Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DNSAPI.dll is missing and not able to use chrome & firfox


  • This topic is locked This topic is locked
10 replies to this topic

#1 selvakumar001

selvakumar001

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 09 October 2015 - 06:34 AM

Hi,

 

I am struggling to install Chrome and not able to open Firfox, only IE edge is working right now. Also getting error message '

DNSAPI.dll missing' when I try to install MalwareByte or some other applications. Please check the following log and help me.

 

Thank You

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-10-2015
Ran by selvakumar (administrator) on SELVA-PC (09-10-2015 04:14:59)
Running from C:\Users\selvakumar\Downloads
Loaded Profiles: selvakumar (Available Profiles: selvakumar)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\syswow64\cmd.exe
(Microsoft Corporation) C:\Windows\syswow64\notepad.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
 

==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-04] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 75.153.176.9
Tcpip\..\Interfaces\{8579578a-5f59-4460-abbb-81970bcd12c7}: [DhcpNameServer] 192.168.1.254 75.153.176.9
 
Internet Explorer:
==================
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
S2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-04] (ELAN Microelectronics Corp.)
S2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [60432 2015-06-23] (Advanced Micro Devices, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 amdkmcsp; C:\Windows\System32\drivers\amdkmcsp.sys [101104 2015-06-23] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc.)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [277240 2015-06-23] (Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek                                            )
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [593624 2015-03-11] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3453144 2015-07-10] (Realtek Semiconductor Corporation                           )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-09 04:14 - 2015-10-09 04:15 - 00005627 _____ C:\Users\selvakumar\Downloads\FRST.txt
2015-10-09 04:14 - 2015-10-09 04:15 - 00000000 ____D C:\FRST
2015-10-09 04:14 - 2015-10-09 04:14 - 02194944 _____ (Farbar) C:\Users\selvakumar\Downloads\FRST64.exe
2015-10-09 04:08 - 2015-10-09 04:08 - 01801288 _____ (Malwarebytes) C:\Users\selvakumar\Downloads\JRT (1).exe
2015-10-09 04:01 - 2015-10-09 04:01 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\selvakumar\Downloads\mbam-setup-2.1.8.1057 (2).exe
2015-10-09 04:01 - 2015-10-09 04:01 - 08269824 _____ (Malwarebytes Corporation ) C:\Users\selvakumar\Downloads\mbam-setup-2.1.8.1057 (3).exe.5m76aax.partial
2015-10-09 04:00 - 2015-10-09 04:00 - 01682432 _____ C:\Users\selvakumar\Downloads\AdwCleaner (1).exe
2015-10-09 03:59 - 2015-10-09 03:59 - 02870984 _____ (ESET) C:\Users\selvakumar\Downloads\esetsmartinstaller_enu.exe
2015-10-09 03:59 - 2015-10-09 03:59 - 00000000 ____D C:\Program Files (x86)\ESET
2015-10-09 03:55 - 2015-10-09 03:55 - 00000798 _____ C:\Users\selvakumar\Desktop\JRT.txt
2015-10-09 03:52 - 2015-10-09 03:52 - 01801288 _____ (Malwarebytes) C:\Users\selvakumar\Downloads\JRT.exe
2015-10-09 03:49 - 2015-10-09 03:49 - 01682432 _____ C:\Users\selvakumar\Downloads\AdwCleaner.exe
2015-10-09 03:37 - 2015-10-09 03:37 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\SpyHunter-Installer (1).exe
2015-10-09 03:31 - 2015-10-09 03:43 - 01822048 _____ (BitTorrent Inc.) C:\Users\selvakumar\Downloads\uTorrent.exe
2015-10-09 03:29 - 2015-10-09 03:30 - 00027795 _____ C:\Users\selvakumar\Downloads\Bitdefender_Internet_Security_(Antivirus)_2015_19.1.0.114_+_Key_[32-64_bit]_-_AppzDam.torrent
2015-10-09 03:12 - 2015-10-09 03:12 - 00016148 _____ C:\WINDOWS\system32\SELVA-PC_selvakumar_HistoryPrediction.bin
2015-10-07 19:41 - 2015-10-07 19:41 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-10-06 20:31 - 2015-10-06 20:31 - 00000000 ____D C:\Users\selvakumar\AppData\Local\NetworkTiles
2015-10-05 22:26 - 2015-10-05 22:26 - 01193704 _____ (Adobe Systems Incorporated) C:\Users\selvakumar\Downloads\readerdc_en_db_install.exe
2015-10-04 20:50 - 2015-10-04 20:50 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (3).exe
2015-10-04 20:50 - 2015-10-04 20:50 - 00003230 _____ C:\WINDOWS\System32\Tasks\{DC7D6F65-EAE1-43E1-B0DC-F31083D799B3}
2015-10-04 20:49 - 2015-10-04 20:49 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (2).exe
2015-10-04 20:49 - 2015-10-04 20:49 - 00003230 _____ C:\WINDOWS\System32\Tasks\{8D56D614-266E-462E-B30A-59A9A154F443}
2015-10-04 20:48 - 2015-10-04 20:50 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (1).exe
2015-10-04 17:21 - 2015-10-04 17:21 - 00000000 ____D C:\Users\selvakumar\Downloads\GoogleChromePortable
2015-10-04 17:20 - 2015-10-04 17:20 - 01411968 _____ (PortableApps.com) C:\Users\selvakumar\Downloads\GoogleChromePortable_45.0.2454.101_online.paf.exe
2015-10-04 17:18 - 2015-10-04 17:19 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Adobe
2015-10-04 17:17 - 2015-10-04 17:17 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Macromedia
2015-10-04 17:07 - 2015-09-14 20:31 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-04 17:07 - 2015-09-14 20:31 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-04 16:58 - 2015-07-05 03:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-10-04 16:55 - 2015-10-04 16:57 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-04 16:55 - 2015-10-04 16:55 - 00001138 _____ C:\Users\selvakumar\Desktop\RegHunter.lnk
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegHunter
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Enigma Software Group
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Program Files\Enigma Software Group
2015-10-04 16:55 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-04 16:54 - 2015-10-04 16:55 - 11230592 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\RegHunter-Installer.exe
2015-10-04 16:54 - 2015-09-24 17:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-04 16:54 - 2015-09-24 17:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-04 16:54 - 2015-09-24 17:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-04 16:54 - 2015-09-24 16:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-04 16:54 - 2015-09-24 16:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-04 16:54 - 2015-09-24 16:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-04 16:54 - 2015-09-24 16:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-04 16:54 - 2015-09-24 16:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-04 16:54 - 2015-09-24 16:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-04 16:54 - 2015-09-24 16:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-04 16:54 - 2015-09-24 16:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-04 16:54 - 2015-09-24 16:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-04 16:54 - 2015-09-24 16:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-04 16:54 - 2015-09-24 16:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-04 16:54 - 2015-09-24 16:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-04 16:54 - 2015-09-24 15:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-04 16:54 - 2015-09-24 15:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-04 16:54 - 2015-09-24 15:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-04 16:54 - 2015-09-24 15:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-04 16:54 - 2015-09-24 15:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-04 16:54 - 2015-09-24 15:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-04 16:54 - 2015-09-18 22:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-04 16:54 - 2015-09-16 23:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-04 16:54 - 2015-09-16 23:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-04 16:54 - 2015-09-16 23:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-04 16:54 - 2015-09-16 23:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-04 16:54 - 2015-09-16 23:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-04 16:54 - 2015-09-16 23:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-10-04 16:54 - 2015-09-16 23:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-04 16:54 - 2015-09-16 23:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-04 16:54 - 2015-09-16 23:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-04 16:54 - 2015-09-16 23:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-04 16:54 - 2015-09-16 23:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-04 16:54 - 2015-09-16 23:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-04 16:54 - 2015-09-16 23:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-04 16:54 - 2015-09-16 23:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-04 16:54 - 2015-09-16 23:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-04 16:54 - 2015-09-16 23:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-04 16:54 - 2015-09-16 23:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-04 16:54 - 2015-09-16 23:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-10-04 16:54 - 2015-09-16 23:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-04 16:54 - 2015-09-16 23:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-04 16:54 - 2015-09-16 23:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-04 16:54 - 2015-09-16 23:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-04 16:54 - 2015-09-16 23:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-04 16:54 - 2015-09-16 23:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-04 16:54 - 2015-09-16 23:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-04 16:54 - 2015-09-16 23:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-04 16:54 - 2015-09-16 23:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-04 16:54 - 2015-09-16 23:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-04 16:54 - 2015-09-16 23:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-04 16:54 - 2015-09-16 23:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-04 16:54 - 2015-09-16 22:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-04 16:54 - 2015-09-16 22:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-04 16:54 - 2015-09-16 22:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-04 16:54 - 2015-09-16 22:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-04 16:54 - 2015-09-16 22:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-04 16:54 - 2015-09-16 22:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-04 16:54 - 2015-09-16 22:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-04 16:54 - 2015-09-16 22:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-04 16:54 - 2015-09-16 22:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-04 16:54 - 2015-09-16 22:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-04 16:54 - 2015-09-16 22:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-04 16:54 - 2015-09-16 22:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-04 16:54 - 2015-09-16 22:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-04 16:54 - 2015-09-16 22:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-04 16:54 - 2015-09-16 22:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-04 16:54 - 2015-09-16 22:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-04 16:54 - 2015-09-16 22:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-04 16:54 - 2015-09-16 22:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-04 16:54 - 2015-09-16 22:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-04 16:54 - 2015-09-16 22:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-10-04 16:54 - 2015-09-16 22:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-04 16:54 - 2015-09-16 22:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-04 16:54 - 2015-09-12 19:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-04 16:54 - 2015-09-12 18:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-04 16:53 - 2015-10-04 16:58 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\SpyHunter-Installer.exe
