Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Magical Find Ads Infection in my computer. Please help!!!


  • This topic is locked This topic is locked
7 replies to this topic

#1 jeyapalt

jeyapalt

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:41 AM

Posted 18 September 2015 - 10:02 AM

Dear Sir/Madam,

 

My system configuration is as under :

 

Windows Edition : Windows 7 Ultimate SP1

Processor : Intel Core 2 Duo Processor

RAM : 2GB

 

Few days back, I found that my Chrome Browser is infected with some mysterious adware/malware "Magical Find Ads". I don't know how I got this infection. Suddenly, I found that whenever I browse with Chrome browser, I get all annoying pop ups in the bottom , left and right of the screen. Slowly the page gets loaded with lot of banners and pop ups.

 

I tried scanning with Malware bytes, Adwcleaner and Bit defender but none succeeded in clearing up the infection.

 

I would be thankful if you all can please help me out in clearing up this annoying adware infection.

 

Kind Regards,

 

T.Jeyapal

 



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:11 PM

Posted 18 September 2015 - 10:20 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the LogFile button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleanerCx.txt (x is a number).
===


Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
===


How is the computer running now?
Wait for further instructions.

#3 jeyapalt

jeyapalt
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:41 AM

Posted 18 September 2015 - 12:52 PM

Dear nasdaq,

 

Thanks a ton for your quick response. Did the following as per your instructions. The infection is still there in Chrome browser. Adwcleaner didn't find any malware though.

 

I am posting the log files for your kind perusal.

 

ADWCLEANER LOG

 

# AdwCleaner v5.008 - Logfile created 18/09/2015 at 23:06:36
# Updated 18/09/2015 by Xplode
# Database : 2015-09-17.3 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : jeyapalt - JEYAPALT-PC
# Running from : C:\Users\jeyapalt\Desktop\adwcleaner_5.008.exe
# Option : Scan
# Support :
http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

Folder Found : C:\Users\jeyapalt\AppData\LocalLow\HPAppData

***** [ Files ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [629 bytes] ##########

 

FRST LOG FILE

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:15-09-2015
Ran by jeyapalt (administrator) on JEYAPALT-PC (18-09-2015 23:08:41)
Running from C:\Users\jeyapalt\Desktop
Loaded Profiles: jeyapalt (Available Profiles: jeyapalt)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
() C:\Program Files\ekalappai\ekalappai.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-25] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-06-29] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498728 2015-06-29] (Adobe Systems Inc.)
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3907152 2015-08-04] (Tonec Inc.)
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\Run: [eKalappai] => C:\Program Files\ekalappai\eKalappai.exe [290816 2014-05-05] ()
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6490904 2015-08-20] (Piriform Ltd)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-08-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [! IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-07-24] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-08-22] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-08-22]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
BootExecute: autocheck autochk * bootdelete

