Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer suddenly significantly slower


  • This topic is locked This topic is locked
19 replies to this topic

#1 FlyingPies

FlyingPies

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 20 December 2015 - 10:17 PM

I used to be able to play CS:GO and League of Legends with no problems. Recently, I have been having many problems with CS:GO and League of Legends. For CS:GO, it takes a long time for me to join games. By the time I join a game, the game is close to over, and I only get around 15-20 fps. This is a stark contrast from my fast loading into games and average 50-60 fps. League of Legends is in a worse state. When I try to load into a game my ping is about 300, whereas before it was 90 and I get disconnected when I reach 100%. Neither of these games have had significant changes that would change my gaming experience this much. I have also my computer is slower in general, not just while playing video games. After trying a Malwarebytes scan, a BitDefender scan, and an Avira scan, I have come to bleepingcomputer.com in hopes that you guys can help me.

 

I have attached my Addition.txt log

 

Here is my FRST.txt log:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-12-2015
Ran by Arjun (administrator) on ARJUNL (20-12-2015 21:06:04)
Running from C:\Users\Arjun\Downloads
Loaded Profiles: Arjun (Available Profiles: Arjun)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Rsupport Co., Ltd.) C:\Program Files (x86)\Samsung\Remote PC\rvagent.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Rsupport Co., Ltd.) C:\Program Files (x86)\Samsung\Remote PC\rvagtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(Pushbullet Inc) C:\Users\Arjun\AppData\Local\Pushbullet\bin\pushbullet_client.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe
(Spotify Ltd) C:\Users\Arjun\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\Arjun\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Arjun\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8712960 2015-11-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-24] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-16] (Synaptics Incorporated)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2015-09-18] (Pixart Imaging Inc)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3777696 2014-01-16] (Dell Inc.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [395368 2015-11-24] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1720488 2015-12-10] (Bitdefender)
HKLM-x32\...\Run: [RemoteView5 Tray] => C:\Program Files (x86)\Samsung\Remote PC\rvagtray.exe [2615704 2014-05-08] (Rsupport Co., Ltd.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [884440 2015-05-28] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1679360 2012-02-28] (Wondershare)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5893920 2015-11-12] (IObit)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Spotify Web Helper] => C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2015-12-15] (Spotify Ltd)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50515576 2015-11-30] (Skype Technologies S.A.)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Pushbullet] => C:\Program Files (x86)\Pushbullet\pushbullet.exe [345600 2015-07-01] (Pushbullet inc)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2010912 2015-11-06] (IObit)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [WTFast Tray] => C:\Program Files (x86)\WTFast\WTFast.exe [5255256 2015-09-14] (AAA Internet Publishing, Inc.)
HKU\S-1-5-21-658155447-1158045699-234421219-1001\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe [1423288 2015-12-10] (Bitdefender)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-09-17]
ShortcutTarget: Dropbox.lnk -> C:\Users\Arjun\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk [2015-11-13]
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\PRTG Enterprise Console.exe (Paessler AG)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{31dd5159-ccc4-4474-8a64-8c907b0ae5fb}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{89d3e6f1-a355-4b2e-be30-091d78d1c560}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{89d3e6f1-a355-4b2e-be30-091d78d1c560}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-658155447-1158045699-234421219-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKU\S-1-5-21-658155447-1158045699-234421219-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-658155447-1158045699-234421219-1001 -> DefaultScope {94823592-7F1B-4322-AC92-502D3CABCF75} URL = 
SearchScopes: HKU\S-1-5-21-658155447-1158045699-234421219-1001 -> {94823592-7F1B-4322-AC92-502D3CABCF75} URL = 
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2015-12-10] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-12-14] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2014-10-11] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-12-14] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2014-10-11] (Oracle Corporation)
BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2015-12-10] (Bitdefender)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2015-12-10] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2015-12-10] (Bitdefender)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-20] ()
FF Plugin: @java.com/DTPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2014-10-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2014-10-11] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-20] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-09-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-658155447-1158045699-234421219-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Arjun\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-11] (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\user.js [2015-11-24]
FF Extension: Avira Browser Safety - C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\Extensions\abs@avira.com [2015-09-27] [not signed]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\Extensions\ascsurfingprotection@iobit.com [2015-11-24] [not signed]
FF Extension: Avira SafeSearch Plus - C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\Extensions\safesearchplus@avira.com [2015-09-27] [not signed]
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff [2015-12-16]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2015-12-16] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
 
Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-06]
CHR Extension: (Google Docs) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Google Drive) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Slinky Elegant) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2015-09-13]
CHR Extension: (Pushbullet) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2015-12-20]
CHR Extension: (uBlock Origin) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-12-15]
CHR Extension: (Google Search) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2015-11-21]
CHR Extension: (Google Sheets) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-06]
CHR Extension: (Print this page with CleanPrint) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklmmmdcofimkjmfjdnobmmgmefbapkf [2014-09-10]
CHR Extension: (Avira Browser Safety) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-12-15]
CHR Extension: (Google Docs Offline) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]
CHR Extension: (Bookmark Manager) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-11-11]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-01-01]
CHR Extension: (Avira SafeSearch) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje [2015-12-06]
CHR Extension: (Agario Extended – Enhance Agar.io Gameplay) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflicjopopjcpojfoefhbpdncmjbcbin [2015-05-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Browsec) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh [2015-10-22]
CHR Extension: (Gmail) - C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-14]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [827680 2015-11-04] (IObit)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-24] ()
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433880 2015-05-28] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413400 2015-05-28] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [806616 2015-05-28] (BlueStack Systems, Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2802360 2015-11-24] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2573520 2015-05-22] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201936 2015-05-22] (Dell Inc.)