2015-10-04 16:53 - 2015-08-19 22:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-10-04 16:47 - 2015-10-04 16:05 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-04 16:46 - 2015-10-05 22:04 - 00000000 ____D C:\Windows.old
2015-10-04 16:46 - 2015-10-04 16:46 - 00028672 ___SH C:\WINDOWS\system32\config\BCD-Template.LOG
2015-10-04 16:45 - 2015-10-04 16:45 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-10-04 16:44 - 2015-10-04 16:44 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-10-04 16:44 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files\Elantech
2015-10-04 16:42 - 2015-10-04 17:16 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-04 16:42 - 2015-10-04 16:42 - 00000000 ____D C:\WINDOWS\Setup
2015-10-04 16:42 - 2015-10-04 16:42 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Google
2015-10-04 16:41 - 2015-10-04 17:12 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup (2).exe
2015-10-04 16:40 - 2015-10-04 16:40 - 00000000 ____D C:\Users\selvakumar\AppData\Local\MicrosoftEdge
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\WINDOWS\OCR
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files\MSBuild
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\0409
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-10-04 16:33 - 2015-10-09 03:16 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B43008E-5583-4EB7-98DD-4F75D3655C49}
2015-10-04 16:32 - 2015-10-04 16:32 - 00002360 _____ C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\ATI
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Local\ATI
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Local\AMD
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\ProgramData\ATI
2015-10-04 16:31 - 2015-10-04 16:31 - 00031582 _____ C:\Users\selvakumar\Desktop\Removed Apps.html
2015-10-04 16:31 - 2015-10-04 16:31 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Comms
2015-10-04 16:30 - 2015-10-04 16:30 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Publishers
2015-10-04 16:29 - 2015-10-05 21:55 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Packages
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Adobe
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\VirtualStore
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\TileDataLayer
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Apps\2.0
2015-10-04 16:29 - 2015-10-04 15:58 - 00001189 _____ C:\WINDOWS\DtcInstall.log
2015-10-04 16:28 - 2015-10-04 16:28 - 00000020 ___SH C:\Users\selvakumar\ntuser.ini
2015-10-04 16:28 - 2015-10-04 16:23 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2015-10-04 16:28 - 2015-10-04 16:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2015-10-04 16:28 - 2015-10-04 16:23 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2015-10-04 16:28 - 2015-10-04 16:23 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2015-10-04 16:28 - 2015-10-04 16:23 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2015-10-04 16:27 - 2015-10-09 04:13 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-04 16:27 - 2015-10-08 21:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-04 16:27 - 2015-10-07 19:44 - 00000000 ____D C:\WINDOWS\rescache
2015-10-04 16:27 - 2015-10-05 21:52 - 00000000 ____D C:\WINDOWS\appcompat
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-04 16:27 - 2015-10-04 16:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\setup
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\migwiz
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\Com
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\IME
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\Help
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-04 16:27 - 2015-10-04 16:29 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-10-04 16:27 - 2015-10-04 16:29 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-CS
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sppui
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Recovery
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\MSDRM
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\fr-CA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __RSD C:\WINDOWS\Media
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\system32\Nui
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\Program Files\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\Program Files (x86)\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Web
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Vss
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\tracing
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\TAPI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\sru
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\spp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\restore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\RasToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\networklist
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Licenses
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SystemResources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\winevt
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\uk-UA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\th-TH
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sppui
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\spp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\spool
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sl-SI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sk-SK
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ro-RO
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\RasToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ras
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\networklist
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MSDRM
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Macromed
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Licenses
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\IME
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\icsxml
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ias
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\hr-HR
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\he-IL
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\fr-CA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\es-MX
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\downlevel
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\bg-BG
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ar-SA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\System
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SKB
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\ShellNew
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\security
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\schemas
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SchCache
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Resources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Registration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\PLA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Performance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Globalization
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Cursors
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Branding
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\addins
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\ProgramData\Comms
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows NT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Common Files\Services
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows NT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-04 16:27 - 2015-10-04 16:23 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2015-10-04 16:27 - 2015-10-04 16:23 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2015-10-04 16:27 - 2015-10-04 16:23 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2015-10-04 16:27 - 2015-10-04 16:23 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2015-10-04 16:27 - 2015-10-04 16:23 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2015-10-04 16:27 - 2015-10-04 16:23 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2015-10-04 16:27 - 2015-10-04 16:23 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2015-10-04 16:27 - 2015-10-04 16:23 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2015-10-04 16:27 - 2015-10-04 16:23 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2015-10-04 16:27 - 2015-10-04 16:23 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2015-10-04 16:27 - 2015-10-04 16:23 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2015-10-04 16:27 - 2015-10-04 16:23 - 00000219 _____ C:\WINDOWS\system.ini
2015-10-04 16:27 - 2015-10-04 16:23 - 00000092 _____ C:\WINDOWS\win.ini
2015-10-04 16:27 - 2015-10-04 16:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-10-04 16:27 - 2015-10-04 16:03 - 00000000 __RHD C:\Users\Public\Libraries
2015-10-04 16:27 - 2015-10-04 16:03 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-10-04 16:27 - 2015-10-04 15:59 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-04 16:27 - 2015-10-04 15:58 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-10-04 16:27 - 2015-10-04 15:54 - 00000000 ____D C:\WINDOWS\system32\restore
2015-10-04 16:27 - 2015-10-04 15:53 - 00000000 ____D C:\ProgramData\USOPrivate
2015-10-04 16:17 - 2015-10-04 16:17 - 00061917 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510041617485999.log
2015-10-04 16:17 - 2015-10-04 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-10-04 16:17 - 2015-10-04 16:17 - 00000000 ____D C:\Program Files\ATI Technologies
2015-10-04 16:16 - 2015-10-04 16:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-10-04 16:15 - 2015-10-04 16:15 - 00061037 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510041615464927.log