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{11CA7E72-189C-41C6-9515-64CFFACF1EAE}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-in/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.co.in/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7AVNH_enIN655
SearchScopes: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.co.in/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7AVNH_enIN655
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-07-08] (Internet Download Manager, Tonec Inc.)
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-22] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-22] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-08-22] (Google Inc.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems Incorporated)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-22] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems Incorporated)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-08-22] (Google Inc.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-08-22] (Google Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-22] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-08-22]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-22]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-09-13]
FF HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jeyapalt\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\jeyapalt\AppData\Roaming\IDM\idmmzcc5 [2015-09-18]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.)
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\45.0.2454.93\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-22]
CHR Extension: (Google Docs) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-22]
CHR Extension: (Google Drive) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-22]
CHR Extension: (YouTube) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-22]
CHR Extension: (Google Search) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-22]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-09-13]
CHR Extension: (Avast SafePrice) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-08-27]
CHR Extension: (Google Sheets) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-22]
CHR Extension: (Google Docs Offline) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03]
CHR Extension: (Avast Online Security) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-22]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-22]
CHR Extension: (IDM Integration Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2015-08-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-22]
CHR Extension: (Gmail) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-22]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-06-29]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-22]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-08-03]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-22] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-08-22] (Avast Software)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2015-08-27] (Microsoft Corporation)
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-08-22] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-08-22] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-08-22] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-08-22] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788784 2015-08-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433264 2015-08-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-08-22] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-08-22] (AVAST Software)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-09-17] ()
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [35992 2015-09-17] ()
R1 networx; C:\Windows\System32\drivers\networx.sys [65256 2015-08-06] (NetFilterSDK.com)
R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-08-22] (AVAST Software)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-08-22] (Avast Software)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-18 23:08 - 2015-09-18 23:09 - 00017465 ____C C:\Users\jeyapalt\Desktop\FRST.txt
2015-09-18 23:08 - 2015-09-18 23:08 - 00000707 ____C C:\Users\jeyapalt\Desktop\AdwCleaner[S3].txt
2015-09-18 23:08 - 2015-09-18 23:08 - 00000000 ___DC C:\FRST
2015-09-18 23:01 - 2015-09-18 23:01 - 01662976 ____C C:\Users\jeyapalt\Desktop\adwcleaner_5.008.exe
2015-09-18 19:23 - 2015-09-18 19:23 - 01695232 ____C (Farbar) C:\Users\jeyapalt\Desktop\FRST.exe
2015-09-18 19:13 - 2015-09-18 19:13 - 00000112 ____C C:\Users\jeyapalt\Desktop\Malwarebytes password.txt
2015-09-18 19:08 - 2015-09-18 19:08 - 00000074 ____C C:\Users\jeyapalt\Desktop\Gmail Password.txt
2015-09-18 17:57 - 2015-09-18 21:09 - 00000000 ___DC C:\Users\jeyapalt\Desktop\M.Phil-Erimalai-Nellore Arisi-எரிமலை நெல்லூர் அரிசி
2015-09-17 22:52 - 2015-09-17 22:55 - 00023552 ____C C:\Users\jeyapalt\Desktop\18-09-2015.xls
2015-09-17 21:38 - 2015-09-18 23:02 - 00001211 ____C C:\Users\jeyapalt\Desktop\Downloads - Shortcut.lnk
2015-09-17 21:35 - 2015-09-18 22:54 - 00000392 ____C C:\Windows\setupact.log
2015-09-17 21:35 - 2015-09-17 21:35 - 00000000 ____C C:\Windows\setuperr.log
2015-09-17 21:23 - 2015-09-17 21:23 - 00688992 ___RC (Swearware) C:\Users\jeyapalt\Downloads\dds.scr
2015-09-17 21:05 - 2015-09-17 21:05 - 00001082 ____C C:\Users\jeyapalt\Desktop\JRT.txt
2015-09-17 20:15 - 2015-09-18 23:06 - 00000000 ___DC C:\AdwCleaner
2015-09-17 20:08 - 2015-09-18 21:35 - 00000000 ___DC C:\Users\jeyapalt\Desktop\New folder
2015-09-17 17:03 - 2015-09-17 17:03 - 00035992 ____C C:\Windows\system32\Drivers\hitmanpro37.sys
2015-09-17 16:59 - 2015-09-17 16:59 - 00037876 ____C C:\Windows\system32\.crusader
2015-09-17 16:46 - 2015-09-17 16:46 - 00000000 ___DC C:\sh4ldr
2015-09-17 16:40 - 2015-09-17 17:00 - 00000000 ___DC C:\ProgramData\HitmanPro
2015-09-17 16:40 - 2015-09-17 16:40 - 00019984 ____C C:\Windows\system32\Drivers\EsgScanner.sys
2015-09-17 16:40 - 2015-09-17 16:40 - 00000000 ___DC C:\Program Files\Enigma Software Group
2015-09-17 13:51 - 2015-09-17 13:51 - 35300622 ____C C:\Users\jeyapalt\Desktop\---Anbullam Konda Amma Director Kevin Tamil Short Film Folk Song - YouTube.mp4
2015-09-17 12:24 - 2015-09-17 12:24 - 00000000 ___DC C:\ProgramData\Malwarebytes
2015-09-16 21:31 - 2015-09-16 21:31 - 02054502 ____C C:\Users\jeyapalt\Desktop\Vijayakanth action while meeting - விஜயகாந்த் என்ன சொல்ல முயற்சி செய்கிறார் தெரியுமா- (வீடியோ);s%.MKV
2015-09-15 18:26 - 2015-09-15 18:26 - 00000000 ___DC C:\Users\jeyapalt\Documents\Any Video Converter
2015-09-15 18:25 - 2015-09-17 14:58 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Anvsoft
2015-09-14 14:13 - 2015-09-14 14:13 - 00023552 ____C C:\Users\jeyapalt\Documents\04780100.xls
2015-09-14 13:55 - 2015-09-14 13:55 - 00025809 ____C C:\Users\jeyapalt\Downloads\InitiateSingleEntryPaymentSummaryNonAxis14-09-2015.txt
2015-09-13 23:14 - 2015-09-13 23:14 - 00000085 ____C C:\Users\jeyapalt\Downloads\karbala_history_part_ii_TIA_L255 (1).ram
2015-09-13 23:08 - 2015-09-13 23:08 - 00000085 ____C C:\Users\jeyapalt\Downloads\karbala_history_part_ii_TIA_L255.ram
2015-09-13 20:49 - 2015-09-13 20:49 - 00010335 ____C C:\Users\jeyapalt\Downloads\Untitled
2015-09-13 17:53 - 2015-09-13 17:56 - 00000000 ___DC C:\ProgramData\regid.1986-12.com.adobe
2015-09-13 17:51 - 2015-09-16 19:26 - 00002453 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2015-09-13 17:51 - 2015-09-16 19:26 - 00002180 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2015-09-13 17:51 - 2015-09-16 19:26 - 00002019 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2015-09-13 17:51 - 2015-09-13 17:51 - 00002110 ____C C:\Users\Public\Desktop\Adobe FormsCentral.lnk
2015-09-13 17:51 - 2015-09-13 17:51 - 00001996 ____C C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2015-09-13 17:36 - 2015-09-13 17:46 - 00000000 ___DC C:\Users\jeyapalt\Desktop\Adobe Acrobat XI
2015-09-13 17:34 - 2015-09-13 17:34 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\WinRAR
2015-09-13 17:34 - 2015-09-13 17:34 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-13 17:34 - 2015-09-13 17:34 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-13 17:34 - 2015-09-13 17:34 - 00000000 ___DC C:\Program Files\WinRAR
2015-09-12 12:01 - 2015-09-12 12:01 - 00000981 ____C C:\Users\Public\Desktop\eKalappai.lnk
2015-09-12 12:01 - 2015-09-12 12:01 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eKalappai
2015-09-12 11:57 - 2015-09-12 11:57 - 00001234 ____C C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2015-09-12 11:57 - 2015-09-12 11:57 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\VS Revo Group
2015-09-12 11:57 - 2015-09-12 11:57 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-09-12 11:57 - 2015-09-12 11:57 - 00000000 ___DC C:\Program Files\VS Revo Group
2015-09-12 11:57 - 2009-12-30 11:21 - 00027192 ____C (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2015-09-11 19:26 - 2015-09-11 19:26 - 00000000 ___DC C:\Windows\system32\appmgmt
2015-09-11 18:57 - 2015-09-11 19:26 - 00000000 ___DC C:\Program Files\Common Files\Tavultesoft
2015-09-11 18:57 - 2015-09-11 18:57 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Tavultesoft
2015-09-11 18:38 - 2015-09-11 18:38 - 14383616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 13774848 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 02865664 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-11 18:38 - 2015-09-11 18:38 - 02056704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 01763328 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-11 18:38 - 2015-09-11 18:38 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-09-11 18:38 - 2015-09-11 18:38 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00745472 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00690176 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-11 18:38 - 2015-09-11 18:38 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-09-11 18:38 - 2015-09-11 18:38 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-09-11 18:38 - 2015-09-11 18:38 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-09-11 18:38 - 2015-09-11 18:38 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-11 11:37 - 2015-09-11 12:01 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Audacity
2015-09-11 11:36 - 2015-09-11 11:37 - 00000000 ___DC C:\Program Files\Audacity
2015-09-11 11:36 - 2015-09-11 11:36 - 00000981 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-09-11 11:36 - 2015-09-11 11:36 - 00000969 ____C C:\Users\Public\Desktop\Audacity.lnk
2015-09-10 23:20 - 2015-09-11 00:14 - 78952480 ____C C:\Users\jeyapalt\Desktop\Agathinai (2015) DVDRip_2.mp4
2015-09-08 00:42 - 2015-09-08 00:42 - 00000969 ____C C:\Users\Public\Desktop\CCleaner.lnk
2015-09-08 00:42 - 2015-09-08 00:42 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-09-08 00:42 - 2015-09-08 00:42 - 00000000 ___DC C:\Program Files\CCleaner
2015-09-05 22:30 - 2015-09-05 22:30 - 00000329 ____C C:\Users\jeyapalt\Desktop\HP Printer Diagnostic Tools.url
2015-09-04 10:04 - 2015-09-04 10:04 - 00025809 ____C C:\Users\jeyapalt\Downloads\SetFavConfirmPageNonAxis04-09-2015.txt
2015-09-03 21:42 - 2015-09-03 21:42 - 00039936 ____C C:\Users\jeyapalt\Downloads\OpTransactionHistory03-09-2015.xls
2015-09-02 09:37 - 2015-09-02 09:37 - 00013312 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (8).xls