S4 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [139328 2014-02-19] (Aviata, Inc.)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-05-31] (Echobit LLC)
S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-03-12] (Hi-Rez Studios) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-11-24] (Intel Corporation)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-11-04] (IObit)
S4 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S4 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-07-06] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-08-13] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2015-08-13] ()
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [857288 2015-11-09] (Bitdefender)
R2 PRTGCoreService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe [8404168 2015-11-11] (Paessler AG)
R2 PRTGProbeService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe [12060360 2015-11-11] (Paessler AG)
R2 RemotePC Agent; C:\Program Files (x86)\Samsung\Remote PC\rvagent.exe [813448 2014-05-07] (Rsupport Co., Ltd.)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-29] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-11-24] (Realtek Semiconductor)
S4 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [1915920 2014-04-04] (SoftThinks SAS)
S2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [20648 2015-06-11] (Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-16] (Synaptics Incorporated)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [124488 2015-09-29] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1604080 2015-12-09] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S4 WysePocketCloud; C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe [16176 2013-08-22] ()
S4 WyseRemoteAccess; C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe [1785344 2013-08-19] (DELL Inc.) [File not signed]
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4316784 2015-11-24] (Qualcomm Atheros Communications, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1600512 2015-10-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [282000 2015-09-17] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [775424 2015-09-17] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [115800 2015-12-03] (BitDefender LLC)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145112 2015-05-28] (BlueStack Systems)
R1 Capsax64Drv0; C:\Windows\System32\Drivers\Capsax64Drv0.sys [35976 2014-08-15] (Colasoft Co., Ltd.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 CSN5PDTS82x64; C:\Windows\System32\Drivers\CSN5PDTS82x64.sys [34840 2012-10-24] (Colasoft Co., Ltd.)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-02-26] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-11-24] (OSR Open Systems Resources, Inc.)
R3 ElcMouLFlt; C:\Windows\System32\drivers\ElcMouLFlt.sys [28648 2015-09-11] (ELECOM)
R3 ElcMouUFlt; C:\Windows\System32\drivers\ElcMouUFlt.sys [27624 2015-09-11] (ELECOM)
R3 EvolveVirtualAdapter; C:\Windows\System32\drivers\evolve.sys [21656 2015-05-31] (Echobit, LLC)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-03-25] (IObit)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-03-05] (REALiX™)
R3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [46856 2015-11-24] (Intel Corporation)
R0 ignis; C:\Windows\system32\DRIVERS\ignis.sys [271808 2015-10-22] (Bitdefender)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-19] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-11-24] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2014-08-18] (Riverbed Technology, Inc.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-03-25] (IObit.com)
S3 rssasnt; C:\Program Files (x86)\Samsung\Remote PC\rssas64.sys [18184 2013-08-22] (Rsupport Co.,Ltd)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [889584 2015-11-24] (Realtek                                            )
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [412400 2015-08-07] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-11-24] (Synaptics Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [57032 2015-07-16] (Synaptics Incorporated)
S3 tap-tb-0901; C:\Windows\system32\DRIVERS\tap-tb-0901.sys [38656 2015-04-28] (The OpenVPN Project)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2015-09-18] ()
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-03-25] (IObit.com)
R1 vrvd5; C:\Windows\system32\DRIVERS\vrvd5.sys [13344 2015-12-14] (Rsupport Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WsAudioDevice_383; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2015-02-02] (Wondershare)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-20 20:57 - 2015-12-20 21:06 - 00074090 _____ C:\Users\Arjun\Downloads\Addition.txt
2015-12-20 20:53 - 2015-12-20 21:06 - 00033219 _____ C:\Users\Arjun\Downloads\FRST.txt
2015-12-20 20:53 - 2015-12-20 21:06 - 00000000 ____D C:\FRST
2015-12-20 20:52 - 2015-12-20 20:52 - 02370560 _____ (Farbar) C:\Users\Arjun\Downloads\FRST64.exe
2015-12-20 20:43 - 2015-12-20 20:43 - 00001964 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2015-12-20 20:43 - 2015-12-20 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-12-20 20:43 - 2015-12-20 20:43 - 00000000 ____D C:\Program Files\HitmanPro
2015-12-20 20:42 - 2015-12-20 20:49 - 00000000 ____D C:\ProgramData\HitmanPro
2015-12-20 20:32 - 2015-12-20 20:43 - 11323704 _____ (SurfRight B.V.) C:\Users\Arjun\Downloads\HitmanPro_x64.exe
2015-12-20 20:30 - 2015-12-20 20:30 - 05639940 _____ (Swearware) C:\Users\Arjun\Downloads\ComboFix.exe
2015-12-20 20:22 - 2015-12-20 20:27 - 00003288 _____ C:\Users\Arjun\Desktop\Rkill.txt
2015-12-20 20:22 - 2015-12-20 20:22 - 02032072 _____ (Bleeping Computer, LLC) C:\Users\Arjun\Downloads\rkill.com
2015-12-20 20:16 - 2015-12-20 20:16 - 00036608 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-12-20 20:15 - 2015-12-20 20:15 - 00000907 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2015-12-20 20:13 - 2015-12-20 20:15 - 30263336 _____ (Adlice Software ) C:\Users\Arjun\Downloads\setup (1).exe
2015-12-20 19:55 - 2015-12-20 19:55 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-12-20 09:53 - 2015-12-20 09:53 - 00000000 ____D C:\Users\Arjun\AppData\Temp
2015-12-20 00:25 - 2015-12-20 00:25 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2015-12-20 00:25 - 2015-12-20 00:25 - 00000385 _____ C:\Users\Arjun\AppData\Roaminguser_gensett.xml
2015-12-20 00:24 - 2015-12-20 00:24 - 00450574 _____ C:\ProgramData\1450591775.bdinstall.bin
2015-12-20 00:20 - 2015-12-20 00:20 - 00002282 _____ C:\Users\Public\Desktop\Bitdefender 2016.lnk
2015-12-20 00:20 - 2015-12-20 00:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-12-20 00:20 - 2015-12-20 00:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2016
2015-12-20 00:20 - 2015-12-20 00:20 - 00000000 ____D C:\ProgramData\BDLogging
2015-12-20 00:20 - 2013-09-08 19:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2015-12-20 00:20 - 2007-04-11 10:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2015-12-20 00:19 - 2015-12-04 19:27 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2015-12-20 00:19 - 2015-10-28 13:01 - 01600512 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-12-20 00:19 - 2015-10-22 14:02 - 00271808 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2015-12-20 00:19 - 2015-09-17 21:24 - 00282000 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-12-20 00:19 - 2015-09-17 21:23 - 00775424 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-12-20 00:18 - 2015-12-20 00:30 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Bitdefender