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2015-10-04 16:13 - 2015-10-04 16:13 - 47795680 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 39723504 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 30760944 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 25308656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 22328800 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 15727072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 14312416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 10191264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 09191312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08979760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08865496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08009344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 07575664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 06486000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 05076976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2015-10-04 16:13 - 2015-10-04 16:13 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2015-10-04 16:13 - 2015-10-04 16:13 - 01257952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 01213192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 01005552 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00660928 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2015-10-04 16:13 - 2015-10-04 16:13 - 00660928 _____ C:\WINDOWS\system32\atiapfxx.blb
2015-10-04 16:13 - 2015-10-04 16:13 - 00472832 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00452576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00377312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00201184 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00170464 _____ C:\WINDOWS\system32\atieah64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00153456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00152032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00131592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00117600 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00113880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00102384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00099296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00095216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00091104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00089520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00085472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00082680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00069600 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00062432 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00061408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00059360 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00049632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00039904 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-10-04 16:12 - 2015-10-07 18:46 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-04 16:09 - 2015-10-04 16:09 - 00056008 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-10-04 16:08 - 2015-10-09 03:16 - 00875126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-04 16:05 - 2015-10-09 03:52 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-04 16:05 - 2015-10-04 16:05 - 00000000 __SHD C:\Recovery
2015-10-04 16:02 - 2015-10-05 22:25 - 00000000 ____D C:\Users\selvakumar
2015-10-04 16:02 - 2015-10-04 16:29 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:02 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 15:55 - 2015-10-04 17:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-04 15:55 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\servicing
2015-10-04 15:55 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\SMI
2015-10-04 15:55 - 2015-10-04 16:17 - 00000000 ____D C:\ProgramData\AMD
2015-10-04 15:55 - 2015-10-04 16:05 - 00000000 __RHD C:\Users\Default
2015-10-04 15:55 - 2015-10-04 15:53 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-04 15:55 - 2015-07-10 02:11 - 00000164 _____ C:\WINDOWS\system32\config\FP
2015-10-04 15:54 - 2015-10-04 17:05 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\ProgramData\Conexant
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\CONEXANT
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\AMD
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-10-04 15:53 - 2015-10-04 15:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2015-10-04 15:53 - 2015-10-04 15:53 - 00000000 ____D C:\ProgramData\USOShared
2015-10-04 15:53 - 2015-07-10 03:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-10-04 15:51 - 2015-10-05 22:25 - 00164469 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2015-10-04 15:51 - 2015-10-04 16:22 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEShims.dll
2015-10-04 15:51 - 2015-10-04 15:51 - 00000000 ____D C:\WINDOWS\tbaseregistry
2015-10-04 15:50 - 2015-10-05 22:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-04 15:50 - 2015-10-04 20:48 - 00005790 _____ C:\WINDOWS\setupact.log
2015-10-04 15:50 - 2015-10-04 15:50 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-04 15:49 - 2015-10-04 17:06 - 00189240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-04 14:48 - 2015-10-04 14:51 - 18509368 _____ (Adobe Systems Inc.) C:\Users\selvakumar\Downloads\AdobeAIRInstaller.exe
2015-10-04 14:44 - 2015-10-05 21:50 - 00000000 ___HD C:\$SysReset
2015-10-04 14:21 - 2015-10-04 14:21 - 04347720 _____ (Google) C:\Users\selvakumar\Downloads\chrome_cleanup_tool.exe
2015-10-04 14:21 - 2015-10-04 14:21 - 00000444 _____ C:\Users\selvakumar\Downloads\debug.log
2015-10-04 14:10 - 2015-10-04 14:37 - 16409960 _____ (Safer Networking Limited ) C:\Users\selvakumar\Downloads\spybotsd162.exe
2015-10-04 14:08 - 2015-10-04 14:16 - 47346280 _____ (Microsoft Corporation) C:\Users\selvakumar\Downloads\Windows-KB890830-x64-V5.28.exe
2015-10-04 14:05 - 2015-10-04 14:06 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\selvakumar\Downloads\mbam-setup-2.1.8.1057 (1).exe
2015-10-04 13:45 - 2015-10-04 13:45 - 00000000 ____D C:\Users\selvakumar\AppData\LocalLow\Adblock Plus for IE
2015-10-04 13:43 - 2015-10-04 13:45 - 06468104 _____ ( ) C:\Users\selvakumar\Downloads\adblockplusie-1.5 (1).exe
2015-10-04 10:51 - 2015-10-04 10:55 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup (1).exe
2015-10-04 10:51 - 2015-10-04 10:54 - 42802928 _____ C:\Users\selvakumar\Downloads\Firefox Setup 41.0.1.exe
2015-10-04 10:10 - 2015-10-04 13:44 - 06468104 _____ ( ) C:\Users\selvakumar\Downloads\adblockplusie-1.5.exe
2015-10-03 13:53 - 2015-10-03 13:53 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup.exe
2015-10-03 12:42 - 2015-10-03 13:36 - 00000000 ____D C:\Users\selvakumar\Desktop\mbar
2015-10-03 12:42 - 2015-10-03 12:42 - 00000000 ____D C:\AdwCleaner
2015-10-03 12:12 - 2015-10-03 12:12 - 00083019 _____ C:\Users\selvakumar\Downloads\dnsapi.zip
2015-10-03 10:22 - 2015-10-03 10:22 - 00006186 _____ C:\EamClean.log
2015-10-03 10:08 - 2015-10-03 13:33 - 00000000 ____D C:\EEK
2015-09-26 08:12 - 2015-09-26 08:35 - 246503644 _____ C:\Users\selvakumar\Downloads\Ingeborga Dapkunaite  Moscow nights ( Podmoskovnie vechera ) 1994.vob
2015-09-25 19:28 - 2015-09-25 19:28 - 00000000 ____D C:\Users\selvakumar\AppData\LocalLow\BitTorrent
2015-09-19 18:41 - 2015-09-19 19:07 - 00000000 ____D C:\Users\selvakumar\Downloads\8 Women (2002) Fr (Engsubs) François Ozon
2015-09-19 12:47 - 2015-09-19 12:47 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-14 18:53 - 2015-09-14 18:59 - 00000000 ____D C:\Users\selvakumar\Downloads\Z.for.Zachariah.2015.720p.WEB-DL.x264.AAC-ETRG
2015-09-12 08:59 - 2015-09-12 08:59 - 00014494 _____ C:\Users\selvakumar\Downloads\DHL Tracking Details.zip
2015-09-09 10:59 - 2015-08-26 23:36 - 03620736 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 10:59 - 2015-08-26 22:59 - 02880032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 10:59 - 2015-08-26 22:51 - 02350592 ____N (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 10:59 - 2015-08-26 22:51 - 01774592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 10:59 - 2015-08-26 22:49 - 01008640 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 10:59 - 2015-08-26 22:47 - 12503552 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 10:59 - 2015-08-26 22:43 - 00826880 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 10:59 - 2015-08-26 22:42 - 00596480 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 10:59 - 2015-08-26 22:16 - 02153472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 10:59 - 2015-08-26 22:16 - 01612288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 10:59 - 2015-08-26 22:11 - 00484352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 10:59 - 2015-08-26 22:09 - 11262464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 10:58 - 2015-08-26 23:32 - 00608936 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 10:58 - 2015-08-26 22:54 - 00541248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 10:58 - 2015-08-26 22:54 - 00365568 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 10:58 - 2015-08-26 22:43 - 00576000 ____N (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 10:58 - 2015-08-26 22:42 - 00187904 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 10:58 - 2015-08-26 22:42 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 10:58 - 2015-08-26 22:39 - 00045568 ____N (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 10:58 - 2015-08-26 22:23 - 00303104 ____N (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 10:58 - 2015-08-26 22:12 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 10:58 - 2015-08-26 22:12 - 00504320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 10:58 - 2015-08-26 22:11 - 00139776 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 10:58 - 2015-08-26 22:08 - 00037376 ____N (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-04 16:32 - 2015-07-13 16:21 - 00000000 ___RD C:\Users\selvakumar\OneDrive
2015-10-04 16:15 - 2015-08-15 14:08 - 00000000 ____D C:\AMD
2015-10-04 16:13 - 2015-07-16 02:12 - 00162240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-10-04 16:13 - 2015-07-16 02:11 - 12062040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-10-04 16:13 - 2015-07-16 02:11 - 01468224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-10-04 16:13 - 2015-07-16 02:06 - 21632992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-10-04 16:13 - 2015-07-16 01:17 - 00681456 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-10-04 16:13 - 2015-07-16 01:17 - 00256992 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-10-04 16:13 - 2015-07-16 01:13 - 00675296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-10-04 16:13 - 2015-07-16 01:12 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-10-04 16:09 - 2015-05-09 18:24 - 00525000 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
 