2015-09-01 17:34 - 2015-09-01 17:34 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\CHIRAYUSOFT
2015-09-01 08:31 - 2015-09-01 08:31 - 00013312 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (7).xls
2015-09-01 08:27 - 2015-09-17 21:08 - 00000000 ___DC C:\Program Files\NetWorx
2015-09-01 08:27 - 2015-09-01 08:27 - 00000000 ___DC C:\ProgramData\SoftPerfect
2015-09-01 08:27 - 2015-09-01 08:27 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetWorx
2015-09-01 08:27 - 2015-08-06 06:22 - 00065256 ____C (NetFilterSDK.com) C:\Windows\system32\Drivers\networx.sys
2015-08-31 08:55 - 2015-08-31 08:55 - 00013312 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (6).xls
2015-08-30 14:10 - 2015-08-30 14:10 - 00002891 ____C C:\Users\jeyapalt\Desktop\SpiteNET Spite & Malice v10.5.lnk
2015-08-30 14:10 - 2015-08-30 14:10 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\SpiteNET
2015-08-30 14:10 - 2015-08-30 14:10 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\SpiteNET Spite & Malice 10.5
2015-08-30 14:10 - 2015-08-30 14:10 - 00000000 ___DC C:\Program Files\SpiteNET10
2015-08-29 20:01 - 2015-08-29 20:01 - 03204346 ____C C:\Users\jeyapalt\Desktop\Krishna The Great (Krishna Balram) - Wish Fulfilling Cow - YouTube.MKV
2015-08-29 20:00 - 2015-08-29 20:00 - 06342347 ____C C:\Users\jeyapalt\Desktop\Krishna The Great (Krishna Balram) - Nagaloka city under water - YouTube.MKV
2015-08-29 06:12 - 2015-08-29 06:12 - 00013312 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (5).xls
2015-08-28 22:16 - 2015-09-13 20:43 - 00000000 ___DC C:\Users\jeyapalt\Documents\My Scans
2015-08-28 22:15 - 2015-08-28 22:15 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\HP
2015-08-27 15:03 - 2015-08-27 15:03 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-27 15:03 - 2015-08-27 15:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-27 15:02 - 2015-08-27 15:02 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-08-27 13:51 - 2015-08-27 13:51 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-27 11:33 - 2015-08-27 15:15 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-08-27 11:33 - 2015-08-27 15:14 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-08-27 11:33 - 2015-08-27 15:14 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-08-27 11:33 - 2015-08-27 15:13 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-27 11:32 - 2015-08-27 23:00 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-08-27 11:32 - 2015-08-27 15:13 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-08-27 11:32 - 2015-08-27 15:13 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-08-27 11:32 - 2015-08-27 15:13 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-08-27 11:32 - 2015-08-27 15:12 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-08-27 11:32 - 2015-08-27 15:12 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-08-27 11:32 - 2015-08-27 15:12 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-08-27 11:32 - 2015-08-27 15:12 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-08-27 11:32 - 2013-08-05 07:26 - 00133056 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-08-27 11:31 - 2015-08-27 15:12 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-08-27 11:31 - 2015-08-27 15:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-08-27 11:31 - 2015-08-27 15:09 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-08-27 11:31 - 2015-08-27 15:09 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-08-27 11:31 - 2015-08-27 15:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-27 11:31 - 2015-08-27 15:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-08-27 11:31 - 2015-08-27 15:09 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-08-27 11:30 - 2015-08-27 15:09 - 00919552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-08-27 11:30 - 2015-08-27 15:09 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-08-27 11:30 - 2015-08-27 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-08-27 11:30 - 2015-08-27 15:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 03989952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 03934656 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-27 11:29 - 2015-08-27 15:07 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-27 11:29 - 2015-08-27 15:07 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-27 11:29 - 2015-08-27 15:07 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-27 11:29 - 2015-08-27 15:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-27 11:29 - 2015-08-27 15:07 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-27 11:29 - 2015-08-27 15:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-27 11:29 - 2015-08-27 15:07 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-27 11:29 - 2013-07-12 15:37 - 00086016 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-08-27 11:29 - 2013-07-12 15:37 - 00080896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2015-08-27 11:28 - 2015-08-27 15:07 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-08-27 11:28 - 2015-08-27 13:58 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-08-27 11:28 - 2015-08-27 13:58 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-27 11:28 - 2015-08-27 13:58 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-08-27 11:28 - 2015-08-27 13:58 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-27 11:28 - 2015-08-27 13:58 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-27 11:28 - 2015-08-27 13:58 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-27 11:28 - 2015-08-27 13:57 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-27 11:28 - 2015-08-27 13:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-08-27 11:28 - 2015-08-27 13:51 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-08-27 11:28 - 2015-08-27 13:51 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-08-27 11:28 - 2015-08-27 13:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-08-27 11:28 - 2015-08-27 13:51 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-08-27 11:28 - 2015-08-27 13:51 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-08-27 11:28 - 2015-08-27 13:51 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-08-27 11:28 - 2015-08-27 13:46 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-08-27 11:27 - 2015-08-27 13:46 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-08-27 11:27 - 2015-08-27 13:46 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00370488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-08-27 11:27 - 2015-08-27 13:46 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-27 11:27 - 2015-08-27 13:46 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-08-27 11:27 - 2015-08-27 13:46 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-08-27 11:27 - 2015-08-27 13:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-27 11:27 - 2015-08-27 13:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-08-27 11:27 - 2013-11-27 06:44 - 00258560 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00284672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00076288 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00043520 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00024064 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00020480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-08-27 11:27 - 2013-11-27 06:43 - 00006016 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-08-27 11:26 - 2015-08-27 13:41 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-08-27 11:26 - 2015-08-27 13:41 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-08-27 11:26 - 2015-08-27 13:41 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-08-27 11:26 - 2015-08-27 13:41 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-27 11:26 - 2015-08-27 13:41 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-08-27 11:26 - 2015-08-27 13:41 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-08-27 11:26 - 2015-08-27 13:41 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-08-27 11:26 - 2015-08-27 13:41 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-08-27 11:26 - 2015-08-27 13:41 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-08-27 11:25 - 2015-08-27 13:40 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-08-27 11:25 - 2015-08-27 13:40 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-08-27 11:25 - 2015-08-27 13:40 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-08-27 11:25 - 2015-08-27 13:40 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-08-27 11:25 - 2015-08-27 13:40 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-08-27 11:25 - 2015-08-27 13:40 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-08-27 11:24 - 2015-08-27 13:38 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-08-27 11:24 - 2015-08-27 13:38 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-27 11:24 - 2015-08-27 13:38 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-08-27 11:24 - 2015-08-27 13:38 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-08-27 11:24 - 2015-08-27 13:38 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-08-27 09:23 - 2015-08-27 13:36 - 00023040 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (4).xls
2015-08-26 09:24 - 2015-08-28 09:52 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Google
2015-08-26 08:30 - 2015-08-26 08:30 - 00012800 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (3).xls
2015-08-24 23:23 - 2015-08-24 23:23 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-08-24 23:00 - 2014-05-14 21:53 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-24 23:00 - 2014-05-14 21:53 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-24 23:00 - 2014-05-14 21:53 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-24 23:00 - 2014-05-14 21:47 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-24 22:59 - 2015-08-24 22:59 - 00012800 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (2).xls
2015-08-24 22:59 - 2014-05-14 21:53 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-24 22:59 - 2014-05-14 21:53 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-24 22:59 - 2014-05-14 21:47 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-24 22:59 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-24 22:59 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-23 22:44 - 2015-09-12 12:01 - 00000000 ___DC C:\Program Files\ekalappai
2015-08-23 22:44 - 2015-08-23 22:44 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\eKalappai
2015-08-23 22:35 - 2015-08-23 22:35 - 00002657 ____C C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-08-23 22:31 - 2015-09-14 01:07 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\uTorrent
2015-08-23 20:03 - 2015-08-23 20:03 - 00000000 ___DC C:\Windows\system32\SPReview
2015-08-23 20:02 - 2015-08-23 20:02 - 00000000 ___DC C:\Windows\system32\EventProviders
