08-08 23:17 - 2015-08-08 23:17 - 41065455 _____ C:\Users\gary\Downloads\The Vaxeem.mp4
2015-08-07 22:26 - 2015-08-07 22:26 - 00000000 ____D C:\Users\gary\AppData\Roaming\AMD
2015-08-07 22:19 - 2015-08-07 22:19 - 00000000 ____D C:\Users\gary\Documents\Test
2015-08-07 18:46 - 2015-08-15 18:31 - 00000000 ____D C:\Users\gary\AppData\Roaming\Skype
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\Users\gary\Tracing
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\Users\gary\AppData\Local\Skype
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-07 18:45 - 2015-08-07 18:45 - 00002697 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-07 18:45 - 2015-08-07 18:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-07 18:45 - 2015-08-07 18:45 - 00000000 ____D C:\ProgramData\Skype
2015-08-07 18:43 - 2015-08-07 18:43 - 40660096 _____ (Skype Technologies S.A.) C:\Users\gary\Downloads\SkypeSetupFull.exe
2015-08-07 16:04 - 2015-08-07 16:04 - 00000000 ____D C:\Users\gary\AppData\Local\openvr
2015-08-07 15:51 - 2015-08-07 15:51 - 00000219 _____ C:\Users\gary\Desktop\Team Fortress 2.url
2015-08-07 15:34 - 2015-08-07 15:34 - 00001449 _____ C:\Users\gary\Desktop\Skyrim - Shortcut.lnk
2015-08-07 15:31 - 2015-08-07 15:31 - 00000000 ____D C:\Users\gary\Downloads\Immersive Saturation Boost-32064-1-0
2015-08-07 15:31 - 2015-08-07 15:31 - 00000000 ____D C:\Users\gary\Downloads\Grass On Steroids Natural Edition for SFO-33582-2-0b
2015-08-07 15:30 - 2015-08-07 15:30 - 00007283 _____ C:\Users\gary\Downloads\Immersive Saturation Boost-32064-1-0.zip
2015-08-07 15:29 - 2015-08-07 15:29 - 00006023 ____R C:\Users\gary\Downloads\Grass On Steroids Natural Edition for SFO-33582-2-0b.zip
2015-08-06 21:39 - 2015-08-06 21:39 - 00000000 ____D C:\Users\gary\Downloads\fix1
2015-08-06 21:21 - 2015-08-06 21:21 - 00000000 ____D C:\Users\gary\AppData\Roaming\WinRAR
2015-08-06 21:18 - 2015-08-15 12:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-06 21:02 - 2015-08-06 21:02 - 00000000 ____D C:\Users\gary\Desktop\mbar
2015-08-06 21:00 - 2015-08-06 21:00 - 16502728 _____ (Malwarebytes Corp.) C:\Users\gary\Downloads\mbar-1.09.1.1004.exe
2015-08-06 20:54 - 2015-08-06 20:54 - 00000000 ____D C:\ProgramData\Comodo Downloader
2015-08-05 23:08 - 2015-08-15 16:01 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2015-08-05 23:08 - 2015-08-05 23:08 - 00001872 _____ C:\Users\Public\Desktop\COMODO Antivirus.lnk
2015-08-05 23:08 - 2015-08-05 23:08 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2015-08-05 23:08 - 2015-08-05 23:08 - 00000000 ____D C:\ProgramData\Shared Space
2015-08-05 23:07 - 2015-08-07 12:30 - 00000000 ____D C:\Program Files\COMODO
2015-08-05 23:07 - 2015-08-06 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-08-05 23:07 - 2015-08-05 23:10 - 00000000 ____D C:\Users\gary\AppData\Local\Comodo
2015-08-05 23:06 - 2015-08-05 23:08 - 00000000 ____D C:\ProgramData\Comodo
2015-08-05 23:06 - 2015-08-05 23:06 - 226607624 _____ (COMODO) C:\Users\gary\Downloads\cav_installer.exe
2015-08-05 21:36 - 2015-08-05 22:30 - 00024470 _____ C:\Users\gary\Desktop\botnet.txt
2015-08-05 16:00 - 2015-08-05 16:00 - 00081080 _____ C:\Users\gary\Downloads\[rutracker.org].t4791644.torrent
2015-08-05 15:54 - 2015-08-05 15:54 - 00081080 _____ C:\Users\gary\Downloads\SkyrimTheJourney.torrent
2015-08-05 15:53 - 2015-08-05 15:53 - 01996896 _____ (BitTorrent Inc.) C:\Users\gary\Downloads\uTorrent.exe
2015-08-05 15:52 - 2015-08-15 15:32 - 00000000 ____D C:\Program Files\PeerBlock
2015-08-05 15:52 - 2015-08-05 15:52 - 02374320 _____ (PeerBlock, LLC ) C:\Users\gary\Downloads\PeerBlock-Setup_v1.2_r693.exe
2015-08-05 15:52 - 2015-08-05 15:52 - 00001736 _____ C:\Users\gary\Desktop\PeerBlock.lnk
2015-08-05 15:52 - 2015-08-05 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
2015-08-05 15:31 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-08-05 15:31 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-08-05 15:31 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-08-05 15:31 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-08-05 15:31 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-08-05 15:31 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-08-05 15:31 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-08-05 15:30 - 2015-08-05 15:31 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-08-05 15:30 - 2015-08-05 15:30 - 00292184 _____ (Microsoft Corporation) C:\Users\gary\Downloads\dxwebsetup.exe
2015-08-05 15:13 - 2015-08-05 15:13 - 00000979 _____ C:\Users\Public\Desktop\WinRAR.lnk
2015-08-05 15:13 - 2015-08-05 15:13 - 00000000 ____D C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-05 15:13 - 2015-08-05 15:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-05 15:13 - 2015-08-05 15:13 - 00000000 ____D C:\Program Files\WinRAR
2015-08-05 15:11 - 2015-08-05 15:11 - 01959072 _____ C:\Users\gary\Downloads\winrar-x64-53b2.exe
2015-08-05 15:10 - 2015-08-05 15:15 - 42789308 _____ C:\Users\gary\Downloads\fix1.rar
2015-08-05 14:56 - 2015-08-05 14:56 - 05621420 _____ C:\Users\gary\Downloads\npp.6.8.1.Installer.exe
2015-08-05 14:56 - 2015-08-05 14:56 - 00001055 _____ C:\Users\gary\Desktop\Notepad++.lnk
2015-08-05 14:56 - 2015-08-05 14:56 - 00000000 ____D C:\Users\gary\AppData\Roaming\Notepad++
2015-08-05 14:56 - 2015-08-05 14:56 - 00000000 ____D C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-05 14:56 - 2015-08-05 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-05 14:56 - 2015-08-05 14:56 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-08-05 14:29 - 2015-08-05 14:55 - 00000000 ____D C:\Users\gary\AppData\Local\Skyrim
2015-08-05 14:29 - 2015-08-05 14:29 - 00009971 _____ C:\Windows\DirectX.log
2015-08-05 14:29 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-08-05 14:29 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-08-05 14:29 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-08-05 14:29 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-08-05 14:29 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-08-05 14:29 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-08-05 14:29 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-08-05 14:29 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-08-05 14:29 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-08-05 14:29 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-08-05 14:29 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-08-05 14:29 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-08-05 14:29 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-08-05 14:29 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-08-05 14:29 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-08-05 14:29 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-08-05 14:29 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-08-05 14:29 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-08-05 14:29 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-08-05 14:29 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-08-05 14:29 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-08-05 14:29 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-08-05 14:29 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-08-05 14:29 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-08-05 14:29 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-08-05 14:29 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-08-05 14:29 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-08-05 14:29 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-08-05 14:29 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-08-05 14:29 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-08-05 14:29 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-08-05 14:29 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-08-05 14:29 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-08-05 14:29 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-08-05 14:29 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-08-05 14:29 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-08-05 14:29 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-08-05 14:29 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-08-05 14:29 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-08-05 14:29 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-08-05 14:29 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-08-05 14:29 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-08-05 14:29 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-08-05 14:29 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-08-05 14:29 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-08-05 14:29 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-08-05 14:29 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-08-05 14:29 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-08-05 14:29 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-08-05 14:29 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-08-05 14:29 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-08-05 14:29 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-08-05 14:29 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-08-05 14:29 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-08-05 14:29 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-08-05 14:29 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-08-05 14:29 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-08-05 14:29 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-08-05 14:29 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-08-05 14:29 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-08-05 14:29 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-08-05 14:29 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-08-05 14:29 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-08-05 14:29 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-08-05 14:29 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-08-05 14:29 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-08-05 14:29 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-08-05 14:29 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-08-05 14:29 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-08-05 14:29 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-08-05 14:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-08-05 14:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-08-05 14:29 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-08-05 14:29 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-08-05 14:29 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-08-05 14:29 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-08-05 14:29 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-08-05 14:29 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-08-05 14:29 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-08-05 14:29 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-08-05 14:29 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-08-05 14:29 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-08-05 14:29 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-08-05 14:29 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-08-05 14:29 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-08-05 14:29 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-08-05 14:29 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-08-05 14:29 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-08-05 14:29 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-08-05 14:29 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-08-05 14:29 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-08-05 14:29 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-08-05 14:29 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-08-05 14:29 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-08-05 14:29 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-08-05 14:29 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-08-05 14:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-08-05 14:29 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-08-05 14:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-08-05 14:29 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-08-05 14:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-08-05 14:29 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-08-05 14:29 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-08-05 14:29 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-08-05 14:29 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-08-05 14:29 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-08-04 23:06 - 2015-05-01 08:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 23:06 - 2015-05-01 08:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 22:29 - 2015-08-15 15:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-04 22:29 - 2015-08-04 22:29 - 00000967 _____ C:\Users\Public\Desktop\Steam.lnk