==================== Files in the root of some directories =======
 
2015-10-04 15:54 - 2015-10-04 15:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some files in TEMP:
====================
C:\Users\selvakumar\AppData\Local\Temp\sqlite3.dll
 

==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll
[2015-07-10 04:00] - [2015-08-23 10:30] - 0680256 ____N (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310
 
C:\WINDOWS\SysWOW64\dnsapi.dll IS MISSING <==== ATTENTION
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 

LastRegBack: 2015-10-04 15:48
 
==================== End of FRST.txt ============================

Attached Files



BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 09 October 2015 - 11:38 AM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems. :warrior:

Before we move on, please read the following points carefully: :exclame:
  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1

Please do the following:

rufus-128.png + FRST.gif Search with FRST from the Recovery Environment

frst.pngfrstsearch.png



Please copy the FRST64.exe from your desktop to a plugged flash drive.

Win10:
  • Simply find the Shut down / Restart menu and hold down the SHIFT key while clicking on Restart.
  • Once you’ve done this, a blue boot options menu displays.
  • Click Troubleshoot.
  • Access Advanced options.
  • Select Command Prompt.
    • In the command window type in notepad and press Enter.
    • The notepad opens. Under File menu select Open.
    • Select "Computer" and find your flash drive letter and close the notepad.
    • In the command window type e:\frst (for x64 bit version type e:\frst64) and press Enter
      Note: Replace letter e with the drive letter of your flash drive.
    • The tool will start to run.
    • When the tool opens click Yes to disclaimer.
    • Write the following text into the Search textbox:
    dnsapi.dll
    
    • Click on the Search Files button.
    • When finished, a log file (Search.txt) is saved to the flashdrive.
    • Please copy and paste its contents in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 selvakumar001

selvakumar001
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 09 October 2015 - 10:11 PM

Please check the below details,

 

Farbar Recovery Scan Tool (x64) Version:08-10-2015
Ran by SYSTEM (2015-10-09 19:44:03)
Running from G:\
Boot Mode: Recovery
 
================== Search Files: "dnsapi.dll" =============
 
C:\Windows.old\WINDOWS\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll
[2015-07-10 03:00][2015-08-23 09:30] 0680256 ____N (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310
 
C:\Windows\WinSxS\wow64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_a7e0cfc0f233a685\dnsapi.dll
[2015-07-10 03:00][2015-08-23 09:31] 0534064 ____N () D41D8CD98F00B204E9800998ECF8427E
 
C:\Windows\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll
[2015-07-10 03:00][2015-08-23 09:30] 0680256 ____N (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310
 
C:\Windows\System32\dnsapi.dll
[2015-07-10 03:00][2015-08-23 09:30] 0680256 ____N (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310
 
X:\Windows\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll
[2015-07-10 02:30][2015-07-10 02:30] 0680256 ____A (Microsoft Corporation) C287D0E32771E3222A444DC527A29477
 
X:\Windows\System32\dnsapi.dll
[2015-07-10 02:30][2015-07-10 02:30] 0680256 ____A (Microsoft Corporation) C287D0E32771E3222A444DC527A29477
 
====== End of Search ======



#4 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 10 October 2015 - 03:54 AM

Hi,

Please download the dnsapi_sysWOW64.zip from here and extract the dll-file to your desktop! (Important: C:\Users\selvakumar\Desktop\dnsapi.dll)

Afterwards download the attached fixlist to your flashdrive and boot into the RE like before. Open command prompt and FRST again. This time press the Fix button.
Attached File  fixlist.txt   246bytes   15 downloads


Reboot the computer and perform the search in normal mode:


Step 1

frst.pngfrstsearch.png

  • Start FRST with Administrator privileges.
  • Write the following text into the Search textbox:
dnsapi.dll
  • Click on the Search Files button.
  • When finished, a log file (Search.txt) pops up and is saved to the same location the tool was run from.
  • Please copy and paste its contents in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#5 selvakumar001

selvakumar001
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 10 October 2015 - 09:18 AM

Fixlog content

 

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version:08-10-2015
Ran by SYSTEM (2015-10-10 07:05:28) Run:2
Running from G:\
Boot Mode: Recovery
==============================================
 
fixlist content:
*****************
Replace: X:\Windows\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll C:\Windows\System32\dnsapi.dll
Replace: C:\Users\selvakumar\Desktop\dnsapi.dll C:\Windows\SysWOW64\dnsapi.dll
*****************
 
C:\Windows\System32\dnsapi.dll => moved successfully
X:\Windows\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll copied successfully to C:\Windows\System32\dnsapi.dll
"C:\Windows\SysWOW64\dnsapi.dll" => not found
C:\Users\selvakumar\Desktop\dnsapi.dll copied successfully to C:\Windows\SysWOW64\dnsapi.dll
 
==== End of Fixlog 07:05:28 ====
 
 
Search file content
 
Farbar Recovery Scan Tool (x64) Version:08-10-2015
Ran by selvakumar (2015-10-10 07:13:40)
Running from C:\Users\selvakumar\Desktop
Boot Mode: Normal
 
================== Search Files: "dnsapi.dll" =============
 
C:\Windows.old\WINDOWS\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll
[2015-07-10 04:00][2015-08-23 10:30] 0680256 ____A (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310 [File not signed]
 
C:\Windows\WinSxS\wow64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_a7e0cfc0f233a685\dnsapi.dll
[2015-07-10 04:00][2015-08-23 10:31] 0534064 ____N () D41D8CD98F00B204E9800998ECF8427E [File not signed]
 
C:\Windows\WinSxS\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.10240.16384_none_9d8c256ebdd2e48a\dnsapi.dll
[2015-07-10 04:00][2015-08-23 10:30] 0680256 ____A (Microsoft Corporation) DD4AB50223730F49B50EA8C657E81310 [File not signed]
 
C:\Windows\syswow64\dnsapi.dll
[2015-10-10 08:05][2015-10-10 06:43] 0534064 ____A (Microsoft Corporation) BB5BBD0E4D04047585E4ED0F07AA51E7 [File is digitally signed]
 
C:\Windows\System32\dnsapi.dll
[2015-07-10 04:00][2015-07-10 03:30] 0680256 ____A (Microsoft Corporation) C287D0E32771E3222A444DC527A29477 [File is digitally signed]
 
C:\Users\selvakumar\Desktop\dnsapi.dll
[2015-10-10 07:52][2015-10-10 06:43] 0534064 ____A (Microsoft Corporation) BB5BBD0E4D04047585E4ED0F07AA51E7 [File is digitally signed]
 
C:\Users\selvakumar\Desktop\dnsapi_sysWOW64\dnsapi.dll
[2015-07-10 04:00][2015-10-10 06:43] 0534064 ____A (Microsoft Corporation) BB5BBD0E4D04047585E4ED0F07AA51E7 [File is digitally signed]
 
====== End of Search ======
 
 

 



#6 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 10 October 2015 - 09:45 AM

Please uninstall Reghunter.


Step 1

Scan with esetlogo.pngOnline Scanner.