2015-08-23 19:20 - 2010-11-20 18:02 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-08-23 19:20 - 2010-11-20 18:00 - 01290112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-23 19:20 - 2010-11-20 18:00 - 01211264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-08-23 19:20 - 2010-11-20 18:00 - 00233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-08-23 19:20 - 2010-11-20 18:00 - 00143744 ____C (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-08-23 19:20 - 2010-11-20 18:00 - 00117120 ____C (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-08-23 19:20 - 2010-11-20 17:59 - 00728448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-08-23 19:20 - 2010-11-20 17:59 - 00520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-23 19:20 - 2010-11-20 17:59 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2015-08-23 19:20 - 2010-11-20 17:51 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01619456 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-08-23 19:20 - 2010-11-20 17:51 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2015-08-23 19:20 - 2010-11-20 17:51 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-08-23 19:20 - 2010-11-20 17:50 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 01698816 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-08-23 19:20 - 2010-11-20 17:49 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 02522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-08-23 19:20 - 2010-11-20 17:48 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2015-08-23 19:20 - 2010-11-20 17:47 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 00080896 _____ C:\Windows\system32\RDVGHelper.exe
2015-08-23 19:20 - 2010-11-20 17:47 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2015-08-23 19:20 - 2010-11-20 15:54 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-08-23 19:20 - 2010-11-20 15:54 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-08-23 19:20 - 2010-11-20 15:52 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2015-08-23 19:20 - 2010-11-20 14:39 - 02329088 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-23 19:20 - 2010-11-20 14:15 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-23 19:20 - 2010-11-20 09:22 - 00419880 _____ C:\Windows\system32\locale.nls
2015-08-23 19:20 - 2010-11-05 07:50 - 00146852 _____ C:\Windows\system32\systemsf.ebd
2015-08-23 19:20 - 2010-11-05 07:28 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-08-23 19:20 - 2010-11-05 07:28 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2015-08-23 19:20 - 2010-11-05 07:23 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2015-08-23 19:20 - 2010-11-05 07:23 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2015-08-23 19:19 - 2010-11-20 18:06 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-08-23 19:19 - 2010-11-20 18:00 - 00712576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00240000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00175360 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00085376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00040704 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00028032 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys
2015-08-23 19:19 - 2010-11-20 18:00 - 00028032 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2015-08-23 19:19 - 2010-11-20 17:59 - 00332160 ____C (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2015-08-23 19:19 - 2010-11-20 17:59 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-08-23 19:19 - 2010-11-20 17:59 - 00187776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-23 19:19 - 2010-11-20 17:59 - 00080256 ____C (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 00043392 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-08-23 19:19 - 2010-11-20 17:59 - 00022400 ____C (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-08-23 19:19 - 2010-11-20 17:54 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-08-23 19:19 - 2010-11-20 17:54 - 00194800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-08-23 19:19 - 2010-11-20 17:53 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00850432 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00826368 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2015-08-23 19:19 - 2010-11-20 17:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-08-23 19:19 - 2010-11-20 17:50 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2015-08-23 19:19 - 2010-11-20 17:50 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2015-08-23 19:19 - 2010-11-20 17:50 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-08-23 19:19 - 2010-11-20 17:50 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2015-08-23 19:19 - 2010-11-20 17:50 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 02341376 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 02151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-08-23 19:19 - 2010-11-20 17:49 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2015-08-23 19:19 - 2010-11-20 17:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-08-23 19:19 - 2010-11-20 17:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2015-08-23 19:19 - 2010-11-20 17:49 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 01400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-08-23 19:19 - 2010-11-20 17:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-08-23 19:19 - 2010-11-20 17:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-23 19:19 - 2010-11-20 17:47 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-08-23 19:19 - 2010-11-20 17:47 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-08-23 19:19 - 2010-11-20 17:46 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2015-08-23 19:19 - 2010-11-20 17:46 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-08-23 19:19 - 2010-11-20 17:46 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-08-23 19:19 - 2010-11-20 17:46 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-08-23 19:19 - 2010-11-20 17:46 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2015-08-23 19:19 - 2010-11-20 17:46 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-08-23 19:19 - 2010-11-20 17:46 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-08-23 19:19 - 2010-11-20 17:46 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-08-23 19:19 - 2010-11-20 17:46 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-08-23 19:19 - 2010-11-20 17:46 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-08-23 19:19 - 2010-11-20 17:46 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2015-08-23 19:19 - 2010-11-20 17:26 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-08-23 19:19 - 2010-11-20 17:24 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-23 19:19 - 2010-11-20 15:54 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2015-08-23 19:19 - 2010-11-20 15:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-08-23 19:19 - 2010-11-20 15:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2015-08-23 19:19 - 2010-11-20 15:30 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-08-23 19:19 - 2010-11-20 15:29 - 00035968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys
2015-08-23 19:19 - 2010-11-20 14:44 - 00215552 ____C (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2015-08-23 19:19 - 2010-11-20 14:36 - 00294400 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-23 19:19 - 2010-11-20 14:14 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2015-08-23 19:19 - 2010-11-20 14:14 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-08-23 19:19 - 2010-11-20 14:14 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-08-23 19:19 - 2010-11-20 14:14 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-08-23 19:19 - 2010-11-20 14:12 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-08-23 19:19 - 2010-11-20 14:09 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2015-08-23 19:19 - 2010-11-05 07:28 - 00155472 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-08-23 19:19 - 2010-11-05 07:28 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-08-23 19:19 - 2010-11-05 07:28 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2015-08-23 19:18 - 2010-11-20 18:06 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2015-08-23 19:18 - 2010-11-20 18:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2015-08-23 19:18 - 2010-11-20 17:59 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-08-23 19:18 - 2010-11-20 17:51 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-08-23 19:18 - 2010-11-20 17:51 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-08-23 19:18 - 2010-11-20 17:51 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2015-08-23 19:18 - 2010-11-20 17:51 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2015-08-23 19:18 - 2010-11-20 17:51 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-08-23 19:18 - 2010-11-20 17:50 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2015-08-23 19:18 - 2010-11-20 17:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2015-08-23 19:18 - 2010-11-20 17:50 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2015-08-23 19:18 - 2010-11-20 17:49 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00093696 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2015-08-23 19:18 - 2010-11-20 17:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2015-08-23 19:18 - 2010-11-20 17:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 03727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2015-08-23 19:18 - 2010-11-20 17:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2015-08-23 19:18 - 2010-11-20 17:47 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2015-08-23 19:18 - 2010-11-20 17:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-08-23 19:18 - 2010-11-20 17:46 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2015-08-23 19:18 - 2010-11-20 17:46 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-08-23 19:18 - 2010-11-20 17:46 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-08-23 19:18 - 2010-11-20 17:46 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2015-08-23 19:18 - 2010-11-20 17:46 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2015-08-23 19:18 - 2010-11-20 17:46 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2015-08-23 19:18 - 2010-11-20 17:46 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2015-08-23 19:18 - 2010-11-20 17:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2015-08-23 19:18 - 2010-11-20 17:46 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2015-08-23 19:18 - 2010-11-20 17:46 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-08-23 19:18 - 2010-11-20 17:46 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-08-23 19:18 - 2010-11-20 17:46 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2015-08-23 19:18 - 2010-11-20 17:46 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2015-08-23 19:18 - 2010-11-20 15:52 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-23 19:18 - 2010-11-20 15:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-08-23 19:18 - 2010-11-20 15:36 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-08-23 19:18 - 2010-11-20 15:29 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-08-23 19:18 - 2010-11-20 15:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-08-23 19:18 - 2010-11-20 14:37 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-08-23 19:18 - 2010-11-20 14:10 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-08-23 19:18 - 2010-11-20 14:09 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-08-23 19:18 - 2010-11-05 07:41 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2015-08-23 19:17 - 2010-11-20 17:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-08-23 19:17 - 2010-11-20 17:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2015-08-23 19:17 - 2010-11-20 17:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2015-08-23 19:17 - 2010-11-20 17:48 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-08-23 19:17 - 2010-11-20 17:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-08-23 19:17 - 2010-11-20 17:47 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00066048 _____ C:\Windows\system32\PrintBrmUi.