2015-08-04 22:29 - 2015-08-04 22:29 - 00000000 ____D C:\Users\gary\AppData\Local\Steam
2015-08-04 22:29 - 2015-08-04 22:29 - 00000000 ____D C:\Users\gary\AppData\Local\CEF
2015-08-04 22:29 - 2015-08-04 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-04 22:28 - 2015-08-04 22:28 - 01476720 _____ C:\Users\gary\Downloads\SteamSetup.exe
2015-08-04 21:53 - 2015-08-04 21:53 - 00000000 ____D C:\Users\gary\Documents\Wii
2015-08-04 21:53 - 2015-08-04 21:53 - 00000000 ____D C:\Users\gary\Documents\Visual Studio 2010
2015-08-04 21:53 - 2015-08-04 21:53 - 00000000 ____D C:\Users\gary\Documents\UnrealTournament
2015-08-04 21:53 - 2015-08-04 21:53 - 00000000 ____D C:\Users\gary\Documents\StateSaves
2015-08-04 21:53 - 2015-06-08 15:49 - 00029854 _____ C:\Users\gary\Documents\gamecube.odt
2015-08-04 21:53 - 2015-06-06 22:06 - 00053512 _____ C:\Users\gary\Documents\cinema final no letterbox.veg
2015-08-04 21:53 - 2015-06-05 21:30 - 00000000 ____D C:\Users\gary\Documents\Themes
2015-08-04 21:53 - 2015-06-04 21:31 - 00075008 _____ C:\Users\gary\Documents\cinema final.veg
2015-08-04 21:53 - 2015-06-04 20:50 - 00045016 _____ C:\Users\gary\Documents\cinema test 7.veg.sfk
2015-08-04 21:53 - 2015-06-04 20:08 - 00058376 _____ C:\Users\gary\Documents\cinema final.veg.bak
2015-08-04 21:53 - 2015-06-04 19:58 - 11507416 _____ C:\Users\gary\Documents\cinema test 7.veg.sfap0
2015-08-04 21:53 - 2015-06-04 19:58 - 00112480 _____ C:\Users\gary\Documents\cinema test 7 nest.veg.sfk
2015-08-04 21:53 - 2015-06-04 19:58 - 00011280 _____ C:\Users\gary\Documents\cinema test 7.veg
2015-08-04 21:53 - 2015-06-04 19:57 - 28777816 _____ C:\Users\gary\Documents\cinema test 7 nest.veg.sfap0
2015-08-04 21:53 - 2015-06-04 19:57 - 00011536 _____ C:\Users\gary\Documents\cinema test 7 nest.veg
2015-08-04 21:53 - 2015-06-04 19:22 - 00037408 _____ C:\Users\gary\Documents\cinema final alt transition.veg
2015-08-04 21:53 - 2015-06-04 19:04 - 17280224 _____ C:\Users\gary\Documents\cinema test 6 part 2.veg.sfap0
2015-08-04 21:53 - 2015-06-04 19:04 - 00168864 _____ C:\Users\gary\Documents\cinema test 6 nest part 2.veg.sfk
2015-08-04 21:53 - 2015-06-04 19:04 - 00067568 _____ C:\Users\gary\Documents\cinema test 6 part 2.veg.sfk
2015-08-04 21:53 - 2015-06-04 19:04 - 00011344 _____ C:\Users\gary\Documents\cinema test 6 part 2.veg
2015-08-04 21:53 - 2015-06-04 19:03 - 43211416 _____ C:\Users\gary\Documents\cinema test 6 nest part 2.veg.sfap0
2015-08-04 21:53 - 2015-06-04 19:02 - 00011544 _____ C:\Users\gary\Documents\cinema test 6 nest part 2.veg
2015-08-04 21:53 - 2015-06-04 18:58 - 17280224 _____ C:\Users\gary\Documents\cinema test 6 part 1.veg.sfap0
2015-08-04 21:53 - 2015-06-04 18:58 - 00067568 _____ C:\Users\gary\Documents\cinema test 6 part 1.veg.sfk
2015-08-04 21:53 - 2015-06-04 18:57 - 00168848 _____ C:\Users\gary\Documents\cinema test 6 nest part 1.veg.sfk
2015-08-04 21:53 - 2015-06-04 18:57 - 00011344 _____ C:\Users\gary\Documents\cinema test 6 part 1.veg
2015-08-04 21:53 - 2015-06-04 18:56 - 43208216 _____ C:\Users\gary\Documents\cinema test 6 nest part 1.veg.sfap0
2015-08-04 21:53 - 2015-06-04 18:56 - 00011544 _____ C:\Users\gary\Documents\cinema test 6 nest part 1.veg
2015-08-04 21:53 - 2015-06-03 18:29 - 00039792 _____ C:\Users\gary\Documents\cinema test 5.veg.sfk
2015-08-04 21:53 - 2015-06-03 18:28 - 10169816 _____ C:\Users\gary\Documents\cinema test 5.veg.sfap0
2015-08-04 21:53 - 2015-06-03 18:28 - 00011152 _____ C:\Users\gary\Documents\cinema test 5.veg
2015-08-04 21:53 - 2015-06-03 18:26 - 00098888 _____ C:\Users\gary\Documents\cinema test 5 nest.veg.sfk
2015-08-04 21:53 - 2015-06-03 18:26 - 00011280 _____ C:\Users\gary\Documents\cinema test 5.veg.bak
2015-08-04 21:53 - 2015-06-03 18:25 - 25297816 _____ C:\Users\gary\Documents\cinema test 5 nest.veg.sfap0
2015-08-04 21:53 - 2015-06-03 18:25 - 00011408 _____ C:\Users\gary\Documents\cinema test 5 nest.veg
2015-08-04 21:53 - 2015-06-03 18:24 - 00011536 _____ C:\Users\gary\Documents\cinema test 5 nest.veg.bak
2015-08-04 21:53 - 2015-06-01 17:21 - 06278616 _____ C:\Users\gary\Documents\cinema test 4.veg.sfap0
2015-08-04 21:53 - 2015-06-01 17:21 - 00024592 _____ C:\Users\gary\Documents\cinema test 4.veg.sfk
2015-08-04 21:53 - 2015-06-01 17:21 - 00011320 _____ C:\Users\gary\Documents\cinema test 4.veg
2015-08-04 21:53 - 2015-06-01 17:20 - 15701016 _____ C:\Users\gary\Documents\cinema test proj nest 4.veg.sfap0
2015-08-04 21:53 - 2015-06-01 17:20 - 00061400 _____ C:\Users\gary\Documents\cinema test proj nest 4.veg.sfk
2015-08-04 21:53 - 2015-06-01 17:19 - 00011416 _____ C:\Users\gary\Documents\cinema test proj nest 4.veg
2015-08-04 21:53 - 2015-06-01 17:16 - 00011544 _____ C:\Users\gary\Documents\cinema test proj nest 4.veg.bak
2015-08-04 21:53 - 2015-05-29 22:57 - 00089848 _____ C:\Users\gary\Documents\cinema test proj nest 3.veg.sfk
2015-08-04 21:53 - 2015-05-29 22:55 - 22984216 _____ C:\Users\gary\Documents\cinema test proj nest 3.veg.sfap0
2015-08-04 21:53 - 2015-05-29 22:55 - 00011544 _____ C:\Users\gary\Documents\cinema test proj nest 3.veg
2015-08-04 21:53 - 2015-05-28 22:24 - 17229016 _____ C:\Users\gary\Documents\test cinema 2.veg.sfap0
2015-08-04 21:53 - 2015-05-28 22:24 - 00067368 _____ C:\Users\gary\Documents\test cinema 2.veg.sfk
2015-08-04 21:53 - 2015-05-28 22:23 - 00011280 _____ C:\Users\gary\Documents\test cinema 2.veg
2015-08-04 21:53 - 2015-05-28 22:05 - 00011280 _____ C:\Users\gary\Documents\test cinema 2.veg.bak
2015-08-04 21:53 - 2015-05-26 22:39 - 00074536 _____ C:\Users\gary\Documents\cinema test proj nest 2.veg.sfk
2015-08-04 21:53 - 2015-05-26 22:32 - 19064216 _____ C:\Users\gary\Documents\cinema test proj nest 2.veg.sfap0
2015-08-04 21:53 - 2015-05-26 22:31 - 00011544 _____ C:\Users\gary\Documents\cinema test proj nest 2.veg
2015-08-04 21:53 - 2015-05-26 22:07 - 00029104 _____ C:\Users\gary\Documents\cinema test proj nest.veg.sfk
2015-08-04 21:53 - 2015-05-26 22:04 - 07433816 _____ C:\Users\gary\Documents\cinema test proj nest.veg.sfap0
2015-08-04 21:53 - 2015-05-26 22:02 - 00011544 _____ C:\Users\gary\Documents\cinema test proj nest.veg
2015-08-04 21:53 - 2015-05-16 14:51 - 05353184 _____ C:\Users\gary\Documents\speed test mc.veg.sfap0
2015-08-04 21:53 - 2015-05-16 14:51 - 00020976 _____ C:\Users\gary\Documents\speed test mc.veg.sfk
2015-08-04 21:53 - 2015-05-16 14:50 - 00011288 _____ C:\Users\gary\Documents\speed test mc.veg
2015-08-04 21:53 - 2015-05-13 21:53 - 00024804 _____ C:\Users\gary\Documents\Study Guide for Final Exam.odt
2015-08-04 21:53 - 2015-05-02 21:18 - 00016980 _____ C:\Users\gary\Documents\FINAL PAPER INSTRUCTIONS(1) (3) (1)-1.odt
2015-08-04 21:53 - 2015-05-02 19:14 - 00020105 _____ C:\Users\gary\Documents\philosophy paper video games.odt
2015-08-04 21:53 - 2015-05-02 02:16 - 00000058 _____ C:\Users\gary\Documents\brokedown.txt
2015-08-04 21:53 - 2015-04-19 23:09 - 00018000 _____ C:\Users\gary\Documents\project m 1.veg
2015-08-04 21:53 - 2015-04-15 22:37 - 00000027 _____ C:\Users\gary\Documents\music timing.txt
2015-08-04 21:53 - 2015-04-06 23:06 - 00023918 _____ C:\Users\gary\Documents\study guide exam 2 edited.odt
2015-08-04 21:53 - 2015-04-04 18:47 - 00049288 _____ C:\Users\gary\Documents\bingo.veg
2015-08-04 21:53 - 2015-04-04 18:26 - 00031496 _____ C:\Users\gary\Documents\bingo.veg.bak
2015-08-04 21:53 - 2015-03-05 19:14 - 00016773 _____ C:\Users\gary\Documents\Response to Assistant Director Interview.odt
2015-08-04 21:53 - 2015-03-05 19:06 - 00016785 _____ C:\Users\gary\Documents\part 3.odt
2015-08-04 21:53 - 2015-03-05 14:33 - 00017725 _____ C:\Users\gary\Documents\Position Announcement.odt
2015-08-04 21:53 - 2015-03-05 14:33 - 00012358 _____ C:\Users\gary\Documents\part 2.ods
2015-08-04 21:53 - 2014-12-10 22:49 - 00026755 _____ C:\Users\gary\Documents\racism.odt
2015-08-04 21:53 - 2014-11-20 11:02 - 00049904 _____ C:\Users\gary\Documents\smash 4.veg
2015-08-04 21:53 - 2014-11-19 23:50 - 00050536 _____ C:\Users\gary\Documents\smash 4.veg.bak
2015-08-04 21:53 - 2014-09-29 20:34 - 00018520 _____ C:\Users\gary\Documents\psyc critique 1.odt
2015-08-04 21:53 - 2014-09-05 18:31 - 00000130 _____ C:\Users\gary\Documents\smaa.txt
2015-08-04 21:53 - 2014-08-19 23:33 - 00024336 _____ C:\Users\gary\Documents\ssbbepisode1.veg
2015-08-04 21:53 - 2014-08-19 15:32 - 00023736 _____ C:\Users\gary\Documents\ssbbepisode1.veg.bak
2015-08-04 21:53 - 2014-08-19 15:12 - 00015128 _____ C:\Users\gary\Documents\SSBB1.veg
2015-08-04 21:53 - 2014-08-12 23:40 - 00013936 _____ C:\Users\gary\Documents\ssbbintro.veg
2015-08-04 21:53 - 2014-08-12 21:34 - 00014080 _____ C:\Users\gary\Documents\ssbbintro.veg.bak
2015-08-04 21:53 - 2014-08-12 21:15 - 00014096 _____ C:\Users\gary\Documents\ssbbseriesintro.veg
2015-08-04 21:53 - 2014-08-09 22:43 - 00026864 _____ C:\Users\gary\Documents\mc.veg
2015-08-04 21:53 - 2014-07-25 03:08 - 00005326 _____ C:\Users\gary\Documents\asdf.txt
2015-08-04 21:53 - 2014-07-08 15:22 - 00004828 _____ C:\Users\gary\Documents\cc_20140708_152158.reg
2015-08-04 21:53 - 2014-07-08 15:06 - 00046936 _____ C:\Users\gary\Documents\cc_20140708_150629.reg
2015-08-04 21:52 - 2015-08-06 21:22 - 00000000 ____D C:\Users\gary\Documents\My Games
2015-08-04 21:52 - 2015-08-04 21:53 - 00000000 ____D C:\Users\gary\Documents\StarCraft II
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Skullgirls
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Shaders
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\ShaderCache
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\ScreenShots
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Screencast-O-Matic
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\SavedGames
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Rockstar Games
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Respawn
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Remedy
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Razer
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Paradox Interactive
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Nexus Mod Manager
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\My CamStudio Temp Files
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\MGR
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Load
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Lightshot
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Klei
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\InfiniteCrisis
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\GC
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\GameSettings
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\FlashIntegro
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Evaer
2015-08-04 21:52 - 2015-08-04 21:52 - 00000000 ____D C:\Users\gary\Documents\Dump
2015-08-04 21:52 - 2015-06-05 21:37 - 00000000 ____D C:\Users\gary\Documents\OpenCL
2015-08-04 21:52 - 2015-06-05 21:30 - 00000000 ____D C:\Users\gary\Documents\Maps
2015-08-04 21:52 - 2014-07-31 20:39 - 00000000 ____D C:\Users\gary\Documents\RadeonPro Benchmarks
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\Dolphin Emulator
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\Camtasia Studio
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\Cache
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\BioWare
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\BFH Beta 2
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\Battlefield 3
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\Arma 3
2015-08-04 21:51 - 2015-08-04 21:51 - 00000000 ____D C:\Users\gary\Documents\3DMark
2015-08-04 21:51 - 2015-06-06 22:06 - 00099264 _____ C:\Users\gary\Documents\test cinema.veg.sfk
2015-08-04 21:51 - 2015-06-06 21:30 - 25395416 _____ C:\Users\gary\Documents\test cinema.veg.sfap0