  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:

settings.png

  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed, click on Finish.
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.

esetlog.png

Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif


Edited by deeprybka, 10 October 2015 - 09:45 AM.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#7 selvakumar001

selvakumar001
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 10 October 2015 - 01:23 PM

ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5fcc8500177cc3439d1f4df33d0219a2
# end=init
# utc_time=2015-10-10 03:14:16
# local_time=2015-10-10 08:14:16 (-0800, Pacific Daylight Time)
# country="United States"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 26174
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5fcc8500177cc3439d1f4df33d0219a2
# end=updated
# utc_time=2015-10-10 03:16:40
# local_time=2015-10-10 08:16:40 (-0800, Pacific Daylight Time)
# country="United States"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=5fcc8500177cc3439d1f4df33d0219a2
# engine=26174
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-10-10 06:17:03
# local_time=2015-10-10 11:17:03 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 0 7053435 0 0
# scanned=376554
# found=11
# cleaned=0
# scan_time=10822
sh=AA7AFFCBDAF13C3872F32EACCF3BEFB92FD0FA80 ft=1 fh=02ff89afc7fa57e5 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application" ac=I fn="C:\Users\selvakumar\Downloads\ccsetup508 (1).exe"
sh=97187E43E7465A756335AB4E92921DD807545644 ft=1 fh=0cb5ef4d5c3ae680 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application" ac=I fn="C:\Users\selvakumar\Downloads\ccsetup508 (2).exe.0yl3knv.partial"
sh=AA7AFFCBDAF13C3872F32EACCF3BEFB92FD0FA80 ft=1 fh=02ff89afc7fa57e5 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application" ac=I fn="C:\Users\selvakumar\Downloads\ccsetup508.exe"
sh=77B1DFCFF5A14D3668F9FEF8016656D9B857C6F8 ft=0 fh=0000000000000000 vn="a variant of Win32/Amonetize.DW potentially unwanted application" ac=I fn="C:\Users\selvakumar\Downloads\Horovod+1994+VHSRip[torrents+ru]_10924_i40949913_il345.exe.zip"
sh=0F2C823B9D6D691B1FC04449566C67E4DF431F35 ft=0 fh=0000000000000000 vn="NSIS/TrojanDownloader.Adload.AT trojan" ac=I fn="C:\Users\selvakumar\Downloads\Adobe Photoshop Lightroom CC 2015 6.1+Crack\adobe photoshop lightroom.7z"
sh=171D0DFAD4ABC8BFCFC3DE6AD9EB03DBA9CB60AC ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.C potentially unwanted application" ac=I fn="C:\Windows.old\Users\selvakumar\AppData\Roaming\ivs63Bq6Uvtxl"
sh=C28052B54F49AACF8660C7759B076341257F2241 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.I potentially unwanted application" ac=I fn="C:\Windows.old\Users\selvakumar\AppData\Roaming\YLVmUBEE3t3"
sh=4B2BBA40EB768132CC25820A9D3E22B9BF9BA8EE ft=1 fh=4fe6842b64ac6e92 vn="a variant of Win32/Toolbar.Babylon potentially unwanted application" ac=I fn="G:\old\desk\Unlocker1.9.1-x64.exe"
sh=272E4BB7E74698EE175CCB35B7B27B88D5CF06A1 ft=0 fh=0000000000000000 vn="a variant of Win32/HiddenStart.B potentially unsafe application" ac=I fn="G:\old\job\freeVersionSetup.zip"
sh=D1D0869AAA01A2DA4C3BB8289074776A64BC6540 ft=1 fh=421b349f8e7c889c vn="a variant of Win32/HiddenStart.B potentially unsafe application" ac=I fn="G:\old\job\freeVersionSetup\freeVersionSetup.exe"
sh=206C640AE6B401CAA3BC7A2CEBCAECF910885BBB ft=1 fh=164976766fedd190 vn="Win32/Toolbar.SearchSuite potentially unwanted application" ac=I fn="G:\old\oldold\disc\1\rexx\iLividSetupV1.exe"



#8 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 10 October 2015 - 02:22 PM

Step 1

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste the log in your next reply.
lesestoff.png

Can you please tell me which problems still persist now?
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#9 selvakumar001

selvakumar001
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 10 October 2015 - 09:05 PM

Everything is working find now. Thank you for your help.

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:10-10-2015
Ran by selvakumar (administrator) on SELVA-PC (10-10-2015 18:46:12)
Running from C:\Users\selvakumar\Desktop
Loaded Profiles: selvakumar (Available Profiles: selvakumar)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Advanced Micro Devices, Inc.) C:\Windows\syswow64\tbaseprovisioning.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 

==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-09] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-452622530-1186449026-1637263968-1002\...\RunOnce: [Uninstall C:\Users\selvakumar\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\selvakumar\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-452622530-1186449026-1637263968-1002\...\RunOnce: [Uninstall C:\Users\selvakumar\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\selvakumar\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 75.153.176.9
Tcpip\..\Interfaces\{8579578a-5f59-4460-abbb-81970bcd12c7}: [DhcpNameServer] 192.168.1.254 75.153.176.9
 