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2015-08-23 19:17 - 2010-11-20 17:47 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-08-23 19:17 - 2010-11-20 17:46 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2015-08-23 19:17 - 2010-11-20 17:46 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2015-08-23 19:17 - 2010-11-20 17:46 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2015-08-23 19:17 - 2010-11-20 17:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2015-08-23 19:17 - 2010-11-20 17:46 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2015-08-23 19:17 - 2010-11-20 17:46 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2015-08-23 19:17 - 2010-11-20 17:46 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2015-08-23 19:17 - 2010-11-20 17:46 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2015-08-23 19:17 - 2010-11-20 17:46 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2015-08-23 19:17 - 2010-11-20 17:46 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2015-08-23 19:17 - 2010-11-20 17:37 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-08-23 19:17 - 2010-11-20 17:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2015-08-23 19:17 - 2010-11-20 17:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-08-23 19:17 - 2010-11-20 17:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-08-23 19:17 - 2010-11-20 17:35 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2015-08-23 19:17 - 2010-11-20 17:35 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2015-08-23 19:17 - 2010-11-20 17:33 - 00053760 ____C (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2015-08-23 19:17 - 2010-11-20 17:33 - 00044544 ____C (Microsoft Corporation) C:\Windows\system32\vmbusres.dll
2015-08-23 19:17 - 2010-11-20 17:33 - 00038400 ____C (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll
2015-08-23 19:17 - 2010-11-20 17:30 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2015-08-23 19:17 - 2010-11-20 17:30 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2015-08-23 19:17 - 2010-11-20 17:30 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2015-08-23 19:17 - 2010-11-20 17:30 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-08-23 19:17 - 2010-11-20 17:30 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2015-08-23 19:17 - 2010-11-20 17:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-08-23 19:17 - 2010-11-20 17:26 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2015-08-23 19:17 - 2010-11-20 16:22 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2015-08-23 19:17 - 2010-11-20 15:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2015-08-23 19:17 - 2010-11-20 15:51 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2015-08-23 19:17 - 2010-11-20 15:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-08-23 19:17 - 2010-11-20 15:51 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
2015-08-23 19:17 - 2010-11-20 15:37 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2015-08-23 19:17 - 2010-11-20 15:37 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-08-23 19:17 - 2010-11-20 15:37 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-08-23 19:17 - 2010-11-20 15:36 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-08-23 19:17 - 2010-11-20 15:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2015-08-23 19:17 - 2010-11-20 15:30 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-08-23 19:17 - 2010-11-20 15:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2015-08-23 19:17 - 2010-11-20 15:30 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2015-08-23 19:17 - 2010-11-20 15:30 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2015-08-23 19:17 - 2010-11-20 15:29 - 00132224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-08-23 19:17 - 2010-11-20 15:29 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-08-23 19:17 - 2010-11-20 15:29 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-08-23 19:17 - 2010-11-20 15:28 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-08-23 19:17 - 2010-11-20 15:20 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2015-08-23 19:17 - 2010-11-20 15:20 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-08-23 19:17 - 2010-11-20 15:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4Prt.sys
2015-08-23 19:17 - 2010-11-20 15:20 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2015-08-23 19:17 - 2010-11-20 14:54 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-08-23 19:17 - 2010-11-20 14:49 - 00065536 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-08-23 19:17 - 2010-11-20 14:44 - 00116224 ____C (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll
2015-08-23 19:17 - 2010-11-20 14:44 - 00113664 ____C (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2015-08-23 19:17 - 2010-11-20 14:44 - 00113664 ____C (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2015-08-23 19:17 - 2010-11-20 14:44 - 00047616 ____C (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2015-08-23 19:17 - 2010-11-20 14:44 - 00017920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys
2015-08-23 19:17 - 2010-11-20 14:44 - 00014336 ____C (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2015-08-23 19:17 - 2010-11-20 14:44 - 00005632 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys
2015-08-23 19:17 - 2010-11-20 14:17 - 00010240 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2015-08-23 19:17 - 2010-11-20 14:12 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-08-23 19:17 - 2010-11-20 14:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2015-08-23 19:17 - 2010-11-20 14:08 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2015-08-23 19:17 - 2010-11-20 10:53 - 00053600 _____ C:\Windows\system32\dosx.exe
2015-08-23 19:17 - 2010-11-10 07:15 - 00010429 _____ C:\Windows\system32\ScavengeSpace.xml
2015-08-23 19:16 - 2010-11-20 17:51 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2015-08-23 19:16 - 2010-11-05 07:50 - 00105559 _____ C:\Windows\system32\RacRules.xml
2015-08-23 19:15 - 2010-11-20 17:51 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2015-08-23 17:06 - 2015-08-23 17:06 - 00012800 ____C C:\Users\jeyapalt\Downloads\axisdirect-report (1).xls
2015-08-23 13:14 - 2015-08-23 13:14 - 00000000 ___DC C:\Users\jeyapalt\Documents\Fragments
2015-08-23 13:06 - 2015-08-23 13:06 - 00000000 ___DC C:\ProgramData\FLEXnet
2015-08-23 12:55 - 2015-09-16 19:24 - 00000000 ___DC C:\Program Files\Common Files\Adobe
2015-08-23 12:55 - 2015-09-13 17:56 - 00000000 ___DC C:\ProgramData\Adobe
2015-08-23 12:55 - 2015-09-13 17:47 - 00000000 ___DC C:\Program Files\Adobe
2015-08-23 10:47 - 2015-09-18 09:07 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\vlc
2015-08-23 09:35 - 2015-09-14 01:07 - 00000000 ___DC C:\Windows\Panther
2015-08-23 09:34 - 2015-09-17 18:30 - 00001028 ____C C:\Users\Public\Desktop\VLC media player.lnk
2015-08-23 09:34 - 2015-08-23 09:34 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-23 09:34 - 2015-08-23 09:34 - 00000000 ___DC C:\Program Files\VideoLAN
2015-08-23 09:27 - 2015-08-26 15:44 - 00000000 ___DC C:\Windows.old
2015-08-23 09:24 - 2015-08-23 09:24 - 00150274 ____C C:\Users\jeyapalt\Downloads\www_asianpaints_default.html
2015-08-23 09:20 - 2015-08-23 09:20 - 00003822 ____C C:\Users\jeyapalt\Desktop\Waterproofing Solutions for Roof, Wall & Terrace from Asian Paints Smartcare.OGG
2015-08-23 09:16 - 2015-08-23 09:16 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-08-23 09:10 - 2015-08-23 09:10 - 00000000 ___DC C:\Windows\system32\Lang
2015-08-23 09:10 - 2015-08-23 09:10 - 00000000 ___DC C:\Program Files\Intel
2015-08-23 09:10 - 2009-09-23 11:50 - 00398336 ____C (Intel® Corporation) C:\Windows\system32\TVWizudlg.exe
2015-08-23 09:10 - 2009-09-23 11:49 - 00140288 ____C () C:\Windows\system32\igfxtvcx.dll
2015-08-23 09:10 - 2009-09-23 11:47 - 00121232 ____C C:\Windows\system32\IScrNB.bmp
2015-08-23 08:40 - 2015-08-23 08:40 - 00001345 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-08-23 08:40 - 2015-08-23 08:40 - 00001326 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-08-23 08:39 - 2015-09-18 22:58 - 01186624 ____C C:\Windows\WindowsUpdate.log
2015-08-23 03:19 - 2015-08-23 03:19 - 00000000 __SDC C:\Windows\system32\CompatTel
2015-08-23 03:19 - 2015-08-23 03:19 - 00000000 ___DC C:\Windows\system32\appraiser
2015-08-23 03:03 - 2015-08-23 03:03 - 00000000 ___DC C:\Windows\system32\x64
2015-08-23 03:03 - 2009-09-23 19:30 - 01002008 ____C (Intel Corporation) C:\Windows\system32\igxpun.exe
2015-08-23 03:00 - 2015-08-23 03:00 - 00000000 ___DC C:\Program Files\MSXML 4.0
2015-08-23 00:05 - 2015-08-23 00:17 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-23 00:05 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll
2015-08-23 00:04 - 2015-08-23 00:04 - 00000000 ___DC C:\Program Files\Microsoft Works
2015-08-23 00:03 - 2015-08-23 00:03 - 00000000 ___DC C:\Program Files\Microsoft Visual Studio
2015-08-23 00:03 - 2015-08-23 00:03 - 00000000 ___DC C:\Program Files\Common Files\DESIGNER
2015-08-23 00:02 - 2015-08-23 17:22 - 00000000 ___DC C:\Program Files\Microsoft.NET
2015-08-23 00:02 - 2015-08-23 00:02 - 00000000 __RDC C:\Users\jeyapalt\Documents\MeggieSoft Games
2015-08-23 00:02 - 2015-08-23 00:02 - 00000000 ___DC C:\Windows\PCHEALTH
2015-08-23 00:01 - 2015-09-18 21:07 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\MeggieSoft Games
2015-08-23 00:01 - 2015-08-23 00:01 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MeggieSoft Games
2015-08-23 00:01 - 2015-08-23 00:01 - 00000000 ___DC C:\Program Files\Microsoft Visual Studio 8
2015-08-23 00:01 - 2015-08-23 00:01 - 00000000 ___DC C:\Program Files\MeggieSoft Games
2015-08-23 00:01 - 2000-05-22 16:58 - 00608448 ____C (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2015-08-23 00:01 - 2000-05-22 06:00 - 00115920 ____C (Microsoft Corporation) C:\Windows\system32\msinet.ocx
2015-08-23 00:01 - 1998-06-24 00:00 - 00137000 ____C (Microsoft Corporation) C:\Windows\system32\msmapi32.ocx
2015-08-23 00:00 - 2015-08-23 00:17 - 00000000 ___DC C:\ProgramData\Microsoft Help
2015-08-23 00:00 - 2015-08-23 00:03 - 00000000 ___DC C:\Program Files\Microsoft Office
2015-08-23 00:00 - 2015-08-23 00:00 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\Microsoft Help
2015-08-22 23:47 - 2015-09-18 09:14 - 00649593 ____C C:\Users\jeyapalt\mdD345281.dll
2015-08-22 23:47 - 2015-08-22 23:47 - 00000744 ____C C:\Users\jeyapalt\ac345281.dat
2015-08-22 23:42 - 2015-08-22 23:42 - 00000000 ___DC C:\Program Files\Common Files\Java
2015-08-22 23:41 - 2015-08-22 23:41 - 00097888 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-08-22 23:41 - 2015-08-22 23:41 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Sun
2015-08-22 23:41 - 2015-08-22 23:41 - 00000000 ___DC C:\Users\jeyapalt\.oracle_jre_usage
2015-08-22 23:41 - 2015-08-22 23:41 - 00000000 ___DC C:\ProgramData\Oracle
2015-08-22 23:41 - 2015-08-22 23:41 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-22 23:41 - 2015-08-22 23:41 - 00000000 ___DC C:\Program Files\Java
2015-08-22 23:05 - 2015-08-22 23:05 - 00012800 ____C C:\Users\jeyapalt\Downloads\axisdirect-report.xls