2015-08-04 21:51 - 2015-06-06 21:30 - 00011192 _____ C:\Users\gary\Documents\test cinema.veg
2015-08-04 21:51 - 2015-05-28 22:12 - 00168432 _____ C:\Users\gary\Documents\test cinema aqua.veg.sfk
2015-08-04 21:51 - 2015-05-28 22:05 - 43101016 _____ C:\Users\gary\Documents\test cinema aqua.veg.sfap0
2015-08-04 21:51 - 2015-05-28 22:04 - 00011400 _____ C:\Users\gary\Documents\test cinema aqua.veg
2015-08-04 21:51 - 2015-05-28 22:02 - 00011528 _____ C:\Users\gary\Documents\test cinema aqua.veg.bak
2015-08-04 21:51 - 2015-05-27 00:21 - 00011984 _____ C:\Users\gary\Documents\test cinema.veg.bak
2015-08-04 21:51 - 2015-05-15 20:47 - 00014664 _____ C:\Users\gary\Documents\test speed.veg
2015-08-04 21:51 - 2015-05-15 20:24 - 00017856 _____ C:\Users\gary\Documents\test speed.veg.bak
2015-08-04 21:51 - 2015-02-12 19:59 - 00008274 _____ C:\Users\gary\Documents\TombRaider.log
2015-08-04 21:51 - 2014-08-12 20:54 - 00017440 _____ C:\Users\gary\Documents\test.veg
2015-08-04 21:51 - 2014-08-12 20:33 - 00016864 _____ C:\Users\gary\Documents\test.veg.bak
2015-08-04 21:51 - 2014-07-29 16:23 - 00045389 _____ C:\Users\gary\Documents\Untitled.wma
2015-08-04 21:33 - 2015-04-19 22:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-04 21:33 - 2015-04-19 22:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-04 21:33 - 2015-04-19 21:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-04 21:33 - 2015-02-02 22:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-08-04 21:33 - 2015-02-02 22:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-08-04 21:28 - 2015-07-02 16:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-04 21:28 - 2015-07-02 16:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-08-04 21:28 - 2015-07-02 15:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-04 21:28 - 2015-07-02 15:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-04 21:28 - 2015-07-02 15:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-04 21:28 - 2015-07-02 15:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-04 21:28 - 2015-07-02 15:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-04 21:28 - 2015-07-02 15:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-04 21:28 - 2015-07-02 15:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-04 21:28 - 2015-07-02 14:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-04 21:28 - 2015-07-02 14:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-04 21:28 - 2015-07-02 13:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-04 21:28 - 2015-06-26 21:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-04 21:28 - 2015-06-26 21:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-04 21:28 - 2015-06-26 20:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-04 21:28 - 2015-06-26 20:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-04 21:28 - 2015-06-25 13:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-04 21:28 - 2015-06-25 12:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-04 21:28 - 2015-06-20 15:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-04 21:28 - 2015-06-20 14:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-04 21:28 - 2015-06-20 14:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-04 21:28 - 2015-06-20 14:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-04 21:28 - 2015-06-20 14:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-04 21:28 - 2015-06-20 14:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-04 21:28 - 2015-06-20 14:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-04 21:28 - 2015-06-20 14:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-04 21:28 - 2015-06-20 14:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-04 21:28 - 2015-06-20 14:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-04 21:28 - 2015-06-20 14:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-04 21:28 - 2015-06-20 14:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-04 21:28 - 2015-06-20 14:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-04 21:28 - 2015-06-20 14:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-04 21:28 - 2015-06-20 14:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-04 21:28 - 2015-06-20 14:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-04 21:28 - 2015-06-20 14:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-04 21:28 - 2015-06-20 13:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-04 21:28 - 2015-06-20 13:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-04 21:28 - 2015-06-20 13:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-04 21:28 - 2015-06-20 13:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-04 21:28 - 2015-06-20 13:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-04 21:28 - 2015-06-20 13:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-04 21:28 - 2015-06-19 13:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-04 21:28 - 2015-06-19 13:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-04 21:28 - 2015-06-19 13:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-04 21:28 - 2015-06-19 13:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-04 21:28 - 2015-06-19 13:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-04 21:28 - 2015-06-19 13:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-04 21:28 - 2015-06-19 13:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-04 21:28 - 2015-06-19 13:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-04 21:28 - 2015-06-19 13:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-04 21:28 - 2015-06-19 13:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-04 21:28 - 2015-06-19 12:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-04 21:28 - 2015-06-19 12:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-04 21:28 - 2015-06-19 12:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-04 21:28 - 2015-06-19 12:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-04 21:28 - 2015-06-19 12:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-04 21:28 - 2015-06-19 12:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-04 21:28 - 2015-06-19 12:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-04 21:28 - 2015-06-19 12:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-04 21:28 - 2015-06-19 12:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-04 21:02 - 2015-02-03 22:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-08-04 21:02 - 2015-02-03 21:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-08-04 20:39 - 2015-08-04 20:39 - 00000000 ____D C:\Users\gary\AppData\Roaming\Macromedia
2015-08-04 20:39 - 2015-08-04 20:39 - 00000000 ____D C:\Users\gary\AppData\Roaming\Adobe
2015-08-04 20:39 - 2015-08-04 20:39 - 00000000 ____D C:\Users\gary\AppData\Local\Macromedia
2015-08-04 20:38 - 2015-08-04 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-08-04 20:37 - 2015-08-04 20:38 - 29619504 _____ (IObit ) C:\Users\gary\Downloads\IObit-Malware-Fighter-Setup.exe
2015-08-04 20:37 - 2015-08-04 20:37 - 56602624 _____ C:\Windows\system32\config\SOFTWARE.iobit
2015-08-04 20:37 - 2015-08-04 20:37 - 43958272 _____ C:\Windows\system32\config\COMPONENTS.iobit
2015-08-04 20:37 - 2015-08-04 20:37 - 00180224 _____ C:\Windows\system32\config\DEFAULT.iobit
2015-08-04 20:37 - 2015-08-04 20:37 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit
2015-08-04 20:37 - 2015-08-04 20:37 - 00024576 _____ C:\Windows\system32\config\SAM.iobit
2015-08-04 20:36 - 2015-08-14 12:17 - 00000000 ____D C:\Users\gary\AppData\Roaming\ProductData
2015-08-04 20:36 - 2015-08-04 20:38 - 00001177 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-08-04 20:36 - 2015-08-04 20:36 - 00003180 _____ C:\Windows\System32\Tasks\ASC8_PerformanceMonitor
2015-08-04 20:35 - 2015-08-15 11:32 - 00000000 ____D C:\ProgramData\ProductData
2015-08-04 20:35 - 2015-08-14 12:17 - 00000000 ____D C:\Users\gary\AppData\Roaming\IObit
2015-08-04 20:35 - 2015-08-14 12:17 - 00000000 ____D C:\ProgramData\IObit
2015-08-04 20:35 - 2015-08-06 21:03 - 00002900 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_gary
2015-08-04 20:35 - 2015-08-04 20:36 - 00000000 ____D C:\Program Files (x86)\IObit
2015-08-04 20:35 - 2015-08-04 20:35 - 47736096 _____ (IObit) C:\Users\gary\Downloads\advanced-systemcare-setup.exe
2015-08-04 20:35 - 2015-08-04 20:35 - 00002868 _____ C:\Windows\System32\Tasks\ASC8_SkipUac_gary
2015-08-04 20:35 - 2015-08-04 20:35 - 00002185 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-08-04 20:35 - 2015-08-04 20:35 - 00001232 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-08-04 20:35 - 2015-08-04 20:35 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2015-08-04 20:35 - 2015-08-04 20:35 - 00000000 ____D C:\Users\gary\AppData\Roaming\Apple Computer
2015-08-04 20:35 - 2015-08-04 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-08-04 20:35 - 2015-08-04 20:35 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-08-04 20:27 - 2015-08-04 20:31 - 00000000 ____D C:\Users\gary\AppData\Local\Adobe
2015-08-04 20:27 - 2015-08-04 20:27 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-04 20:27 - 2015-08-04 20:27 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-04 20:27 - 2015-08-04 20:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-08-04 20:27 - 2015-08-04 20:27 - 00000000 ____D C:\Windows\system32\Macromed
2015-08-04 20:26 - 2015-08-04 20:26 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-08-04 20:26 - 2015-08-04 20:26 - 00000000 ____D C:\ProgramData\Sun
2015-08-04 20:26 - 2015-08-04 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-04 20:25 - 2015-08-04 20:26 - 00000000 ____D C:\ProgramData\Oracle
2015-08-04 20:25 - 2015-08-04 20:25 - 00562784 _____ (Oracle Corporation) C:\Users\gary\Downloads\jxpiinstall.exe
2015-08-04 20:25 - 2015-08-04 20:25 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-04 20:24 - 2015-08-04 20:24 - 01497400 _____ (Microsoft Corporation) C:\Users\gary\Downloads\NDP46-KB3045560-Web.exe
2015-08-04 20:22 - 2015-08-14 12:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-04 20:22 - 2015-08-14 12:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-04 20:22 - 2015-08-14 12:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-04 20:19 - 2015-08-04 20:19 - 13161184 _____ (Microsoft Corporation) C:\Users\gary\Downloads\Silverlight_x64.exe
2015-08-04 20:17 - 2015-08-15 15:21 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-04 20:17 - 2015-08-06 21:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-04 20:17 - 2015-08-04 20:17 - 00001808 _____ C:\Users\gary\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-08-04 20:17 - 2015-08-04 20:17 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\Users\gary\AppData\Roaming\SUPERAntiSpyware.com
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-04 20:17 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-04 20:17 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-04 20:16 - 2015-08-04 20:16 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\gary\Downloads\mbam-setup-2.1.8.1057(1).exe
2015-08-04 20:16 - 2015-08-04 20:16 - 22893800 _____ (SUPERAntiSpyware) C:\Users\gary\Downloads\SUPERAntiSpyware.exe
2015-08-04 20:13 - 2015-08-05 22:57 - 00008943 _____ C:\Users\gary\Downloads\hijackthis.log
2015-08-04 20:13 - 2015-08-04 20:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\gary\Downloads\HijackThis.exe
2015-08-04 20:12 - 2015-08-04 20:12 - 00251392 _____ C:\Users\gary\Downloads\hijackthis_sfx.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-08-04 20:06 - 2015-08-04 20:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-08-04 20:06 - 2015-08-04 20:06 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-08-04 20:06 - 2015-08-04 20:06 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-08-04 20:06 - 2015-08-04 20:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-08-04 20:06 - 2015-08-04 20:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-04 20:06 - 2015-08-04 20:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-08-04 20:05 - 2015-08-04 20:05 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-04 20:05 - 2015-08-04 20:05 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-04 20:04 - 2015-08-04 20:04 - 55915216 _____ (Microsoft Corporation) C:\Users\gary\Downloads\IE11-Windows6.1-x64-en-us.exe
2015-08-04 20:00 - 2015-08-08 13:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-04 20:00 - 2015-08-04 20:07 - 00000000 ____D C:\Users\gary\AppData\Local\Mozilla