Internet Explorer:
==================
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-09] (ELAN Microelectronics Corp.)
R2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [60432 2015-06-23] (Advanced Micro Devices, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 amdkmcsp; C:\Windows\System32\drivers\amdkmcsp.sys [101104 2015-06-23] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc.)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [277240 2015-06-23] (Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek                                            )
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [593624 2015-03-11] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3453144 2015-07-10] (Realtek Semiconductor Corporation                           )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-10 18:47 - 2015-10-10 18:47 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup (3).exe
2015-10-10 18:46 - 2015-10-10 18:46 - 00000000 ____D C:\Users\selvakumar\Desktop\FRST-OlderVersion
2015-10-10 18:44 - 2015-10-10 18:44 - 00016148 _____ C:\WINDOWS\system32\SELVA-PC_selvakumar_HistoryPrediction.bin
2015-10-10 08:13 - 2015-10-10 08:14 - 02870984 _____ (ESET) C:\Users\selvakumar\Downloads\esetsmartinstaller_enu (1).exe
2015-10-10 08:05 - 2015-10-10 06:43 - 00534064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-10-10 07:52 - 2015-10-10 06:43 - 00534064 _____ (Microsoft Corporation) C:\Users\selvakumar\Desktop\dnsapi.dll
2015-10-10 07:13 - 2015-10-10 07:16 - 00001723 _____ C:\Users\selvakumar\Desktop\Search.txt
2015-10-10 07:12 - 2015-10-10 18:46 - 02195456 _____ (Farbar) C:\Users\selvakumar\Desktop\FRST64.exe
2015-10-10 07:11 - 2015-10-10 07:11 - 00000000 ___HD C:\OneDriveTemp
2015-10-10 06:44 - 2015-10-10 06:44 - 00000246 _____ C:\Users\selvakumar\Downloads\fixlist.txt
2015-10-10 06:43 - 2015-10-10 06:43 - 00258972 _____ C:\Users\selvakumar\Downloads\dnsapi_sysWOW64.zip
2015-10-10 06:43 - 2015-10-10 06:43 - 00258972 _____ C:\Users\selvakumar\Desktop\dnsapi_sysWOW64.zip
2015-10-09 19:20 - 2015-10-09 19:20 - 02164800 _____ C:\WINDOWS\PFRO.log
2015-10-09 19:17 - 2015-10-09 19:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-10-09 19:15 - 2015-10-09 19:16 - 00000247 _____ C:\Users\selvakumar\Downloads\Search.txt
2015-10-09 19:03 - 2015-10-09 19:03 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-10-09 18:56 - 2015-10-09 18:56 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (5).exe
2015-10-09 18:36 - 2015-10-09 18:36 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (4).exe
2015-10-09 04:31 - 2015-10-10 18:46 - 00006545 _____ C:\Users\selvakumar\Desktop\FRST.txt
2015-10-09 04:31 - 2015-10-09 04:31 - 00015455 _____ C:\Users\selvakumar\Desktop\Addition.txt
2015-10-09 04:16 - 2015-10-09 04:17 - 00015455 _____ C:\Users\selvakumar\Downloads\Addition.txt
2015-10-09 04:14 - 2015-10-10 18:46 - 00000000 ____D C:\FRST
2015-10-09 04:14 - 2015-10-09 04:17 - 00081826 _____ C:\Users\selvakumar\Downloads\FRST.txt
2015-10-09 04:14 - 2015-10-09 04:14 - 02194944 _____ (Farbar) C:\Users\selvakumar\Downloads\FRST64.exe
2015-10-09 04:08 - 2015-10-09 04:08 - 01801288 _____ (Malwarebytes) C:\Users\selvakumar\Downloads\JRT (1).exe
2015-10-09 04:01 - 2015-10-09 04:01 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\selvakumar\Downloads\mbam-setup-2.1.8.1057 (2).exe
2015-10-09 04:00 - 2015-10-09 04:00 - 01682432 _____ C:\Users\selvakumar\Downloads\AdwCleaner (1).exe
2015-10-09 03:59 - 2015-10-09 03:59 - 02870984 _____ (ESET) C:\Users\selvakumar\Downloads\esetsmartinstaller_enu.exe
2015-10-09 03:59 - 2015-10-09 03:59 - 00000000 ____D C:\Program Files (x86)\ESET
2015-10-09 03:55 - 2015-10-09 03:55 - 00000798 _____ C:\Users\selvakumar\Desktop\JRT.txt
2015-10-09 03:52 - 2015-10-09 03:52 - 01801288 _____ (Malwarebytes) C:\Users\selvakumar\Downloads\JRT.exe
2015-10-09 03:49 - 2015-10-09 03:49 - 01682432 _____ C:\Users\selvakumar\Downloads\AdwCleaner.exe
2015-10-09 03:37 - 2015-10-09 03:37 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\SpyHunter-Installer (1).exe
2015-10-09 03:31 - 2015-10-09 03:43 - 01822048 _____ (BitTorrent Inc.) C:\Users\selvakumar\Downloads\uTorrent.exe
2015-10-09 03:29 - 2015-10-09 03:30 - 00027795 _____ C:\Users\selvakumar\Downloads\Bitdefender_Internet_Security_(Antivirus)_2015_19.1.0.114_+_Key_[32-64_bit]_-_AppzDam.torrent
2015-10-07 19:41 - 2015-10-07 19:41 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-10-06 20:31 - 2015-10-06 20:31 - 00000000 ____D C:\Users\selvakumar\AppData\Local\NetworkTiles
2015-10-05 22:26 - 2015-10-05 22:26 - 01193704 _____ (Adobe Systems Incorporated) C:\Users\selvakumar\Downloads\readerdc_en_db_install.exe
2015-10-04 20:50 - 2015-10-04 20:50 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (3).exe
2015-10-04 20:50 - 2015-10-04 20:50 - 00003230 _____ C:\WINDOWS\System32\Tasks\{DC7D6F65-EAE1-43E1-B0DC-F31083D799B3}
2015-10-04 20:49 - 2015-10-04 20:49 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (2).exe
2015-10-04 20:49 - 2015-10-04 20:49 - 00003230 _____ C:\WINDOWS\System32\Tasks\{8D56D614-266E-462E-B30A-59A9A154F443}
2015-10-04 20:48 - 2015-10-04 20:50 - 01503872 _____ (Skype Technologies S.A.) C:\Users\selvakumar\Downloads\SkypeSetup (1).exe
2015-10-04 17:21 - 2015-10-04 17:21 - 00000000 ____D C:\Users\selvakumar\Downloads\GoogleChromePortable
2015-10-04 17:20 - 2015-10-04 17:20 - 01411968 _____ (PortableApps.com) C:\Users\selvakumar\Downloads\GoogleChromePortable_45.0.2454.101_online.paf.exe
2015-10-04 17:18 - 2015-10-04 17:19 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Adobe
2015-10-04 17:17 - 2015-10-04 17:17 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Macromedia
2015-10-04 17:07 - 2015-09-14 20:31 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-04 17:07 - 2015-09-14 20:31 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-04 16:58 - 2015-07-05 03:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-10-04 16:55 - 2015-10-04 16:57 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-04 16:55 - 2015-10-04 16:55 - 00001138 _____ C:\Users\selvakumar\Desktop\RegHunter.lnk
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegHunter
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Enigma Software Group
2015-10-04 16:55 - 2015-10-04 16:55 - 00000000 ____D C:\Program Files\Enigma Software Group
2015-10-04 16:55 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-04 16:54 - 2015-10-04 16:55 - 11230592 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\RegHunter-Installer.exe
2015-10-04 16:54 - 2015-09-24 17:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-04 16:54 - 2015-09-24 17:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-04 16:54 - 2015-09-24 17:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-04 16:54 - 2015-09-24 16:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-04 16:54 - 2015-09-24 16:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-04 16:54 - 2015-09-24 16:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-04 16:54 - 2015-09-24 16:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-04 16:54 - 2015-09-24 16:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-04 16:54 - 2015-09-24 16:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-04 16:54 - 2015-09-24 16:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-04 16:54 - 2015-09-24 16:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-04 16:54 - 2015-09-24 16:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-04 16:54 - 2015-09-24 16:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-04 16:54 - 2015-09-24 16:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-04 16:54 - 2015-09-24 16:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-04 16:54 - 2015-09-24 16:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-04 16:54 - 2015-09-24 15:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-04 16:54 - 2015-09-24 15:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-04 16:54 - 2015-09-24 15:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-04 16:54 - 2015-09-24 15:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-04 16:54 - 2015-09-24 15:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-04 16:54 - 2015-09-24 15:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-04 16:54 - 2015-09-24 15:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-04 16:54 - 2015-09-18 22:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-04 16:54 - 2015-09-16 23:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-04 16:54 - 2015-09-16 23:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-04 16:54 - 2015-09-16 23:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-04 16:54 - 2015-09-16 23:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-04 16:54 - 2015-09-16 23:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-04 16:54 - 2015-09-16 23:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-04 16:54 - 2015-09-16 23:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-04 16:54 - 2015-09-16 23:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-04 16:54 - 2015-09-16 23:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-04 16:54 - 2015-09-16 23:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-10-04 16:54 - 2015-09-16 23:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-04 16:54 - 2015-09-16 23:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-04 16:54 - 2015-09-16 23:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-04 16:54 - 2015-09-16 23:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-04 16:54 - 2015-09-16 23:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-04 16:54 - 2015-09-16 23:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-04 16:54 - 2015-09-16 23:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-04 16:54 - 2015-09-16 23:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-04 16:54 - 2015-09-16 23:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-04 16:54 - 2015-09-16 23:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-04 16:54 - 2015-09-16 23:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-04 16:54 - 2015-09-16 23:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-04 16:54 - 2015-09-16 23:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-04 16:54 - 2015-09-16 23:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-10-04 16:54 - 2015-09-16 23:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-04 16:54 - 2015-09-16 23:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-04 16:54 - 2015-09-16 23:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-04 16:54 - 2015-09-16 23:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-04 16:54 - 2015-09-16 23:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-04 16:54 - 2015-09-16 23:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-04 16:54 - 2015-09-16 23:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-04 16:54 - 2015-09-16 23:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-04 16:54 - 2015-09-16 23:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-04 16:54 - 2015-09-16 23:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-04 16:54 - 2015-09-16 23:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-04 16:54 - 2015-09-16 23:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-04 16:54 - 2015-09-16 23:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-04 16:54 - 2015-09-16 23:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-04 16:54 - 2015-09-16 23:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-04 16:54 - 2015-09-16 23:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-04 16:54 - 2015-09-16 23:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-04 16:54 - 2015-09-16 22:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-04 16:54 - 2015-09-16 22:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-04 16:54 - 2015-09-16 22:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-04 16:54 - 2015-09-16 22:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-04 16:54 - 2015-09-16 22:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-04 16:54 - 2015-09-16 22:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-04 16:54 - 2015-09-16 22:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-04 16:54 - 2015-09-16 22:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-04 16:54 - 2015-09-16 22:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-04 16:54 - 2015-09-16 22:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-04 16:54 - 2015-09-16 22:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-10-04 16:54 - 2015-09-16 22:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-04 16:54 - 2015-09-16 22:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-04 16:54 - 2015-09-16 22:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-04 16:54 - 2015-09-16 22:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-04 16:54 - 2015-09-16 22:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-04 16:54 - 2015-09-16 22:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-04 16:54 - 2015-09-16 22:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-04 16:54 - 2015-09-16 22:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-04 16:54 - 2015-09-16 22:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-04 16:54 - 2015-09-16 22:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-04 16:54 - 2015-09-16 22:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-04 16:54 - 2015-09-16 22:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-04 16:54 - 2015-09-16 22:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-04 16:54 - 2015-09-16 22:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-04 16:54 - 2015-09-16 22:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-04 16:54 - 2015-09-16 22:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-04 16:54 - 2015-09-16 22:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-04 16:54 - 2015-09-16 22:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-04 16:54 - 2015-09-16 22:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-04 16:54 - 2015-09-16 22:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-04 16:54 - 2015-09-16 22:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-04 16:54 - 2015-09-16 22:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-04 16:54 - 2015-09-16 22:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-04 16:54 - 2015-09-16 22:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-04 16:54 - 2015-09-16 22:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-04 16:54 - 2015-09-16 22:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-04 16:54 - 2015-09-16 22:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-04 16:54 - 2015-09-16 22:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-10-04 16:54 - 2015-09-16 22:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-04 16:54 - 2015-09-16 22:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-04 16:54 - 2015-09-12 19:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-04 16:54 - 2015-09-12 18:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-04 16:53 - 2015-10-04 16:58 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\selvakumar\Downloads\SpyHunter-Installer.exe
2015-10-04 16:53 - 2015-08-19 22:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-10-04 16:47 - 2015-10-04 16:05 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-04 16:46 - 2015-10-05 22:04 - 00000000 ____D C:\Windows.old
2015-10-04 16:46 - 2015-10-04 16:46 - 00028672 ___SH C:\WINDOWS\system32\config\BCD-Template.LOG
2015-10-04 16:45 - 2015-10-04 16:45 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-10-04 16:44 - 2015-10-09 19:03 - 00000000 ____D C:\Program Files\Elantech
2015-10-04 16:44 - 2015-10-04 16:44 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-10-04 16:42 - 2015-10-04 17:16 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-04 16:42 - 2015-10-04 16:42 - 00000000 ____D C:\WINDOWS\Setup
2015-10-04 16:42 - 2015-10-04 16:42 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Google
2015-10-04 16:41 - 2015-10-04 17:12 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup (2).exe
2015-10-04 16:40 - 2015-10-04 16:40 - 00000000 ____D C:\Users\selvakumar\AppData\Local\MicrosoftEdge
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\WINDOWS\OCR
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files\MSBuild
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-10-04 16:37 - 2015-10-04 16:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\0409
2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-10-04 16:33 - 2015-10-10 18:47 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B43008E-5583-4EB7-98DD-4F75D3655C49}
2015-10-04 16:32 - 2015-10-10 07:11 - 00002360 _____ C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\ATI
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Local\ATI
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\selvakumar\AppData\Local\AMD
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\ProgramData\ATI
2015-10-04 16:31 - 2015-10-04 16:31 - 00031582 _____ C:\Users\selvakumar\Desktop\Removed Apps.html
2015-10-04 16:31 - 2015-10-04 16:31 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Comms
2015-10-04 16:30 - 2015-10-04 16:30 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Publishers
2015-10-04 16:29 - 2015-10-05 21:55 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Packages
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Adobe
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\VirtualStore
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\TileDataLayer
2015-10-04 16:29 - 2015-10-04 16:29 - 00000000 ____D C:\Users\selvakumar\AppData\Local\Apps\2.0
2015-10-04 16:29 - 2015-10-04 15:58 - 00001189 _____ C:\WINDOWS\DtcInstall.log
2015-10-04 16:28 - 2015-10-04 16:28 - 00000020 ___SH C:\Users\selvakumar\ntuser.ini
2015-10-04 16:28 - 2015-10-04 16:23 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2015-10-04 16:28 - 2015-10-04 16:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2015-10-04 16:28 - 2015-10-04 16:23 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2015-10-04 16:28 - 2015-10-04 16:23 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2015-10-04 16:28 - 2015-10-04 16:23 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2015-10-04 16:27 - 2015-10-10 18:47 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-04 16:27 - 2015-10-10 18:45 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-04 16:27 - 2015-10-07 19:44 - 00000000 ____D C:\WINDOWS\rescache
2015-10-04 16:27 - 2015-10-05 21:52 - 00000000 ____D C:\WINDOWS\appcompat
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-10-04 16:27 - 2015-10-04 17:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-04 16:27 - 2015-10-04 17:03 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-04 16:27 - 2015-10-04 16:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\setup
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\migwiz
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\system32\Com
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\IME
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\Help
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-04 16:27 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-04 16:27 - 2015-10-04 16:29 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-10-04 16:27 - 2015-10-04 16:29 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-CS
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sppui
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Recovery
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\MSDRM
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\fr-CA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA
2015-10-04 16:27 - 2015-10-04 16:28 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __RSD C:\WINDOWS\Media
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\system32\Nui
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\Program Files\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___SD C:\Program Files (x86)\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Web
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Vss
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\tracing
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\TAPI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\sru
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\spp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\restore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\RasToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\networklist
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Licenses
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SystemResources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\winevt
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\WindowsPowerShell
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\uk-UA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\th-TH
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sppui
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\spp
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sl-SI
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\sk-SK
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ro-RO
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\RasToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ras
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\networklist
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MSDRM
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Macromed
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Licenses
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\IME
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\icsxml
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ias
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\hr-HR
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\he-IL
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\fr-CA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\es-MX
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\downlevel
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\bg-BG
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\ar-SA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\System
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Speech_OneCore
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Speech
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SKB
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\ShellNew
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\security
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\schemas
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\SchCache
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Resources
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Registration
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\PLA
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Performance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\InputMethod
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Globalization
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Cursors
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\Branding
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\addins
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\ProgramData\Comms
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows NT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\Common Files\Services
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows NT
2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-04 16:27 - 2015-10-04 16:23 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2015-10-04 16:27 - 2015-10-04 16:23 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2015-10-04 16:27 - 2015-10-04 16:23 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2015-10-04 16:27 - 2015-10-04 16:23 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2015-10-04 16:27 - 2015-10-04 16:23 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2015-10-04 16:27 - 2015-10-04 16:23 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2015-10-04 16:27 - 2015-10-04 16:23 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2015-10-04 16:27 - 2015-10-04 16:23 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2015-10-04 16:27 - 2015-10-04 16:23 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2015-10-04 16:27 - 2015-10-04 16:23 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2015-10-04 16:27 - 2015-10-04 16:23 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2015-10-04 16:27 - 2015-10-04 16:23 - 00000219 _____ C:\WINDOWS\system.ini