2015-08-22 23:00 - 2015-08-22 23:01 - 00000000 ___DC C:\Windows\system32\vbox
2015-08-22 23:00 - 2015-08-22 23:00 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\AVAST Software
2015-08-22 22:59 - 2015-08-22 22:59 - 00002079 ____C C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-08-22 22:59 - 2015-08-22 22:59 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-22 22:59 - 2015-08-22 22:59 - 00000000 ___DC C:\ProgramData\Google
2015-08-22 22:56 - 2015-09-16 11:00 - 00002129 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-22 22:56 - 2015-08-22 22:56 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-22 22:40 - 2015-09-18 22:57 - 00000886 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-22 22:40 - 2015-09-18 22:54 - 00000882 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-22 22:40 - 2015-09-18 19:08 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\Google
2015-08-22 22:40 - 2015-08-22 22:59 - 00000000 ___DC C:\Program Files\Google
2015-08-22 22:40 - 2015-08-22 22:40 - 00433264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00313472 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-08-22 22:40 - 2015-08-22 22:40 - 00208664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00113592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00081728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00076000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-08-22 22:40 - 2015-08-22 22:40 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-08-22 22:40 - 2015-08-22 22:40 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-08-22 22:40 - 2015-08-22 22:39 - 00788784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-08-22 22:40 - 2015-08-22 22:39 - 00095112 ____C (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2015-08-22 22:22 - 2015-07-30 01:27 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-22 22:22 - 2015-07-30 01:24 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-22 22:22 - 2015-07-30 01:24 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-22 22:22 - 2015-07-30 01:24 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-22 22:22 - 2015-07-30 01:23 - 00952832 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-22 22:22 - 2015-07-30 01:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-22 22:22 - 2015-01-28 04:58 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-08-22 21:58 - 2015-08-22 22:17 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\Microsoft Games
2015-08-22 21:56 - 2015-08-22 21:56 - 00000000 ___DC C:\Program Files\AVAST Software
2015-08-22 21:35 - 2015-08-22 21:35 - 00000000 ___DC C:\ProgramData\WEBREG
2015-08-22 21:34 - 2015-09-13 18:59 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Adobe
2015-08-22 21:34 - 2015-08-28 22:14 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\HP
2015-08-22 21:34 - 2015-08-22 21:34 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Macromedia
2015-08-22 21:33 - 2015-09-17 16:59 - 00000000 ___DC C:\Program Files\Yahoo!
2015-08-22 21:33 - 2015-09-12 22:34 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\HpUpdate
2015-08-22 21:32 - 2015-09-17 18:30 - 00001273 ____C C:\Users\Public\Desktop\HP Solution Center.lnk
2015-08-22 21:32 - 2015-09-17 18:30 - 00001119 ____C C:\Users\Public\Desktop\Shop for HP Supplies.lnk
2015-08-22 21:32 - 2015-09-17 18:30 - 00001059 ____C C:\Users\Public\Desktop\HP Photo Creations.lnk
2015-08-22 21:32 - 2015-09-17 18:26 - 00001279 ____C C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2015-08-22 21:32 - 2015-08-22 21:32 - 00000000 ___DC C:\ProgramData\HP Product Assistant
2015-08-22 21:32 - 2015-08-22 21:32 - 00000000 ___DC C:\ProgramData\HP Photo Creations
2015-08-22 21:32 - 2015-08-22 21:32 - 00000000 ___DC C:\Program Files\HP Photo Creations
2015-08-22 21:31 - 2015-08-22 21:33 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-22 21:31 - 2015-08-22 21:31 - 00000000 ___DC C:\ProgramData\AVAST Software
2015-08-22 21:31 - 2015-08-22 21:31 - 00000000 ___DC C:\Program Files\Common Files\HP
2015-08-22 21:31 - 2015-08-22 21:31 - 00000000 ___DC C:\Program Files\Common Files\Hewlett-Packard
2015-08-22 21:30 - 2015-08-22 21:34 - 00172148 ____C C:\Windows\hpoins37.dat
2015-08-22 21:30 - 2015-08-22 21:34 - 00000822 ____C C:\ProgramData\hpzinstall.log
2015-08-22 21:30 - 2015-08-22 21:33 - 00000000 ___DC C:\Program Files\HP
2015-08-22 21:30 - 2010-02-03 17:35 - 00000558 ____C C:\Windows\hpomdl37.dat
2015-08-22 21:30 - 2008-10-06 15:38 - 00121344 _____ (Hewlett-Packard Company) C:\Windows\system32\hpf3l083.dll
2015-08-22 21:29 - 2015-08-28 22:14 - 00000000 ___DC C:\ProgramData\HP
2015-08-22 21:29 - 2008-10-30 14:07 - 00737280 ____C (Hewlett-Packard) C:\Windows\system32\hposwia_d02a.dll
2015-08-22 21:29 - 2008-10-30 14:07 - 00598016 ____C (Hewlett-Packard Co.) C:\Windows\system32\hpost_d02a.dll
2015-08-22 21:29 - 2008-10-30 14:07 - 00307200 ____C (Hewlett-Packard Co.) C:\Windows\system32\hposc_d02a.dll
2015-08-22 21:29 - 2008-10-30 14:05 - 00271704 ____C (Hewlett-Packard) C:\Windows\system32\hpzids01.dll
2015-08-22 21:05 - 2015-09-18 22:27 - 00000830 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-22 21:05 - 2015-08-22 21:05 - 00778440 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-08-22 21:05 - 2015-08-22 21:05 - 00142536 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-08-22 21:05 - 2015-08-22 21:05 - 00000000 ___DC C:\Windows\system32\Macromed
2015-08-22 21:04 - 2015-06-23 13:27 - 00246952 ____C (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-08-22 20:52 - 2015-09-18 23:02 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\DMCache
2015-08-22 20:52 - 2015-09-18 13:57 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\IDM
2015-08-22 20:52 - 2015-08-29 22:21 - 00000000 ___DC C:\Users\jeyapalt\Downloads\Compressed
2015-08-22 20:52 - 2015-08-22 20:53 - 00000000 ___DC C:\Program Files\Internet Download Manager
2015-08-22 20:52 - 2015-08-22 20:52 - 00000983 ____C C:\Users\jeyapalt\Desktop\Internet Download Manager.lnk
2015-08-22 20:52 - 2015-08-22 20:52 - 00000000 ___DC C:\Users\jeyapalt\Downloads\Video
2015-08-22 20:52 - 2015-08-22 20:52 - 00000000 ___DC C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2015-08-22 20:52 - 2015-08-22 20:52 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2015-08-22 20:52 - 2015-08-22 20:52 - 00000000 ___DC C:\ProgramData\IDM
2015-08-22 20:41 - 2015-09-17 13:18 - 00115768 ____C C:\Users\jeyapalt\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-22 20:32 - 2015-09-13 19:44 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\Adobe
2015-08-22 20:24 - 2015-09-17 13:32 - 00005148 ____C C:\Windows\system32\PerfStringBackup.INI
2015-08-22 20:21 - 2015-09-17 12:04 - 00000000 ___DC C:\Users\jeyapalt\AppData\Local\VirtualStore
2015-08-22 20:21 - 2015-08-22 23:47 - 00000000 ___DC C:\Users\jeyapalt
2015-08-22 20:21 - 2015-08-22 20:21 - 00001417 ____C C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-22 20:21 - 2015-08-22 20:21 - 00000020 __SHC C:\Users\jeyapalt\ntuser.ini
2015-08-22 20:21 - 2009-07-14 10:12 - 00000000 __RDC C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-22 20:21 - 2009-07-14 10:07 - 00000000 __RDC C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-18 22:54 - 2009-07-14 10:23 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2015-09-18 22:34 - 2009-07-14 10:04 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-18 22:34 - 2009-07-14 10:04 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-17 12:40 - 2009-07-14 10:03 - 00418552 ____C C:\Windows\system32\FNTCACHE.DAT
2015-09-12 12:43 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\rescache
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\zh-TW
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\zh-HK
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\zh-CN
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\tr-TR
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\sv-SE
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\ru-RU
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\pt-PT
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\pt-BR
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\pl-PL
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\nl-NL
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\nb-NO
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\ko-KR
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\ja-JP
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\it-IT
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\hu-HU
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\fr-FR
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\fi-FI
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\el-GR
2015-09-11 18:40 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\de-DE
2015-09-11 14:50 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\NDF
2015-09-01 23:47 - 2009-07-14 13:18 - 00000000 __RDC C:\Users\Public\Recorded TV
2015-08-28 12:18 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\Microsoft.NET
2015-08-27 22:58 - 2009-07-14 13:20 - 00000000 ___DC C:\Program Files\Windows Journal
2015-08-27 14:03 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\Windows Defender
2015-08-27 13:46 - 2015-05-08 04:40 - 00391640 __RSH C:\bootmgr
2015-08-25 23:53 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\LogFiles
2015-08-25 07:31 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\AppCompat
2015-08-23 20:13 - 2009-07-14 13:19 - 00000000 _SHDC C:\Windows\BitLockerDiscoveryVolumeContents
2015-08-23 20:13 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\Windows Sidebar
2015-08-23 20:13 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\Windows Portable Devices
2015-08-23 20:13 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\Windows Photo Viewer
2015-08-23 20:13 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\DVD Maker
2015-08-23 20:12 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-08-23 20:07 - 2009-07-14 07:35 - 00152576 ____C (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-08-23 09:35 - 2015-05-08 04:40 - 00008192 _RSHC C:\BOOTSECT.BAK
2015-08-23 09:35 - 2009-07-14 10:27 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-08-23 09:35 - 2009-07-14 10:22 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-08-23 08:40 - 2009-07-14 10:22 - 00000000 __RDC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-23 08:40 - 2009-07-14 08:07 - 00000000 __RDC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-23 08:37 - 2009-07-14 13:19 - 00000000 ___DC C:\Windows\CSC
2015-08-23 00:04 - 2009-07-14 10:22 - 00000000 ___DC C:\Program Files\MSBuild
2015-08-23 00:04 - 2009-07-14 08:07 - 00000000 ___DC C:\Program Files\Common Files\microsoft shared
2015-08-23 00:03 - 2009-07-14 13:19 - 00000000 ___DC C:\Windows\ShellNew
2015-08-23 00:00 - 2009-07-14 08:07 - 00000000 ___DC C:\Program Files\Common Files\System
2015-08-23 00:00 - 2009-07-14 07:34 - 00000513 ____C C:\Windows\win.ini
2015-08-22 21:31 - 2009-07-14 10:22 - 00000000 ___DC C:\Windows\twain_32
2015-08-22 21:04 - 2009-07-14 10:22 - 00000000 ___DC C:\Windows\system32\restore
2015-08-22 20:20 - 2015-05-07 15:16 - 00000000 _SHDC C:\Recovery
2015-08-22 20:20 - 2009-07-14 08:07 - 00000000 _RHDC C:\Users\Public\Libraries
2015-08-22 20:20 - 2009-07-14 08:07 - 00000000 ___DC C:\Windows\system32\Recovery