2015-12-20 00:09 - 2015-12-20 00:59 - 00000000 ____D C:\ProgramData\Bitdefender
2015-12-20 00:09 - 2015-12-20 00:09 - 00025136 _____ C:\ProgramData\1450591778.bdinstall.bin
2015-12-20 00:09 - 2015-12-20 00:09 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\QuickScan
2015-12-20 00:09 - 2015-12-20 00:09 - 00000000 ____D C:\Program Files\Bitdefender
2015-12-20 00:09 - 2015-06-02 14:21 - 00477272 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-12-20 00:09 - 2015-04-29 13:32 - 00160032 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-12-20 00:08 - 2015-12-20 00:09 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-12-20 00:04 - 2015-12-20 00:04 - 00002478 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Arjun
2015-12-20 00:04 - 2015-12-20 00:04 - 00000292 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Arjun.job
2015-12-19 23:52 - 2015-12-19 23:52 - 09736920 _____ C:\Users\Arjun\Downloads\bitdefender_tsecurity (1).exe
2015-12-19 23:45 - 2015-12-20 20:55 - 00000000 ____D C:\Program Files\Bitdefender Agent
2015-12-19 23:45 - 2015-12-19 23:45 - 09736920 _____ C:\Users\Arjun\Downloads\bitdefender_tsecurity.exe
2015-12-19 23:45 - 2015-12-19 23:45 - 00003794 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2015-12-19 23:45 - 2015-12-19 23:45 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2015-12-18 20:43 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-12-18 20:43 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-12-18 20:43 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-12-18 20:43 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-12-18 20:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-12-18 20:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-12-18 20:43 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-12-18 20:43 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-12-18 20:43 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-12-18 20:43 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-12-18 20:43 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-12-18 20:43 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-12-18 20:43 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-12-18 20:43 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-12-18 20:43 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-12-18 20:42 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-12-18 20:42 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-12-18 20:42 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-12-18 20:42 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-12-18 20:42 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2015-12-18 20:42 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-12-18 20:42 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-12-18 20:42 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-12-18 20:42 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-12-18 20:42 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-12-18 20:42 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-12-18 20:42 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-12-18 20:42 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-12-18 20:42 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-12-18 20:42 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-12-18 20:42 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-12-18 20:42 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-12-18 20:42 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-12-18 20:42 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-12-18 20:42 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-12-18 20:42 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-12-18 20:42 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-12-18 20:42 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-12-18 20:42 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-12-18 20:42 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-12-18 20:42 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-12-18 20:42 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-12-18 20:42 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-12-18 20:42 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-12-18 20:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-12-18 20:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-12-18 20:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-12-18 20:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-12-18 20:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-12-18 20:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-12-18 20:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-12-18 20:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-12-18 20:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-12-18 20:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-12-18 20:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-12-18 20:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-12-18 20:41 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-12-18 20:41 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-12-18 20:41 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-12-18 20:41 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-12-18 20:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-12-18 20:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-12-18 20:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-12-18 20:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-12-18 20:41 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-12-18 20:41 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-12-18 20:41 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-12-18 20:41 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-12-18 20:41 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-12-18 20:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-12-18 20:41 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-12-18 20:41 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-12-18 20:41 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-12-18 20:41 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-12-18 20:41 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-12-18 20:41 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-12-18 20:41 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-12-18 20:41 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-12-18 20:41 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-12-18 20:41 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-12-18 20:41 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-12-18 20:41 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-12-18 20:41 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-12-18 20:41 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-12-18 20:41 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-12-18 20:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-12-18 20:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2015-12-18 20:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-12-18 20:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-12-18 20:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-12-18 20:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-12-18 20:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-12-18 20:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-12-18 20:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-12-18 20:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-12-18 20:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-12-18 20:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-12-18 20:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-12-18 20:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-12-18 20:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-12-18 20:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-12-18 20:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-12-18 20:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-12-18 20:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-12-18 20:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-12-18 20:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-12-18 20:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-12-18 20:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-12-18 20:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-12-18 20:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-12-18 20:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-12-18 20:39 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-12-18 20:39 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-12-18 20:39 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-12-18 20:39 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-12-18 20:39 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-12-18 20:39 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-12-18 20:39 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-12-18 20:39 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-12-17 14:47 - 2015-12-06 22:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-17 14:47 - 2015-12-06 22:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-17 14:47 - 2015-12-06 22:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-17 14:47 - 2015-12-06 22:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-17 14:47 - 2015-12-06 22:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-17 14:47 - 2015-12-06 22:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-17 14:47 - 2015-12-06 22:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-17 14:47 - 2015-12-06 22:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-17 14:47 - 2015-12-06 22:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-17 14:47 - 2015-12-06 22:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-17 14:47 - 2015-12-06 22:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-17 14:47 - 2015-12-06 22:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-17 14:47 - 2015-12-06 22:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-17 14:47 - 2015-12-06 22:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-17 14:47 - 2015-12-06 22:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-17 14:47 - 2015-12-06 22:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-17 14:47 - 2015-12-06 22:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-17 14:47 - 2015-12-06 22:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-17 14:47 - 2015-12-06 22:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-17 14:47 - 2015-12-06 22:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-17 14:47 - 2015-12-06 22:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-17 14:47 - 2015-12-06 22:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-17 14:47 - 2015-12-06 22:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-17 14:47 - 2015-12-06 22:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-17 14:47 - 2015-12-06 22:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-17 14:47 - 2015-12-06 22:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-17 14:47 - 2015-12-06 22:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-17 14:47 - 2015-12-06 22:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-17 14:47 - 2015-12-06 22:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-17 14:47 - 2015-12-06 22:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-17 14:47 - 2015-12-06 22:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-17 14:47 - 2015-12-06 22:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-17 14:47 - 2015-12-06 22:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-17 14:47 - 2015-12-06 22:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-17 14:47 - 2015-12-06 22:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-17 14:47 - 2015-12-06 22:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-17 14:47 - 2015-12-06 21:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-17 14:47 - 2015-12-06 21:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-17 14:47 - 2015-12-06 21:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-17 14:47 - 2015-12-06 21:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-17 14:47 - 2015-12-06 21:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-17 14:47 - 2015-12-06 21:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-17 14:47 - 2015-12-06 21:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-17 14:47 - 2015-12-06 21:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-17 14:47 - 2015-12-06 21:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-17 14:47 - 2015-12-06 21:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-17 14:47 - 2015-12-06 21:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 21:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-17 14:47 - 2015-12-06 21:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-17 14:47 - 2015-12-06 21:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-17 14:47 - 2015-12-06 21:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-17 14:47 - 2015-12-06 21:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-17 14:47 - 2015-12-06 21:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-17 14:47 - 2015-12-06 21:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-17 14:47 - 2015-12-06 21:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-17 14:47 - 2015-12-06 21:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-17 14:47 - 2015-12-06 21:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-17 14:47 - 2015-12-06 21:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-17 14:47 - 2015-12-06 21:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-17 14:47 - 2015-12-06 21:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-17 14:47 - 2015-12-06 21:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-17 14:47 - 2015-12-06 21:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-17 14:47 - 2015-12-06 21:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-17 14:47 - 2015-12-06 21:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-17 14:47 - 2015-12-06 21:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-17 14:47 - 2015-12-06 21:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-17 14:47 - 2015-12-06 21:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-17 14:47 - 2015-12-06 21:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-17 14:47 - 2015-12-06 21:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-17 14:47 - 2015-12-06 21:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-17 14:47 - 2015-12-06 21:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-17 14:47 - 2015-12-06 21:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-17 14:47 - 2015-12-06 21:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-16 19:46 - 2015-12-16 19:46 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-12-16 19:27 - 2015-11-30 18:33 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-16 19:27 - 2015-11-30 18:33 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-15 21:52 - 2015-12-20 09:58 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-15 02:34 - 2015-12-15 00:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-15 02:28 - 2015-12-15 02:28 - 00000000 ____D C:\Windows.old