2015-08-04 20:00 - 2015-08-04 20:00 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-04 20:00 - 2015-08-04 20:00 - 00001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-04 20:00 - 2015-08-04 20:00 - 00000000 ____D C:\Users\gary\AppData\Roaming\Mozilla
2015-08-04 20:00 - 2015-08-04 20:00 - 00000000 ____D C:\ProgramData\Mozilla
2015-08-04 13:58 - 2015-08-04 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-08-04 13:58 - 2015-08-04 13:58 - 00000000 ____D C:\ProgramData\ESET
2015-08-04 13:58 - 2015-08-04 13:58 - 00000000 ____D C:\Program Files\ESET
2015-08-04 13:52 - 2015-08-04 13:52 - 01761992 _____ (ESET) C:\Users\gary\Downloads\eset_nod32_antivirus_live_installer.exe
2015-08-03 14:15 - 2015-08-03 14:15 - 532474683 _____ C:\Windows\MEMORY.DMP
2015-08-03 14:15 - 2015-08-03 14:15 - 00000000 ____D C:\Windows\Minidump
2015-08-03 13:59 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-08-03 13:50 - 2015-08-04 20:07 - 00024844 _____ C:\Windows\IE11_main.log
2015-08-03 13:25 - 2014-06-30 17:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-08-03 13:25 - 2014-06-30 17:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2015-08-03 13:25 - 2014-06-06 01:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-08-03 13:25 - 2014-06-06 01:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-08-03 13:25 - 2014-03-09 16:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-08-03 13:25 - 2014-03-09 16:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-08-03 13:25 - 2014-03-09 16:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2015-08-03 13:25 - 2014-03-09 16:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2015-08-03 13:24 - 2015-08-11 23:56 - 00000000 ____D C:\Windows\system32\MRT
2015-08-03 13:24 - 2015-07-03 08:43 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-03 12:55 - 2015-08-03 12:55 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\gary\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-03 12:55 - 2015-08-03 12:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-03 12:46 - 2015-08-15 11:33 - 00006462 _____ C:\Windows\SysWOW64\Gms.log
2015-08-03 12:44 - 2015-08-03 12:44 - 00000000 ____D C:\Users\gary\AppData\Roaming\ATI
2015-08-03 12:44 - 2015-08-03 12:44 - 00000000 ____D C:\Users\gary\AppData\Local\ATI
2015-08-03 12:44 - 2015-08-03 12:44 - 00000000 ____D C:\ProgramData\ATI
2015-08-03 12:44 - 2015-08-03 12:44 - 00000000 _____ C:\Windows\ativpsrm.bin
2015-08-03 12:27 - 2015-07-14 22:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-03 12:27 - 2015-07-14 22:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-03 12:27 - 2015-07-14 22:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-03 12:27 - 2015-07-14 22:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-03 12:27 - 2015-07-14 21:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-03 12:27 - 2015-07-14 21:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-03 12:27 - 2015-07-14 21:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-03 12:27 - 2015-07-14 21:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-03 12:27 - 2015-07-14 20:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-03 12:27 - 2015-07-14 20:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-03 12:27 - 2015-06-25 03:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-03 12:27 - 2015-06-01 19:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-08-03 12:27 - 2015-06-01 18:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-08-03 12:27 - 2015-04-29 13:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-03 12:27 - 2015-04-29 13:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-03 12:27 - 2015-04-29 13:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-03 12:27 - 2015-04-29 13:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-03 12:27 - 2015-04-29 13:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-08-03 12:27 - 2015-04-29 13:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-08-03 12:27 - 2015-04-29 13:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-08-03 12:27 - 2015-04-29 13:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-08-03 12:27 - 2015-04-29 13:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-08-03 12:27 - 2015-04-29 13:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-08-03 12:27 - 2015-04-17 22:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-08-03 12:27 - 2015-04-17 21:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-08-03 12:27 - 2015-04-12 22:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-08-03 12:27 - 2015-02-02 22:34 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-08-03 12:27 - 2015-02-02 22:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-03 12:27 - 2015-02-02 22:33 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-08-03 12:27 - 2015-02-02 22:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-08-03 12:27 - 2015-02-02 22:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-08-03 12:27 - 2015-02-02 22:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-08-03 12:27 - 2015-02-02 22:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-08-03 12:27 - 2015-02-02 22:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-08-03 12:27 - 2015-02-02 22:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-08-03 12:27 - 2015-02-02 22:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-08-03 12:27 - 2015-02-02 22:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-08-03 12:27 - 2015-02-02 22:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-08-03 12:27 - 2015-02-02 22:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-08-03 12:27 - 2015-02-02 22:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-08-03 12:27 - 2015-02-02 22:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-08-03 12:27 - 2015-02-02 21:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-08-03 12:27 - 2014-12-18 22:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-08-03 12:27 - 2014-12-11 12:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-08-03 12:27 - 2014-10-31 17:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-08-03 12:27 - 2014-06-27 19:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-08-03 12:27 - 2014-06-27 19:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2015-08-03 12:27 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-08-03 12:27 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-08-03 12:27 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-08-03 12:27 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-03 12:27 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-03 12:27 - 2014-01-28 21:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-08-03 12:27 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-08-03 12:27 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-08-03 12:27 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-08-03 12:27 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-08-03 12:27 - 2013-04-12 09:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-08-03 12:27 - 2012-03-01 01:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-08-03 12:27 - 2012-03-01 01:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-08-03 12:27 - 2012-03-01 00:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-08-03 12:27 - 2011-11-17 01:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-08-03 12:27 - 2011-11-17 00:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-08-03 12:27 - 2011-06-15 05:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-08-03 12:27 - 2011-06-15 05:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-08-03 12:27 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-08-03 12:27 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-08-03 12:27 - 2011-06-15 03:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-08-03 12:27 - 2011-06-15 03:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-08-03 12:27 - 2011-06-15 03:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-08-03 12:27 - 2011-06-15 03:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-08-03 12:27 - 2011-06-15 03:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-08-03 12:27 - 2010-12-23 05:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-08-03 12:27 - 2010-12-23 05:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-08-03 12:27 - 2010-12-23 05:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-08-03 12:27 - 2010-12-23 00:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-08-03 12:27 - 2010-12-23 00:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-08-03 12:27 - 2010-12-23 00:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2015-08-03 12:26 - 2015-07-04 13:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-03 12:26 - 2015-07-04 12:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-08-03 12:26 - 2015-07-01 15:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-03 12:26 - 2015-07-01 15:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-03 12:26 - 2015-07-01 15:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-03 12:26 - 2015-07-01 15:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-03 12:26 - 2015-07-01 15:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-03 12:26 - 2015-07-01 15:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-03 12:26 - 2015-07-01 15:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-03 12:26 - 2015-07-01 15:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-03 12:26 - 2015-07-01 15:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-03 12:26 - 2015-07-01 15:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-03 12:26 - 2015-07-01 15:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-03 12:26 - 2015-07-01 15:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-03 12:26 - 2015-07-01 15:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-03 12:26 - 2015-07-01 15:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-03 12:26 - 2015-07-01 15:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-03 12:26 - 2015-07-01 15:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-03 12:26 - 2015-07-01 15:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-03 12:26 - 2015-07-01 15:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-03 12:26 - 2015-07-01 14:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-03 12:26 - 2015-07-01 14:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-03 12:26 - 2015-07-01 14:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-03 12:26 - 2015-06-17 12:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-03 12:26 - 2015-06-17 12:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-03 12:26 - 2015-06-15 16:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-08-03 12:26 - 2015-06-15 16:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-03 12:26 - 2015-06-15 16:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-08-03 12:26 - 2015-06-15 16:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-08-03 12:26 - 2015-06-15 16:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-08-03 12:26 - 2015-06-15 16:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-03 12:26 - 2015-06-15 16:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-08-03 12:26 - 2015-06-15 16:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-08-03 12:26 - 2015-06-15 16:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-08-03 12:26 - 2015-06-15 16:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-08-03 12:26 - 2015-06-15 16:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-08-03 12:26 - 2015-06-15 16:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-08-03 12:26 - 2015-06-03 15:17 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-08-03 12:26 - 2015-05-08 22:27 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-03 12:26 - 2015-05-08 22:27 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-03 12:26 - 2015-05-08 22:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-03 12:26 - 2015-05-08 22:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-03 12:26 - 2015-05-08 22:26 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-03 12:26 - 2015-05-08 22:26 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-03 12:26 - 2015-05-08 22:26 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-03 12:26 - 2015-05-08 22:25 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-03 12:26 - 2015-05-08 22:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-03 