==================== Files in the root of some directories =======

2015-08-22 21:30 - 2015-08-22 21:34 - 0000822 ____C () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-11 10:55

==================== End of FRST.txt ============================

 

ADDITION LOG FILE

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:15-09-2015
Ran by jeyapalt (2015-09-18 23:09:42)
Running from C:\Users\jeyapalt\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2015-08-22 14:50:58)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2075768099-1560291849-3996437312-500 - Administrator - Disabled)
Guest (S-1-5-21-2075768099-1560291849-3996437312-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2075768099-1560291849-3996437312-1002 - Limited - Enabled)
jeyapalt (S-1-5-21-2075768099-1560291849-3996437312-1001 - Administrator - Enabled) => C:\Users\jeyapalt

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Acrobat XI Pro (HKLM\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.12 - Adobe Systems)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Audacity 2.1.1 (HKLM\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.3.2225 - AVAST Software)
BufferChm (Version: 140.0.212.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Copy (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Destinations (Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 140.0.212.000 - Hewlett-Packard) Hidden
DJ_AIO_05_F4400_Software_Min (Version: 140.0.690.000 - Hewlett-Packard) Hidden
eKalappai (remove only) (HKLM\...\eKalappai) (Version:  - )
F4400 (Version: 140.0.696.000 - Hewlett-Packard) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
GPBaseService2 (Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F4400 Printer Driver Software 14.0 Rel. 5 (HKLM\...\{A800FCC9-8E1E-4D84-9CED-47870701FDE1}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel® TV Wizard (HKLM\...\TVWiz) (Version:  - Intel Corporation)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
MarketResearch (Version: 140.0.212.000 - Hewlett-Packard) Hidden
MeggieSoft Games Rummy 500 (HKLM\...\MeggieSoft Games Rummy 500_is1) (Version: Version 2013 - MeggieSoft Games)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NetWorx 5.4.1 (HKLM\...\NetWorx_is1) (Version:  - Softperfect)
Revo Uninstaller Pro 2.5.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.8 - VS Revo Group, Ltd.)
Scan (Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 140.0.213.000 - Hewlett-Packard) Hidden
SpiteNET Spite and Malice 10.5 (HKLM\...\{FEBACAB5-8C19-4CC3-9D5B-90392AC2D4F1}) (Version: 10.5.0.0 - SpiteNET)
Status (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (Version: 140.0.212.000 - Hewlett-Packard) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{0002E005-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2075768099-1560291849-3996437312-1001_Classes\CLSID\{D5DE8D20-5BB8-11D1-A1E3-00A0C90F2731}\InprocServer32 -> no filepath

==================== Restore Points =========================

17-09-2015 21:03:28 JRT Pre-Junkware Removal
17-09-2015 21:20:51 Revo Uninstaller Pro's restore point - µTorrent

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 07:34 - 2009-06-11 03:09 - 00000824 ____C C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1C577EF0-86F6-4787-859D-DD4077B287E3} - System32\Tasks\{71625230-0904-4273-9FFD-00EA0B26779E} => pcalua.exe -a C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe -c /UNINSTALL
Task: {33F30182-2D36-40E3-8135-C87BB9E7CBAF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-22] (AVAST Software)
Task: {44B3CD94-A982-4750-B924-EBE4CD626E88} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-22] (Adobe Systems Incorporated)
Task: {56573E26-EAF7-4F89-92DF-F09701C4CF05} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {57D6E320-9377-46C8-856A-B26FF03A27D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {A4E31890-847C-4CC9-8250-849E60E60C89} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C0BCD5F8-21D1-4C9D-A17B-8F106952E5F4} - System32\Tasks\{0804F80E-8BE4-4EA7-835F-D097D7B16FC2} => pcalua.exe -a C:\Users\jeyapalt\Downloads\Programs\chromeinstall-8u60.exe -d C:\Users\jeyapalt\AppData\Roaming\IDM