2015-12-15 02:27 - 2015-12-15 02:27 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-15 02:27 - 2015-12-15 02:27 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-15 02:27 - 2015-12-15 02:27 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-15 02:27 - 2015-12-15 02:27 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-15 02:27 - 2015-12-15 02:27 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-12-15 02:27 - 2015-12-15 02:27 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-12-15 02:27 - 2015-12-15 02:27 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-12-15 02:27 - 2015-12-15 02:27 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-15 02:27 - 2015-12-15 02:27 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-15 02:27 - 2015-12-15 02:27 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-12-15 02:24 - 2015-12-15 02:24 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-12-15 02:20 - 2015-12-15 02:20 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-12-15 02:20 - 2015-12-15 02:20 - 00000000 ____D C:\Program Files\MSBuild
2015-12-15 02:20 - 2015-12-15 02:20 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-12-15 02:20 - 2015-12-15 02:20 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-12-15 02:19 - 2015-10-23 19:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-12-15 02:19 - 2015-10-23 19:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-15 02:19 - 2015-10-23 19:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-12-15 02:19 - 2015-10-23 19:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-15 02:19 - 2015-10-23 19:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-15 02:19 - 2015-10-23 19:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-15 02:10 - 2015-12-15 02:10 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2015-12-14 19:34 - 2015-12-14 19:34 - 00002365 _____ C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 19:17 - 2015-12-14 19:17 - 00000000 ____D C:\Users\Arjun\AppData\Local\ActiveSync
2015-12-14 19:14 - 2015-12-14 19:14 - 00000020 ___SH C:\Users\Arjun\ntuser.ini
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default\My Documents
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2015-12-14 19:13 - 2015-12-14 19:13 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2015-12-14 19:05 - 2015-12-20 19:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-14 18:59 - 2015-12-14 19:59 - 00070688 _____ (Rsupport Corporation) C:\WINDOWS\system32\vrvd5.dll
2015-12-14 18:59 - 2015-12-14 19:59 - 00013344 _____ (Rsupport Corporation) C:\WINDOWS\system32\Drivers\vrvd5.sys
2015-12-14 18:58 - 2015-12-14 18:58 - 00000000 ____D C:\Users\Public\Documents\Rsupport
2015-12-14 18:53 - 2015-12-14 18:53 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default\AppData\Roaming\ProductData
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default\AppData\Roaming\IObit
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ProductData
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2015-12-14 18:53 - 2015-12-14 18:53 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2015-12-14 18:46 - 2015-12-14 18:46 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-12-14 18:43 - 2015-12-18 07:05 - 00000000 ____D C:\Users\Arjun
2015-12-14 18:43 - 2015-12-14 18:43 - 00000000 _SHDL C:\Users\Arjun\My Documents
2015-12-14 18:43 - 2015-12-14 18:43 - 00000000 _SHDL C:\Users\Arjun\Documents\My Videos
2015-12-14 18:43 - 2015-12-14 18:43 - 00000000 _SHDL C:\Users\Arjun\Documents\My Pictures
2015-12-14 18:43 - 2015-12-14 18:43 - 00000000 _SHDL C:\Users\Arjun\Documents\My Music
2015-12-14 18:40 - 2015-12-14 18:40 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-12-14 18:40 - 2015-12-14 18:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-12-14 18:40 - 2015-12-14 18:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-12-14 18:40 - 2015-12-14 18:40 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-12-14 18:40 - 2015-11-24 11:03 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-12-14 18:40 - 2015-11-24 11:03 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-12-14 18:39 - 2015-12-14 18:46 - 00000000 ____D C:\Program Files\Intel
2015-12-14 18:39 - 2015-12-14 18:39 - 01019725 _____ C:\WINDOWS\system32\Drivers\rtwavesskdy.dat
2015-12-14 18:39 - 2015-12-14 18:39 - 00455938 _____ C:\WINDOWS\system32\Drivers\rtwavesmapro.dat
2015-12-14 18:39 - 2015-12-14 18:39 - 00031095 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2015-12-14 18:39 - 2015-12-14 18:39 - 00019678 _____ C:\WINDOWS\system32\Drivers\rtwavesmaprocap.dat
2015-12-14 18:39 - 2015-12-14 18:39 - 00010945 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2015-12-14 18:39 - 2015-12-14 18:39 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-12-14 18:38 - 2015-12-14 18:38 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-12-14 18:38 - 2015-12-14 18:38 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-12-14 18:38 - 2015-12-14 18:38 - 00000000 ____D C:\Program Files\Synaptics
2015-12-14 18:38 - 2015-12-14 18:38 - 00000000 ____D C:\Program Files\Realtek
2015-12-14 18:38 - 2015-10-30 01:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-12-14 18:35 - 2015-12-14 18:57 - 00352424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 22:08 - 2015-12-20 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2015-12-12 22:08 - 2015-12-20 20:15 - 00000000 ____D C:\Program Files\RogueKiller
2015-12-12 22:08 - 2015-12-20 20:08 - 00000000 ____D C:\ProgramData\RogueKiller
2015-12-12 22:07 - 2015-12-12 22:08 - 30225712 _____ (Adlice Software ) C:\Users\Arjun\Downloads\setup.exe
2015-12-11 17:22 - 2015-12-11 17:22 - 00001173 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-12-11 17:22 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-11 17:22 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-12-11 17:22 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-12-11 15:58 - 2015-12-11 15:58 - 00003638 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-12-10 22:11 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-12-10 22:11 - 2015-12-10 22:11 - 00002407 _____ C:\Users\Public\Desktop\Heroes of Might and Magic 3 Complete.lnk
2015-12-10 22:07 - 2015-12-10 22:07 - 00000000 ____D C:\Program Files (x86)\GOG.com
2015-12-10 21:21 - 2015-12-10 22:04 - 389723898 _____ C:\Users\Arjun\Downloads\Heroes 3 Complete - (Www.ApunKaGames.Net).part2.rar
2015-12-10 21:20 - 2015-12-10 21:20 - 00000000 ____D C:\Users\Arjun\Downloads\Heroes 3 Complete - (Www.ApunKaGames.Net)
2015-12-10 19:35 - 2015-12-10 20:27 - 471859200 _____ C:\Users\Arjun\Downloads\Heroes 3 Complete - (Www.ApunKaGames.Net).part1.rar
2015-12-07 21:02 - 2015-12-07 21:02 - 00029580 _____ C:\Users\Arjun\Downloads\base64_decrypt.bmp
2015-12-07 20:34 - 2015-12-07 20:35 - 04673702 _____ C:\Users\Arjun\Downloads\btb_chapter3.pdf