12:26 - 2015-05-08 22:13 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-03 12:26 - 2015-05-08 22:12 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-03 12:26 - 2015-05-08 22:12 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-03 12:26 - 2015-05-08 22:12 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 22:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 21:01 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-03 12:26 - 2015-05-08 21:01 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-03 12:26 - 2015-05-08 20:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 20:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-03 12:26 - 2015-05-08 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-03 12:26 - 2015-04-24 13:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-08-03 12:26 - 2015-04-24 12:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-08-03 12:26 - 2015-04-07 22:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-08-03 12:26 - 2015-04-07 22:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-08-03 12:26 - 2015-04-07 22:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-08-03 12:26 - 2015-03-17 00:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-03 12:26 - 2015-03-17 00:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-03 12:26 - 2015-03-17 00:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-03 12:26 - 2015-03-17 00:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-03 12:26 - 2015-03-17 00:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-03 12:26 - 2015-03-17 00:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-03 12:26 - 2015-03-17 00:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-03 12:26 - 2015-03-17 00:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-03 12:26 - 2015-03-17 00:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-03 12:26 - 2015-03-17 00:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-03 12:26 - 2015-03-16 23:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-03 12:26 - 2015-03-16 23:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-03 12:26 - 2015-03-16 23:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-03 12:26 - 2015-03-09 22:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-03 12:26 - 2015-03-09 22:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-03 12:26 - 2015-03-09 22:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-03 12:26 - 2015-03-09 22:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-03 12:26 - 2015-03-03 23:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-08-03 12:26 - 2015-03-03 23:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-08-03 12:26 - 2015-03-03 23:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-08-03 12:26 - 2015-02-24 22:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-08-03 12:26 - 2015-02-18 02:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-08-03 12:26 - 2015-02-18 02:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-08-03 12:26 - 2015-02-13 00:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-03 12:26 - 2015-02-13 00:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-03 12:26 - 2015-02-02 22:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-08-03 12:26 - 2015-02-02 22:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-08-03 12:26 - 2015-01-16 21:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-08-03 12:26 - 2015-01-16 21:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-08-03 12:26 - 2014-12-18 20:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-08-03 12:26 - 2014-12-07 22:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-08-03 12:26 - 2014-12-07 21:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-08-03 12:26 - 2014-12-05 23:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-08-03 12:26 - 2014-12-05 22:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-08-03 12:26 - 2014-12-05 22:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-08-03 12:26 - 2014-11-10 22:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-08-03 12:26 - 2014-11-10 21:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-08-03 12:26 - 2014-10-24 20:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-08-03 12:26 - 2014-10-24 20:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-08-03 12:26 - 2014-10-17 21:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-08-03 12:26 - 2014-10-17 20:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-08-03 12:26 - 2014-10-13 21:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-08-03 12:26 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-08-03 12:26 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-08-03 12:26 - 2014-08-11 21:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-08-03 12:26 - 2014-08-11 20:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2015-08-03 12:26 - 2014-07-16 21:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-03 12:26 - 2014-07-16 21:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-08-03 12:26 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-08-03 12:26 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-08-03 12:26 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-08-03 12:26 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-08-03 12:26 - 2014-07-16 20:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-03 12:26 - 2014-07-16 20:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-08-03 12:26 - 2014-07-16 20:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-08-03 12:26 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-08-03 12:26 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-08-03 12:26 - 2014-06-17 21:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-08-03 12:26 - 2014-06-17 20:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-08-03 12:26 - 2014-06-15 21:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-08-03 12:26 - 2014-06-06 05:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-08-03 12:26 - 2014-06-06 04:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-08-03 12:26 - 2014-05-30 01:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-08-03 12:26 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-03 12:26 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-03 12:26 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-03 12:26 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-03 12:26 - 2014-03-04 04:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-08-03 12:26 - 2014-03-04 04:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-08-03 12:26 - 2014-03-04 04:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-08-03 12:26 - 2014-03-04 04:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-08-03 12:26 - 2014-03-04 04:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-08-03 12:26 - 2014-03-04 04:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-08-03 12:26 - 2014-03-04 04:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-08-03 12:26 - 2014-03-04 04:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-08-03 12:26 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-08-03 12:26 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-08-03 12:26 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-08-03 12:26 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-08-03 12:26 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-08-03 12:26 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-08-03 12:26 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-08-03 12:26 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-08-03 12:26 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-08-03 12:26 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-08-03 12:26 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-08-03 12:26 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-08-03 12:26 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-08-03 12:26 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-08-03 12:26 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-08-03 12:26 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-08-03 12:26 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-08-03 12:26 - 2013-07-12 05:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2015-08-03 12:26 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-08-03 12:26 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-08-03 12:26 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-08-03 12:26 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-08-03 12:26 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-08-03 12:26 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-08-03 12:26 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-08-03 12:26 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-08-03 12:26 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2015-08-03 12:26 - 2013-04-10 01:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-08-03 12:26 - 2013-02-15 01:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-03 12:26 - 2013-02-15 01:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-08-03 12:26 - 2013-02-14 22:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-03 12:26 - 2013-02-11 23:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-08-03 12:26 - 2012-11-22 22:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-08-03 12:26 - 2012-11-02 00:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-08-03 12:26 - 2012-11-02 00:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-08-03 12:26 - 2012-10-03 12:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-03 12:26 - 2012-10-03 12:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-08-03 12:26 - 2012-09-25 17:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-08-03 12:26 - 2012-09-25 17:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-08-03 12:26 - 2012-07-04 17:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-08-03 12:26 - 2012-07-04 17:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-08-03 12:26 - 2012-07-04 17:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-08-03 12:26 - 2012-07-04 16:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-08-03 12:26 - 2012-07-04 16:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-08-03 12:26 - 2012-06-06 01:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-08-03 12:26 - 2012-06-06 00:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-08-03 12:26 - 2012-05-14 00:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-08-03 12:26 - 2012-04-26 00:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-08-03 12:26 - 2012-04-26 00:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-08-03 12:26 - 2012-03-17 02:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-08-03 12:26 - 2011-12-16 03:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-08-03 12:26 - 2011-12-16 02:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-08-03 12:26 - 2011-10-15 01:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-08-03 12:26 - 2011-10-15 00:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-08-03 12:26 - 2011-08-27 00:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-08-03 12:26 - 2011-08-26 23:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-08-03 12:26 - 2011-08-17 00:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-08-03 12:26 - 2011-08-17 00:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-08-03 12:26 - 2011-08-16 23:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-08-03 12:26 - 2011-08-16 23:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-08-03 12:26 - 2011-05-24 06:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-08-03 12:26 - 2011-05-24 05:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2015-08-03 12:26 - 2011-05-24 05:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2015-08-03 12:26 - 2011-05-24 05:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2015-08-03 12:26 - 2011-05-24 05:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-08-03 12:26 - 2011-05-03 00:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-08-03 12:26 - 2011-05-02 23:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-08-03 12:26 - 2011-04-28 22:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-03 12:26 - 2011-04-28 22:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-08-03 12:26 - 2011-04-28 22:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-08-03 12:26 - 2011-03-11 01:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-08-03 12:26 - 2011-03-11 01:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-08-03 12:26 - 2011-03-11 00:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-08-03 12:26 - 2011-03-11 00:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-08-03 12:26 - 2011-03-03 01:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-08-03 12:26 - 2011-03-03 01:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-08-03 12:26 - 2011-03-03 01:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-08-03 12:26 - 2011-03-03 00:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-08-03 12:26 - 2011-03-03 00:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2015-08-03 12:26 - 2011-02-22 23:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-08-03 12:26 - 2011-02-12 06:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-08-03 12:26 - 2011-02-05 12:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-08-03 12:26 - 2011-02-05 12:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2015-08-03 12:26 - 2011-02-05 12:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2015-08-03 12:26 - 2011-02-03 06:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-08-03 12:25 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-08-03 12:25 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-08-03 12:25 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-08-03 12:25 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-08-03 12:25 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-08-03 12:20 - 2012-02-17 01:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-08-03 12:20 - 2012-02-17 00:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-08-03 12:20 - 2012-02-16 23:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-08-03 12:16 - 2015-08-03 12:16 - 00053615 _____ C:\Windows\SysWOW64\CCCInstall_201508031216008582.log
2015-08-03 12:15 - 2015-08-03 12:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-08-03 12:15 - 2015-08-03 12:15 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-08-03 12:15 - 2015-08-03 12:15 - 00000000 ____D C:\Program Files (x86)\AMD
2015-08-03 12:13 - 2015-08-03 12:15 - 00000000 ____D C:\Program Files\AMD
2015-08-03 12:12 - 2015-08-03 12:12 - 00000000 ____D C:\AMD
2015-08-03 12:11 - 2015-08-03 12:11 - 05455048 _____ (Advanced Micro Devices, Inc.) C:\Users\gary\Downloads\autodetectutility.exe
2015-08-03 12:10 - 2014-05-14 11:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-03 12:10 - 2014-05-14 11:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-03 12:10 - 2014-05-14 11:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-03 12:10 - 2014-05-14 11:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-03 12:10 - 2014-05-14 11:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-03 12:10 - 2014-05-14 11:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-03 12:10 - 2014-05-14 11:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-03 12:10 - 2014-05-14 11:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-03 12:10 - 2014-05-14 11:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-03 12:10 - 2014-05-14 11:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-03 12:10 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-03 12:10 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-03 12:10 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-03 12:10 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-03 12:05 - 2015-08-03 12:05 - 00057560 _____ C:\Users\gary\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-03 12:04 - 2015-08-14 12:17 - 00000000 ___HD C:\SuperChargerProfile
2015-08-03 12:04 - 2015-08-03 12:04 - 00002067 _____ C:\Users\Public\Desktop\MSI Super Charger.lnk
2015-08-03 12:04 - 2015-08-03 12:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2015-08-03 12:04 - 2015-08-03 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-08-03 12:04 - 2015-08-03 12:04 - 00000000 ____D C:\Intel
2015-08-03 12:04 - 2014-02-21 00:56 - 00791024 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2015-08-03 12:04 - 2014-02-21 00:56 - 00370672 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2015-08-03 12:04 - 2014-02-21 00:56 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2015-08-03 12:03 - 2015-08-03 12:04 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-03 12:03 - 2015-08-03 12:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-08-03 12:03 - 2015-08-03 12:03 - 00000000 ____D C:\Users\gary\Intel
2015-08-03 12:03 - 2015-08-03 12:03 - 00000000 ____D C:\ProgramData\Intel
2015-08-03 12:02 - 2015-08-15 18:07 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-03 12:02 - 2015-08-15 12:07 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-03 12:02 - 2015-08-03 12:10 - 00000000 ____D C:\Users\gary\AppData\Local\Google
2015-08-03 12:02 - 2015-08-03 12:02 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-03 12:02 - 2015-08-03 12:02 - 00003638 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-03 12:02 - 2015-08-03 12:02 - 00002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-03 12:02 - 2015-08-03 12:02 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-03 12:02 - 2015-08-03 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-03 12:02 - 2015-08-03 12:02 - 00000000 ____D C:\Program Files\Realtek
2015-08-03 12:02 - 2015-08-03 12:02 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-03 12:02 - 2014-03-04 07:31 - 03882456 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-08-03 12:02 - 2014-03-04 07:27 - 02831576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-08-03 12:02 - 2014-03-04 04:19 - 00627928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-08-03 12:02 - 2014-03-04 01:57 - 00837014 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-08-03 12:02 - 2014-03-04 01:11 - 02794200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-08-03 12:02 - 2014-03-03 07:21 - 01019608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-08-03 12:02 - 2014-02-27 03:46 - 00947928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-08-03 12:02 - 2014-02-16 07:30 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-08-03 12:02 - 2014-01-27 22:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-08-03 12:02 - 2013-12-04 03:27 - 01958616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-08-03 12:02 - 2012-07-25 23:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-08-03 12:02 - 2012-07-25 21:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-08-03 12:02 - 2012-06-02 09:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-08-03 12:02 - 2011-12-20 02:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-08-03 12:02 - 2011-11-22 03:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-08-03 12:02 - 2010-11-07 18:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-08-03 12:02 - 2010-11-03 05:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-08-03 12:02 - 2009-11-23 20:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-08-03 12:02 - 2009-11-23 20:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-08-03 12:02 - 2009-11-23 20:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-08-03 12:02 - 2009-11-23 20:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-08-03 12:02 - 2009-11-17 18:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2015-08-03 12:01 - 2015-08-03 12:02 - 00002501 _____ C:\RHDSetup.log
2015-08-03 12:01 - 2015-08-03 12:02 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-03 12:01 - 2015-08-03 12:01 - 00002783 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ____D C:\ProgramData\Qualcomm
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ____D C:\Program Files\Qualcomm Atheros
2015-08-03 12:01 - 2015-08-03 12:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-08-03 12:01 - 2014-02-25 01:50 - 01999128 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2015-08-03 12:01 - 2014-02-25 01:50 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2015-08-03 12:01 - 2014-02-18 05:12 - 01042520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-08-03 12:01 - 2014-02-18 04:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-08-03 12:01 - 2014-02-16 07:30 - 02040920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-08-03 12:01 - 2014-01-20 06:11 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-08-03 12:01 - 2014-01-08 02:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2015-08-03 12:01 - 2013-10-15 14:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-08-03 12:01 - 2013-10-10 23:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-08-03 12:01 - 2012-03-07 22:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-08-03 12:01 - 2010-09-26 20:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-03 12:00 - 2015-08-04 20:27 - 00773536 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-08-03 12:00 - 2015-08-03 12:15 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-03 12:00 - 2015-08-03 12:04 - 00000000 ____D C:\Program Files (x86)\MSI
2015-08-03 12:00 - 2015-08-03 12:03 - 00000000 ____D C:\Program Files\Intel
2015-07-31 20:38 - 2015-07-31 17:41 - 00000000 ____D C:\Windows\Panther
2015-07-31 19:40 - 2015-07-31 19:40 - 00001355 _____ C:\Windows\TSSysprep.log
2015-07-31 19:40 - 2015-07-31 19:40 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-07-31 19:40 - 2015-07-31 19:40 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-07-31 17:41 - 2015-08-15 11:39 - 01991120 _____ C:\Windows\WindowsUpdate.log
2015-07-31 17:41 - 2015-08-14 12:17 - 00000000 ____D C:\Users\gary
2015-07-31 17:41 - 2015-08-04 21:25 - 00001417 _____ C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-31 17:41 - 2015-08-04 20:13 - 00000000 ____D C:\Users\gary\AppData\Local\VirtualStore
2015-07-31 17:41 - 2015-07-31 17:41 - 00000020 ___SH C:\Users\gary\ntuser.ini
2015-07-31 17:41 - 2015-07-31 17:41 - 00000000 __SHD C:\Recovery
2015-07-31 17:41 - 2009-07-13 23:54 - 00000000 ___RD C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-31 17:41 - 2009-07-13 23:49 - 00000000 ___RD C:\Users\gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-15 18:33 - 2009-07-13 23:45 - 00017056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-15 18:33 - 2009-07-13 23:45 - 00017056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-15 11:45 - 2009-07-13 23:51 - 00029348 _____ C:\Windows\setupact.log
2015-08-15 11:37 - 2009-07-14 00:13 - 00917038 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-15 11:31 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-14 12:17 - 2009-07-13 22:20 - 00000000 __RSD C:\Windows\Media
2015-08-14 12:17 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-08-14 12:17 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\AppCompat
2015-08-14 12:16 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration
2015-08-10 13:00 - 2010-11-20 22:47 - 00037486 _____ C:\Windows\PFRO.log
2015-08-06 22:40 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2015-08-06 20:51 - 2009-07-13 23:45 - 00265552 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-06 20:50 - 2011-04-12 03:28 - 00000000 ____D C:\Program Files\Windows Journal
2015-08-05 15:41 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-08-05 15:41 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Dism
2015-08-05 15:41 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-05 14:00 - 2009-07-14 00:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-04 21:14 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-04 21:14 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-04 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2015-08-04 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-08-04 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\zh-HK
2015-08-04 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-08-03 14:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-08-03 12:09 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2015-08-03 11:59 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\restore
2015-07-31 20:38 - 2009-07-14 00:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-07-31 20:38 - 2009-07-14 00:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-07-31 19:40 - 2009-07-13 23:46 - 00002790 _____ C:\Windows\DtcInstall.log
2015-07-31 19:40 - 2009-07-13 22:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-31 19:40 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep

Some files in TEMP:
====================
C:\Users\gary\AppData\Local\Temp\amd-catalyst-15.7.1-with-dotnet45-win7-64bit.exe
C:\Users\gary\AppData\Local\Temp\ASCSetup_2336504.exe
C:\Users\gary\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\gary\AppData\Local\Temp\AutoWifi.exe
C:\Users\gary\AppData\Local\Temp\devcon64.exe
C:\Users\gary\AppData\Local\Temp\InstHelper.exe
C:\Users\gary\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-15 12:38

==================== End of log ============================

 

 

 

 

 

 

 

A D D I T I O N:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:14-08-2015 01
Ran by gary (2015-08-15 18:40:23)
Running from C:\Users\gary\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1332711597-3546667102-3002306719-500 - Administrator - Disabled)
gary (S-1-5-21-1332711597-3546667102-3002306719-1000 - Administrator - Enabled) => C:\Users\gary
Guest (S-1-5-21-1332711597-3546667102-3002306719-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.3.0 - IObit)
AMD Catalyst Install Manager (HKLM\...\{8DF1EF50-AEB6-902C-F68C-4683C45784E6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ESET NOD32 Antivirus (HKLM\...\{5F2AE448-CD4B-40BD-B245-5F0CD06A09B0}) (Version: 8.0.319.0 - ESET, spol s r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 31.0.1650.59 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.13 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.3 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.5 - IObit)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40620.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mozilla Firefox 39.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 en-US)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.025 - MSI)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1204 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
WinRAR 5.30 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.2 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