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-22 22:40 - 2015-08-22 22:40 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-22 22:40 - 2015-08-22 22:40 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-18 18:50 - 2015-09-18 18:50 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15091800\algo.dll
2015-09-18 22:57 - 2015-09-18 22:57 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15091801\algo.dll
2015-08-22 22:40 - 2015-08-22 22:40 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-05 06:48 - 2014-05-05 06:48 - 00290816 _____ () C:\Program Files\ekalappai\ekalappai.exe
2014-05-05 05:34 - 2014-05-05 05:34 - 00544817 _____ () C:\Program Files\ekalappai\libgcc_s_dw2-1.dll
2014-05-05 05:34 - 2014-05-05 05:34 - 00989805 _____ () C:\Program Files\ekalappai\libstdc++-6.dll
2014-05-05 05:34 - 2014-05-05 05:34 - 03369922 _____ () C:\Program Files\ekalappai\icuin51.dll
2014-05-05 05:34 - 2014-05-05 05:34 - 01978690 _____ () C:\Program Files\ekalappai\icuuc51.dll
2014-05-05 05:34 - 2014-05-05 05:34 - 00727457 _____ () C:\Program Files\ekalappai\icudt51.dll
2014-02-02 03:24 - 2014-02-02 03:24 - 01270272 _____ () C:\Program Files\ekalappai\platforms\qwindows.dll
2014-05-05 06:47 - 2014-05-05 06:47 - 00036352 _____ () C:\Program Files\ekalappai\ekhook.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2075768099-1560291849-3996437312-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jeyapalt\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55CF1C3C-B5A9-4911-A59E-80EA02A857F7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E622E110-CAA6-4F9D-840B-64E38EEF9698}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{7334F290-2D31-42A4-A433-AB7244824423}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{65C476BB-7655-456C-893D-AB15D798D69D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{9C5295E2-B062-4B3D-82C9-678DFCE953F8}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{B46F8F36-8F54-4701-AA21-66710B65EA75}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{B2E9B022-5877-450C-A2B2-A44187B12DE1}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{6631ABA4-0D31-40D7-933E-F095F4788448}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{381CC317-2718-455E-8112-2E075DFCEACE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{D199712C-53D4-4C22-860A-0FD131E1C499}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{9416F669-0D64-4B62-8E1E-F3ED4136EDA0}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{08391BE8-B2BE-43A4-8F78-6271117F1A5A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{223D38AB-CF43-4C3C-9C19-1E6A82FD7B1A}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{852B1D5B-5821-4750-B60A-B4506BEED61B}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{96093E2E-9105-4ABC-BB40-FFD879130FD2}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{7218C5C5-6BFE-4C2C-A478-A7407A1F1BFF}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BCB2B625-39C4-4827-98AF-E47F3DDBC995}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C5811DDA-3B28-48C5-8BC9-89DB4768E7D7}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{72401BD7-D195-47EE-8D69-B71FD02405D3}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{39417681-B001-4EB2-81AA-608847385B3E}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BFCD29C0-1805-4024-9581-B09001D24B38}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{892F5352-FC97-47FD-B432-D4723974E268}] => (Allow) C:\Users\jeyapalt\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{54143893-A010-417B-9248-B4DD5D85BAEB}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{D21690C5-62E5-4253-A345-BEC56ED8A117}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Multimedia Controller
Description: Multimedia Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (09/17/2015 08:13:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Spyhunter4.exe version 4.20.9.4533 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b04

Start Time: 01d0f13cba5dc9d5

Termination Time: 140

Application Path: C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe

Report Id:

Error: (09/17/2015 08:00:12 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {2f4a7f87-6c17-44ba-b73c-0d3635c3e9c1}

Error: (09/17/2015 05:15:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 10.0.9200.17457 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1714

Start Time: 01d0f13e191a2115

Termination Time: 20

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000404,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,01D4F928.64).  hr = 0x80070005, Access is denied.
.

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000a94,(null),0,REG_BINARY,04EEEC20.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
   Writer Name: MSSearch Service Writer
   Writer Instance ID: {c3a43bb1-d98e-4fd9-9ef6-a666b5a201b7}

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000a94,(null),0,REG_BINARY,04EEEC0C.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
   Writer Name: MSSearch Service Writer
   Writer Instance ID: {c3a43bb1-d98e-4fd9-9ef6-a666b5a201b7}

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000003e8,(null),0,REG_BINARY,036BEE68.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {22f12ffe-fc13-476a-8004-49c8ce7b53ed}

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000003e8,(null),0,REG_BINARY,036BEE54.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {22f12ffe-fc13-476a-8004-49c8ce7b53ed}

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x0000080c,(null),0,REG_BINARY,011FF250.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
   Writer Name: WMI Writer
   Writer Instance ID: {0beb9503-6e86-4367-8170-7048445ae73a}

Error: (09/17/2015 04:59:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x0000080c,(null),0,REG_BINARY,011FF23C.64).  hr = 0x80070005, Access is denied.
.

Operation:
   BackupShutdown Event

Context:
   Execution Context: Writer
   Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
   Writer Name: WMI Writer
   Writer Instance ID: {0beb9503-6e86-4367-8170-7048445ae73a}

System errors:
=============
Error: (09/18/2015 10:54:59 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (09/18/2015 10:54:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SpyHunter 4 Service service failed to start due to the following error:
%%2

Error: (09/18/2015 10:54:28 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: NT AUTHORITY)
Description: Idle power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (09/18/2015 10:54:28 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: NT AUTHORITY)
Description: Idle power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (09/18/2015 06:48:03 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (09/18/2015 06:47:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SpyHunter 4 Service service failed to start due to the following error:
%%2

Error: (09/18/2015 06:47:25 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: NT AUTHORITY)
Description: Idle power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (09/18/2015 06:47:25 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: NT AUTHORITY)
Description: Idle power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (09/18/2015 03:28:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (09/18/2015 03:20:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

==================== Memory info ===========================

Processor: Intel® Core™2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 43%
Total physical RAM: 2035.84 MB
Available physical RAM: 1153.7 MB
Total Virtual: 4071.68 MB
Available Virtual: 3044.29 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:29.29 GB) (Free:1.81 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (jeyapalt) (Fixed) (Total:39.06 GB) (Free:30.06 GB) NTFS
Drive e: (THE DEN) (Fixed) (Total:34.06 GB) (Free:8.68 GB) NTFS
Drive f: () (Fixed) (Total:5 GB) (Free:4.32 GB) NTFS
Drive g: (New Volume) (Fixed) (Total:41.63 GB) (Free:9.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 7A695750)
Partition 1: (Active) - (Size=29.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.8 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

 

 

Hope I have posted the above correctly. Kindly help me to ward away this intrusive malware.

 

Thanks and Regards,

T Jeyapal



#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:11 PM

Posted 19 September 2015 - 07:49 AM

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.


start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM\...\Run: [] => [X]
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Extension: (Avast SafePrice) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-08-27]
CHR Extension: (Avast Online Security) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-22]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Remove Chrome using the the instructions on this page.
https://support.google.com/chrome/answer/95319?hl=en

Before you do Export your Bookmarks
Chrome will export your bookmarks as a HTML file, which you can then import into another browser.

If you want to save your passwords as well see here: http://www.intowindows.com/how-to-backup-saved-passwords-in-google-chrome-browser/

Re-install Chrome and the Bookmarks.

<<<>>>

How is the compute running now?

#5 jeyapalt

jeyapalt
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:41 AM

Posted 19 September 2015 - 10:09 AM

Dear nasdaq,

 

Thanks a ton for your fix. The system is now back to normal. The infection is gone from Chrome browser.

 

The fixlog contents are mentioned hereunder :

 

Fix result of Farbar Recovery Scan Tool (x86) Version:15-09-2015
Ran by jeyapalt (2015-09-19 19:45:23) Run:1
Running from C:\Users\jeyapalt\Desktop
Loaded Profiles: jeyapalt (Available Profiles: jeyapalt)
Boot Mode: Normal

==============================================

fixlist content:
*****************
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM\...\Run: [] => [X]
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Extension: (Avast SafePrice) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-08-27]
CHR Extension: (Avast Online Security) - C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-22]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

End

*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully.
C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => not found.
C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => moved successfully
C:\Users\jeyapalt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => key removed successfully.
Could not move "C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx" => Scheduled to move on reboot.
"HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => key removed successfully.
Could not move "C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx" => Scheduled to move on reboot.
SpyHunter 4 Service => service removed successfully.
esgiguard => service removed successfully.
MBAMSwissArmy => service removed successfully.
Synth3dVsc => service removed successfully.
tsusbhub => service removed successfully.
VGPU => service removed successfully.
EmptyTemp: => 287.7 MB temporary data Removed.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-09-19 19:47:58)<=

"C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx" => Could not move
"C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx" => Could not move

==== End of Fixlog 19:47:58 ====

 

It would be helpful to me if  you could please throw some light on where things went wrong?? Is it because of installation of some program?? Please do reply if possible. Thanks a ton for your valuable help and the time that you had dedicated towards fixing issues in my browser.

 

Eager to hear from you,

 

Kind Regards,

 

Jeyapal T


Edited by jeyapalt, 19 September 2015 - 10:17 AM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 39,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:11 PM

Posted 20 September 2015 - 06:54 AM

Is it because of installation of some program?

Mostly likely.

Free programs will most of the time install programs with out your consent/knowledge or modify your browsers to promote adds. That's the way they get revenues.
===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#7 jeyapalt

jeyapalt
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:41 AM

Posted 20 September 2015 - 10:24 AM

Dear nasdaq,

 

Thanks a lot for all your help and guidance.

 

Regards,

T.Jeyapal



#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:11 PM

Posted 26 September 2015 - 07:49 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users