2015-12-06 18:25 - 2015-12-20 20:30 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-06 18:25 - 2015-12-20 19:55 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-30 02:24 - 2015-11-30 02:24 - 00002123 _____ C:\Users\Public\Desktop\Google Slides.lnk
2015-11-30 02:24 - 2015-11-30 02:24 - 00002121 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2015-11-30 02:24 - 2015-11-30 02:24 - 00002111 _____ C:\Users\Public\Desktop\Google Docs.lnk
2015-11-29 10:44 - 2015-11-29 10:44 - 00001213 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-11-27 22:27 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-11-27 22:27 - 2015-11-27 22:27 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-11-27 22:26 - 2015-11-27 22:27 - 08810496 _____ C:\Users\Arjun\Downloads\Hamachi (1).msi
2015-11-27 21:49 - 2015-11-27 21:49 - 00000222 _____ C:\Users\Arjun\Desktop\Mount Your Friends.url
2015-11-25 13:29 - 2015-11-25 13:29 - 00216576 _____ C:\Users\Arjun\Downloads\WNMDMID.EXE
2015-11-25 12:54 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast
2015-11-25 12:54 - 2015-11-25 12:54 - 00001050 _____ C:\Users\Public\Desktop\WTFast.lnk
2015-11-25 12:54 - 2015-11-25 12:54 - 00000000 ____D C:\Users\Arjun\AppData\Local\AAA_Internet_Publishing,_
2015-11-25 12:54 - 2015-11-25 12:54 - 00000000 ____D C:\Program Files (x86)\WTFast
2015-11-25 12:54 - 2015-04-08 15:15 - 00079464 _____ (Initex) C:\WINDOWS\system32\WTFastDrv.dll
2015-11-25 12:54 - 2015-04-08 15:15 - 00072296 _____ (Initex) C:\WINDOWS\SysWOW64\WTFastDrv.dll
2015-11-25 12:54 - 2015-04-08 15:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SPORDER.DLL
2015-11-25 12:53 - 2015-11-25 12:54 - 07016240 _____ (Initex & AAA Internet Publishing ) C:\Users\Arjun\Downloads\WTFastSetup.3.5.9.511.exe
2015-11-24 15:49 - 2015-11-24 15:54 - 00000000 ____D C:\Users\Arjun\Desktop\minecraft
2015-11-24 15:49 - 2015-11-24 15:49 - 08322852 _____ C:\Users\Arjun\Downloads\minecraft_server.1.8.8.jar
2015-11-24 11:14 - 2015-11-24 11:14 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-11-24 11:14 - 2015-11-24 11:14 - 04613888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-11-24 11:14 - 2015-11-24 11:14 - 02997504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 02893568 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-11-24 11:14 - 2015-11-24 11:14 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 00221976 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 00209544 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-11-24 11:14 - 2015-11-24 11:14 - 00164432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCORES64.dat
2015-11-24 11:13 - 2015-11-24 11:13 - 13120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 12014440 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxVoiceAPO30.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 03951402 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-11-24 11:13 - 2015-11-24 11:13 - 03700360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2015-11-24 11:13 - 2015-11-24 11:13 - 03278416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 02958904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 02050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 02028672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01976560 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01743080 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01395768 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01352000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01211840 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00914024 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00768824 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00677680 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00642928 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBTHX64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00577840 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBTHX32.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00410032 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00214840 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00203560 _____ (Waves Audio) C:\WINDOWS\system32\MaxxAudioVienna264.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00122328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00110992 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00084624 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00074608 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00069928 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2015-11-24 11:13 - 2015-11-24 11:13 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 35989240 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 35069432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 31014352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 29709824 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 15155960 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 13632048 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 13168072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 11178048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 06429072 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-11-24 11:03 - 2015-11-24 11:03 - 06337096 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 05797102 _____ C:\WINDOWS\system32\igdclbif.bin
2015-11-24 11:03 - 2015-11-24 11:03 - 05666816 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 04869816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 04527104 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 04362056 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 03982336 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 03952128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 03932528 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-11-24 11:03 - 2015-11-24 11:03 - 02035712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01840592 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01767992 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01765408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01565696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01465672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01156608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 01008232 _____ C:\WINDOWS\system32\igfxSDK.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00728576 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00608768 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00595560 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00517736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00421376 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2015-11-24 11:03 - 2015-11-24 11:03 - 00397824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00395368 _____ C:\WINDOWS\system32\igfxTray.