2015-10-04 16:27 - 2015-10-04 16:23 - 00000092 _____ C:\WINDOWS\win.ini
2015-10-04 16:27 - 2015-10-04 16:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-10-04 16:27 - 2015-10-04 16:03 - 00000000 __RHD C:\Users\Public\Libraries
2015-10-04 16:27 - 2015-10-04 16:03 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-10-04 16:27 - 2015-10-04 15:59 - 00000000 ____D C:\WINDOWS\system32\spool
2015-10-04 16:27 - 2015-10-04 15:59 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-04 16:27 - 2015-10-04 15:58 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-10-04 16:27 - 2015-10-04 15:54 - 00000000 ____D C:\WINDOWS\system32\restore
2015-10-04 16:27 - 2015-10-04 15:53 - 00000000 ____D C:\ProgramData\USOPrivate
2015-10-04 16:17 - 2015-10-04 16:17 - 00061917 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510041617485999.log
2015-10-04 16:17 - 2015-10-04 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-10-04 16:17 - 2015-10-04 16:17 - 00000000 ____D C:\Program Files\ATI Technologies
2015-10-04 16:16 - 2015-10-04 16:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-10-04 16:15 - 2015-10-04 16:15 - 00061037 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510041615464927.log
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2015-10-04 16:15 - 2015-10-04 16:15 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2015-10-04 16:13 - 2015-10-04 16:13 - 47795680 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 39723504 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 30760944 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 25308656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 22328800 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 15727072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 14312416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 10191264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 09191312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08979760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08865496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 08009344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 07575664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 06486000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 05076976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2015-10-04 16:13 - 2015-10-04 16:13 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2015-10-04 16:13 - 2015-10-04 16:13 - 01257952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 01213192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 01005552 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00660928 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2015-10-04 16:13 - 2015-10-04 16:13 - 00660928 _____ C:\WINDOWS\system32\atiapfxx.blb
2015-10-04 16:13 - 2015-10-04 16:13 - 00472832 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00452576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00377312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00201184 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00170464 _____ C:\WINDOWS\system32\atieah64.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00153456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00152032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00131592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00117600 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00113880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00102384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00099296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00095216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00091104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00089520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00085472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00082680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00069600 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00062432 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00061408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-10-04 16:13 - 2015-10-04 16:13 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00059360 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00049632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00039904 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-10-04 16:13 - 2015-10-04 16:13 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-10-04 16:12 - 2015-10-07 18:46 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-04 16:09 - 2015-10-09 19:02 - 00056008 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-10-04 16:08 - 2015-10-10 07:15 - 00875126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-04 16:05 - 2015-10-10 18:45 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-04 16:05 - 2015-10-04 16:05 - 00000000 __SHD C:\Recovery
2015-10-04 16:02 - 2015-10-09 19:20 - 00000000 ____D C:\Users\selvakumar
2015-10-04 16:02 - 2015-10-04 16:29 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-04 16:02 - 2015-10-04 16:28 - 00000000 __RSD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ___RD C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 16:02 - 2015-10-04 16:27 - 00000000 ____D C:\Users\selvakumar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-04 15:55 - 2015-10-10 07:04 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-04 15:55 - 2015-10-04 16:35 - 00000000 ____D C:\WINDOWS\servicing
2015-10-04 15:55 - 2015-10-04 16:27 - 00000000 ____D C:\WINDOWS\system32\SMI
2015-10-04 15:55 - 2015-10-04 16:17 - 00000000 ____D C:\ProgramData\AMD
2015-10-04 15:55 - 2015-10-04 16:05 - 00000000 __RHD C:\Users\Default
2015-10-04 15:55 - 2015-10-04 15:53 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-04 15:55 - 2015-07-10 02:11 - 00000164 _____ C:\WINDOWS\system32\config\FP
2015-10-04 15:54 - 2015-10-10 07:04 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\ProgramData\Conexant
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\CONEXANT
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 ____D C:\Program Files\AMD
2015-10-04 15:54 - 2015-10-04 15:54 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-10-04 15:53 - 2015-10-04 15:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2015-10-04 15:53 - 2015-10-04 15:53 - 00000000 ____D C:\ProgramData\USOShared
2015-10-04 15:53 - 2015-07-10 03:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-10-04 15:51 - 2015-10-10 07:10 - 00365008 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2015-10-04 15:51 - 2015-10-04 16:22 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEShims.dll
2015-10-04 15:51 - 2015-10-04 15:51 - 00000000 ____D C:\WINDOWS\tbaseregistry
2015-10-04 15:50 - 2015-10-10 07:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-04 15:50 - 2015-10-09 19:17 - 00006435 _____ C:\WINDOWS\setupact.log
2015-10-04 15:50 - 2015-10-04 15:50 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-04 15:49 - 2015-10-04 17:06 - 00189240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-04 14:48 - 2015-10-04 14:51 - 18509368 _____ (Adobe Systems Inc.) C:\Users\selvakumar\Downloads\AdobeAIRInstaller.exe
2015-10-04 14:44 - 2015-10-05 21:50 - 00000000 ___HD C:\$SysReset
2015-10-04 14:21 - 2015-10-04 14:21 - 04347720 _____ (Google) C:\Users\selvakumar\Downloads\chrome_cleanup_tool.exe
2015-10-04 14:21 - 2015-10-04 14:21 - 00000444 _____ C:\Users\selvakumar\Downloads\debug.log
2015-10-04 14:10 - 2015-10-04 14:37 - 16409960 _____ (Safer Networking Limited ) C:\Users\selvakumar\Downloads\spybotsd162.exe
2015-10-04 14:08 - 2015-10-04 14:16 - 47346280 _____ (Microsoft Corporation) C:\Users\selvakumar\Downloads\Windows-KB890830-x64-V5.28.exe
2015-10-04 14:05 - 2015-10-04 14:06 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\selvakumar\Downloads\mbam-setup-2.1.8.1057 (1).exe
2015-10-04 13:45 - 2015-10-04 13:45 - 00000000 ____D C:\Users\selvakumar\AppData\LocalLow\Adblock Plus for IE
2015-10-04 13:43 - 2015-10-04 13:45 - 06468104 _____ ( ) C:\Users\selvakumar\Downloads\adblockplusie-1.5 (1).exe
2015-10-04 10:51 - 2015-10-04 10:55 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup (1).exe
2015-10-04 10:51 - 2015-10-04 10:54 - 42802928 _____ C:\Users\selvakumar\Downloads\Firefox Setup 41.0.1.exe
2015-10-04 10:10 - 2015-10-04 13:44 - 06468104 _____ ( ) C:\Users\selvakumar\Downloads\adblockplusie-1.5.exe
2015-10-03 13:53 - 2015-10-03 13:53 - 00929872 _____ (Google Inc.) C:\Users\selvakumar\Downloads\ChromeSetup.exe
2015-10-03 12:42 - 2015-10-03 13:36 - 00000000 ____D C:\Users\selvakumar\Desktop\mbar
2015-10-03 12:42 - 2015-10-03 12:42 - 00000000 ____D C:\AdwCleaner
2015-10-03 12:12 - 2015-10-03 12:12 - 00083019 _____ C:\Users\selvakumar\Downloads\dnsapi.zip
2015-10-03 10:22 - 2015-10-03 10:22 - 00006186 _____ C:\EamClean.log
2015-10-03 10:08 - 2015-10-03 13:33 - 00000000 ____D C:\EEK
2015-09-26 08:12 - 2015-09-26 08:35 - 246503644 _____ C:\Users\selvakumar\Downloads\Ingeborga Dapkunaite  Moscow nights ( Podmoskovnie vechera ) 1994.vob
2015-09-25 19:28 - 2015-09-25 19:28 - 00000000 ____D C:\Users\selvakumar\AppData\LocalLow\BitTorrent
2015-09-19 18:41 - 2015-09-19 19:07 - 00000000 ____D C:\Users\selvakumar\Downloads\8 Women (2002) Fr (Engsubs) François Ozon
2015-09-19 12:47 - 2015-09-19 12:47 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-14 18:53 - 2015-09-14 18:59 - 00000000 ____D C:\Users\selvakumar\Downloads\Z.for.Zachariah.2015.720p.WEB-DL.x264.AAC-ETRG
2015-09-12 08:59 - 2015-09-12 08:59 - 00014494 _____ C:\Users\selvakumar\Downloads\DHL Tracking Details.zip
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-10 07:11 - 2015-07-13 16:21 - 00000000 ____D C:\Users\selvakumar\OneDrive
2015-10-09 19:02 - 2015-05-09 18:24 - 00525512 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-10-04 16:15 - 2015-08-15 14:08 - 00000000 ____D C:\AMD
2015-10-04 16:13 - 2015-07-16 02:12 - 00162240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-10-04 16:13 - 2015-07-16 02:11 - 12062040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-10-04 16:13 - 2015-07-16 02:11 - 01468224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-10-04 16:13 - 2015-07-16 02:06 - 21632992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-10-04 16:13 - 2015-07-16 01:17 - 00681456 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-10-04 16:13 - 2015-07-16 01:17 - 00256992 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-10-04 16:13 - 2015-07-16 01:13 - 00675296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-10-04 16:13 - 2015-07-16 01:12 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
 
==================== Files in the root of some directories =======
 
2015-10-04 15:54 - 2015-10-04 15:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some files in TEMP:
====================
C:\Users\selvakumar\AppData\Local\Temp\sqlite3.dll
 

==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 

LastRegBack: 2015-10-04 15:48
 
==================== End of FRST.txt ============================


#10 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 11 October 2015 - 12:08 PM

Looking good, ESET hasn't found any active malware.

Due to the fact that some files in the C:\Windows\WinSxS are still corrupt, you should consider to open a thread in an more appropriate forum like http://www.sysnative.com/forums/.

goGMWSt.gifCRACKED SOFTWARE WARNING

Participating in the use of cracked/pirated/keygen software is not only illegal but also a security riskI do not approve of nor support illegal software.

Malware authors promote and release cracked software to spread their infections. I strongly recommend you refrain from participating in this activity; your computer will be repeatedly infected otherwise. Simply visiting a cracked software site can result in infection via drive-by exploits of vulnerable software.

Cracked software will make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. In some instances an infection may cause so much damage to your system that recovery is not possible and the only option is to reformat your Hard Drive and reinstall your Operating System. Please read the following articles for more information.


regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#11 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:30 AM

Posted 11 October 2015 - 12:10 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users