06-08-2015 22:40:44 Scheduled Checkpoint
09-08-2015 21:52:45 Installed Microsoft Visual C++ 2005 Redistributable (x64)
09-08-2015 21:53:05 Installed Microsoft Visual C++ 2005 Redistributable
09-08-2015 21:53:18 Installed League of Legends
09-08-2015 21:53:38 Installed DirectX
10-08-2015 16:59:25 Windows Update
11-08-2015 23:54:45 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2195EC1F-F781-421C-8968-C9A84DED0B29} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-03] (Google Inc.)
Task: {2B619AFF-BC25-443B-8B07-08C7CF36EAE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-03] (Google Inc.)
Task: {3DE7F85A-6FB3-4DD8-BCB5-230CE2D5A5C4} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {6AB03F0D-F45E-4E7B-95D0-2FFC4486FF17} - System32\Tasks\ASC8_SkipUac_gary => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-06-16] (IObit)
Task: {724DBE7D-AA66-404D-B5DA-E3BDD49F1AAB} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {8ED1B3C4-DFF0-4265-A940-267CF8997DFF} - System32\Tasks\Uninstaller_SkipUac_gary => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-05-20] (IObit)
Task: {9830D29C-EC2A-4959-87E5-21330DCC42EA} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-06-10] (IObit)
Task: {B7206C85-523B-45B8-AA44-AD9A30D6587B} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {CCEB333E-6672-49CF-95F0-E57619C40A9B} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {D9CC8228-2864-420C-9161-8FBA92908D7C} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-04-15 15:13 - 2015-04-15 15:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-01-22 15:15 - 2014-01-22 15:15 - 00300544 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
2015-08-15 17:16 - 2015-08-06 12:31 - 13524480 _____ () G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7161-x64\Dolphin-x64\Dolphin.exe
2015-08-15 17:16 - 2015-05-23 04:28 - 00797305 _____ () G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7161-x64\Dolphin-x64\OpenAL32.dll
2015-08-04 20:35 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll
2015-08-04 20:36 - 2015-01-09 18:46 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
2015-08-04 20:35 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madExcept_.bpl
2015-08-04 20:35 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madBasic_.bpl
2015-08-04 20:35 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madDisAsm_.bpl
2015-08-04 20:35 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-08-04 20:36 - 2015-03-27 15:39 - 00182080 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2015-08-04 20:36 - 2015-01-09 18:46 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2015-08-04 20:38 - 2014-10-16 10:26 - 00622880 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\ProductStatistics.dll
2015-08-04 20:35 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-08-04 20:35 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-08-04 20:35 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2014-02-19 18:51 - 2014-02-19 18:51 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-08-04 22:29 - 2015-07-03 11:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-08-04 22:29 - 2015-07-03 11:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-08-04 22:29 - 2015-07-03 11:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-08-04 22:29 - 2015-07-03 11:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-08-04 22:29 - 2015-08-12 13:26 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2015-08-04 22:29 - 2014-12-01 16:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-08-04 22:29 - 2014-12-01 16:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-08-04 22:29 - 2014-12-01 16:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-08-04 22:29 - 2014-12-01 16:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-08-04 22:29 - 2014-12-01 16:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-08-04 22:29 - 2015-08-12 13:26 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-08-04 22:29 - 2015-07-03 11:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\gary\Downloads\mbar-1.09.1.1004.exe:$CmdTcID
AlternateDataStreams: C:\Users\gary\Downloads\mbar-1.09.1.1004.exe:$CmdZnID

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1332711597-3546667102-3002306719-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\gary\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D5E6F78B-789D-4BAF-8EA2-EB5040F89CC3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A25E7BD5-D8F7-4D28-9B03-EDDD689B65EB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8793E13A-A345-4B27-ACEE-9695471248F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{24EC2BBA-71E6-4788-9403-094625B07C4C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{82237883-C0B7-49BD-B1DD-A19310E0A093}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{66C4A442-36F6-4F7F-AF1E-E344200CC8CE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1CD004F8-69A7-4C66-92F0-45F807B16D1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{325209E0-19FE-4BCD-8C91-37551F0AE563}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{3F131EB0-3A1C-47EC-A24D-38C4D62B3459}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{1EC0F30E-218C-401E-8489-6875D270F317}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{3B400A6B-73AD-4D58-B519-9CD2FBB89650}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/15/2015 11:33:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 08:28:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2015 08:37:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2015 01:02:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 01:00:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2015 01:06:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/07/2015 10:39:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Dolphin.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1a58

Start Time: 01d0d18a187cd77e

Termination Time: 161

Application Path: G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7026-x64\Dolphin-x64\Dolphin.exe

Report Id: 03eeff42-3d7f-11e5-b8c3-448a5b9a471e

Error: (08/07/2015 10:26:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Dolphin.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 159c

Start Time: 01d0d189ce3fb226

Termination Time: 29

Application Path: G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7026-x64\Dolphin-x64\Dolphin.exe

Report Id: 51e2b7a1-3d7d-11e5-b8c3-448a5b9a471e

Error: (08/07/2015 12:32:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 10:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17514, time stamp: 0x4ce7a144
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000007360fd8
Faulting process id: 0x8f4
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3


System errors:
=============
Error: (08/15/2015 03:37:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (08/15/2015 03:37:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (08/15/2015 11:52:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Windows 7 for x64-based Systems (KB3064209).

Error: (08/15/2015 11:52:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Windows 7 for x64-based Systems (KB3075851).

Error: (08/15/2015 11:52:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Windows 7 for x64-based Systems (KB3079757).

Error: (08/15/2015 11:31:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Windows 7 for x64-based Systems (KB3046017).

Error: (08/15/2015 11:31:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Windows 7 for x64-based Systems (KB3078601).

Error: (08/15/2015 11:31:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Windows 7 for x64-based Systems (KB3076895).

Error: (08/15/2015 11:31:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Windows 7 for x64-based Systems (KB3076949).

Error: (08/15/2015 11:31:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80242016: Cumulative Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB3078071).


Microsoft Office:
=========================
Error: (08/15/2015 11:33:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2015 08:28:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2015 08:37:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2015 01:02:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 01:00:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2015 01:06:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/07/2015 10:39:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Dolphin.exe0.0.0.01a5801d0d18a187cd77e161G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7026-x64\Dolphin-x64\Dolphin.exe03eeff42-3d7f-11e5-b8c3-448a5b9a471e

Error: (08/07/2015 10:26:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Dolphin.exe0.0.0.0159c01d0d189ce3fb22629G:\Sony\Super Smash Bros Brawl [USA] [Wii] [English] [Torrentmas.Com]\Project M 3.5 ISO Builder\dolphin-master-4.0-7026-x64\Dolphin-x64\Dolphin.exe51e2b7a1-3d7d-11e5-b8c3-448a5b9a471e

Error: (08/07/2015 12:32:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 10:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175144ce7a144unknown0.0.0.000000000c00000050000000007360fd88f401d0d0b3a27f02e8C:\Windows\Explorer.EXEunknown1bbc70b2-3cb6-11e5-ae37-448a5b9a471e


==================== Memory info ===========================

Processor: Intel® Core™ i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 53%
Total physical RAM: 8141.32 MB
Available physical RAM: 3794.17 MB
Total Virtual: 16280.82 MB
Available Virtual: 11640.7 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:98.76 GB) NTFS
Drive d: (G71-MGD3012) (CDROM) (Total:3.34 GB) (Free:0 GB) CDFS
Drive g: (HD-LBU3) (Fixed) (Total:1667.7 GB) (Free:114.3 GB) NTFS
Drive h: (New Volume) (Fixed) (Total:97.66 GB) (Free:94.19 GB) NTFS
Drive i: (New Volume) (Fixed) (Total:97.65 GB) (Free:50.4 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 2BC501C2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: A96D3DF2)
Partition 1: (Not Active) - (Size=1667.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)

==================== End of log ============================

 

 

 

 

Hijackthis log:

 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:57:22 PM, on 8/5/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 39.0 (x86 en-US)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Users\gary\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Killer Network Manager.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8942 bytes
 


Edited by Orange Blossom, 16 August 2015 - 03:28 PM.
Moved to log forum. ~ OB


BC AdBot (Login to Remove)

 


#2 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,145 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:05:07 PM

Posted 17 August 2015 - 07:37 PM

Greetings gary oak fj and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that.

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. I would strongly caution you against downloading Peer 2 Peer files. HijackThis is unable to properly handle many entries and that is why you will get the file missing notice. Typically that is inaccurate.

Please consider and do this.

===================================================

P2P Warning

--------------------

Going over your logs I noticed that you have µTorrent installed. It is pretty much certain that if you continue to use P2P programs, you will get infected again.
  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
I would recommend that you uninstall µTorrent, however that choice is up to you. If you choose to remove the program, you can do so via Start > Control Panel > Add/Remove Programs.

If you are still leaning toward using this program, please take a look at this information about Ransomware which can be delivered via P2P file transfers. The newest variation of Ransomware can make it impossible to recover the files this malicious software encrypts. In other words, you will probably lose most if not all of your valuable information, including pictures. In addition it has recently been reported that P2P downloads may be tracked resulting in your IP address being monitored by copyright authorities. .

If you wish to keep it, please do not use it until we are completely done and your machine is determined to be clean and updated.

===================================================

Virustotal Online Virus Scanner

--------------------
  • Please go to Virustotal
  • Select Choose File
  • Navigate to the following file (if multiple files then one at a time), double click on it so the file name is populated, then click Scan it!
  • IMPORTANT! If the file is listed as already analyzed, click on Reanalyse file now button.

C:\Users\gary\AppData\Local\Temp\xmlUpdater.exe

  • Once completed, highlight the information in the address bar and copy then paste the link in your reply
virustotal.jpg

===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Virustotal link

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#3 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,145 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:05:07 PM

Posted 20 August 2015 - 09:13 AM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.
  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,145 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:05:07 PM

Posted 22 August 2015 - 08:38 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users