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00386048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00371200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00364032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00353896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00332904 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00331776 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00300032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00285304 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00282216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00270896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00256000 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-11-24 11:03 - 2015-11-24 11:03 - 00248832 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00248424 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00243200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00220432 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00218216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-11-24 11:03 - 2015-11-24 11:03 - 00207872 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00201368 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00189952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4300.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00184352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00163264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00162240 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00160680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00156672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00140056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00140056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00094208 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00086016 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00083456 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00077824 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00065536 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00036616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00035328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00011776 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00011776 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-11-24 11:03 - 2015-11-24 11:03 - 00004698 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-11-24 11:03 - 2015-11-24 11:03 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-11-24 11:02 - 2015-11-24 11:02 - 29084160 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2015-11-24 11:02 - 2015-11-24 11:02 - 19844096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2015-11-24 11:02 - 2015-11-24 11:02 - 11433984 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2015-11-24 11:02 - 2015-11-24 11:02 - 08507904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2015-11-24 11:02 - 2015-11-24 11:02 - 05245440 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2015-11-24 11:02 - 2015-11-24 11:02 - 00941672 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00938088 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00819926 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2015-11-24 11:02 - 2015-11-24 11:02 - 00641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2015-11-24 11:02 - 2015-11-24 11:02 - 00511260 _____ C:\WINDOWS\system32\cp_resources.bin
2015-11-24 11:02 - 2015-11-24 11:02 - 00448104 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2015-11-24 11:02 - 2015-11-24 11:02 - 00213608 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00213096 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00156264 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-11-24 11:02 - 2015-11-24 11:02 - 00000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2015-11-24 11:02 - 2015-11-24 11:02 - 00000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2015-11-24 11:02 - 2015-11-24 11:02 - 00000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2015-11-24 11:02 - 2015-11-24 11:02 - 00000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2015-11-24 11:01 - 2015-11-24 11:01 - 00475384 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2015-11-24 10:57 - 2015-11-24 10:57 - 00889584 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-11-24 10:57 - 2015-11-24 10:57 - 00084064 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-11-24 10:56 - 2015-11-24 10:56 - 00609992 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2015-11-24 10:56 - 2015-11-24 10:56 - 00246804 _____ C:\WINDOWS\system32\Drivers\AtherosBT.bin
2015-11-24 10:56 - 2015-11-24 10:56 - 00208992 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2015-11-24 10:56 - 2015-11-24 10:56 - 00207960 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2015-11-24 10:56 - 2015-11-24 10:56 - 00046972 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x11020000.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00046868 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010000.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00046852 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x11020100.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00045868 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x01020201.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00044028 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x01020200.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00040684 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010000_ss01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00040036 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010100.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00037464 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll.muien-US
2015-11-24 10:56 - 2015-11-24 10:56 - 00001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf0.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x21.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x11.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001922 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010100_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001802 _____ C:\WINDOWS\system32\Drivers\ramps_0x11020100_40_SS01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001802 _____ C:\WINDOWS\system32\Drivers\ramps_0x11020100_40_nf01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001802 _____ C:\WINDOWS\system32\Drivers\ramps_0x11020100_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001796 _____ C:\WINDOWS\system32\Drivers\ramps_0x11020000_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_SS01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_LV01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf1.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x22.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x12.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001512 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010100_40_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001242 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001228 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x04.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001214 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x03.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001204 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001204 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001198 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_26.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00001192 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020200_26_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000296 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000278 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x04.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000264 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x03.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000264 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x02.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000264 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_40.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000264 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_26_0x01.dfu
2015-11-24 10:56 - 2015-11-24 10:56 - 00000264 _____ C:\WINDOWS\system32\Drivers\ramps_0x01020201_26.dfu
2015-11-24 10:48 - 2015-11-24 10:48 - 04316784 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2015-11-24 10:47 - 2015-11-24 10:47 - 00019440 _____ (OSR Open Systems Resources, Inc.) C:\WINDOWS\system32\Drivers\DellRbtn.sys
2015-11-24 10:45 - 2015-11-24 10:45 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-24 10:41 - 2015-11-24 10:41 - 00184608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-11-24 10:40 - 2015-11-24 10:40 - 00046856 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS_GPIO.sys
2015-11-24 10:13 - 2015-12-20 09:48 - 00002225 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2015-11-24 10:13 - 2015-12-14 19:18 - 00003424 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-11-24 10:13 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-24 10:09 - 2015-12-14 19:05 - 00002490 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Startup
2015-11-24 10:09 - 2015-12-14 19:05 - 00002486 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2015-11-24 10:09 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-11-24 10:09 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-11-24 10:09 - 2015-11-24 10:09 - 00001248 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-11-24 10:09 - 2015-11-24 10:09 - 00001245 _____ C:\Users\Public\Desktop\Smart Defrag 4.lnk
2015-11-24 10:09 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\SysWOW64\IObitSmartDefragExtension.dll
2015-11-24 10:09 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-11-24 10:09 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-11-24 10:09 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-11-24 10:04 - 2015-12-14 19:05 - 00002492 _____ C:\WINDOWS\System32\Tasks\ASC9_PerformanceMonitor
2015-11-24 10:04 - 2015-12-14 19:05 - 00002168 _____ C:\WINDOWS\System32\Tasks\ASC9_SkipUac_Arjun
2015-11-24 10:04 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2015-11-24 10:04 - 2015-12-14 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2015-11-24 10:04 - 2015-12-08 19:41 - 00002238 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2015-11-24 10:04 - 2015-11-24 10:05 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\ProductData
2015-11-24 10:04 - 2015-11-24 10:04 - 00001441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-11-24 10:04 - 2015-11-24 10:04 - 00001429 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-11-24 10:04 - 2015-11-24 10:04 - 00000252 _____ C:\WINDOWS\Tasks\ASC9_SkipUac_Arjun.job
2015-11-24 10:04 - 2015-11-24 10:04 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2015-11-24 10:04 - 2015-11-24 10:04 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2015-11-22 14:05 - 2015-11-22 14:05 - 00411280 _____ (TweakBit) C:\Users\Arjun\Downloads\driver-updater-setup (2).exe
2015-11-21 13:25 - 2015-11-21 13:25 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\PingPlotter
2015-11-21 13:22 - 2015-12-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PingPlotter
2015-11-21 13:22 - 2015-11-21 13:22 - 00000000 ____D C:\Program Files (x86)\PingPlotter
2015-11-21 13:22 - 2015-11-20 01:22 - 00000040 ____H C:\Program Files (x86)\820e7fe7.tmp
2015-11-21 13:21 - 2015-11-21 13:21 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Downloaded Installations
2015-11-21 13:20 - 2015-11-21 13:21 - 08892576 _____ C:\Users\Arjun\Downloads\pingplotter_install.exe
2015-11-20 22:03 - 2015-11-20 22:03 - 00000222 _____ C:\Users\Arjun\Desktop\Guns of Icarus Online.url
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-20 21:05 - 2015-10-30 00:28 - 00000000 ____D C:\Windows
2015-12-20 21:04 - 2015-05-22 15:56 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Skype
2015-12-20 21:03 - 2014-09-28 08:33 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Spotify
2015-12-20 20:49 - 2014-09-13 10:54 - 00000000 ____D C:\Users\Arjun\AppData\Local\CrashDumps
2015-12-20 20:39 - 2014-09-28 08:34 - 00000000 ____D C:\Users\Arjun\AppData\Local\Spotify
2015-12-20 20:19 - 2014-06-12 11:18 - 00000000 ____D C:\ProgramData\Temp
2015-12-20 20:09 - 2014-09-10 21:38 - 00004146 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A4DBC9EF-6DF4-47C6-A3EB-52CDE13A12DA}
2015-12-20 20:08 - 2015-07-20 17:48 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-20 19:59 - 2015-10-07 22:56 - 00000436 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-12-20 19:58 - 2015-11-15 20:58 - 00000000 ____D C:\Users\Arjun\AppData\Local\Pushbullet
2015-12-20 19:56 - 2014-09-18 19:47 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-20 19:55 - 2015-08-06 17:00 - 00000000 __SHD C:\Users\Arjun\IntelGraphicsProfiles
2015-12-20 19:54 - 2015-10-30 00:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-20 19:53 - 2015-11-13 16:20 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2015-12-20 18:41 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-20 09:59 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-12-20 09:58 - 2015-10-30 01:24 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2015-12-20 00:20 - 2015-10-30 01:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-20 00:04 - 2015-09-27 11:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-20 00:04 - 2015-09-27 11:04 - 00000000 ____D C:\ProgramData\Avira
2015-12-19 10:40 - 2014-09-17 20:31 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-19 09:59 - 2015-10-30 01:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-18 14:05 - 2015-07-19 15:58 - 00000000 ____D C:\Users\Arjun\AppData\Local\Adobe
2015-12-18 13:59 - 2015-08-06 16:50 - 00881036 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-17 23:52 - 2015-10-30 00:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-12-17 23:51 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-17 23:51 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-17 23:51 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-17 22:45 - 2015-10-30 01:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-16 19:29 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2015-12-16 19:17 - 2014-09-10 21:41 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-16 18:29 - 2015-11-13 14:13 - 00003560 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2015-12-15 20:28 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\appcompat
2015-12-15 02:34 - 2015-10-30 01:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-12-15 02:28 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-15 02:28 - 2015-10-30 00:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-12-15 02:28 - 2015-10-30 00:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-12-15 02:20 - 2015-10-30 01:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-12-15 02:20 - 2015-10-30 01:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-12-15 02:20 - 2015-10-30 01:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-12-15 02:20 - 2015-10-30 01:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-12-15 02:19 - 2015-10-30 01:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-12-15 02:19 - 2015-10-30 01:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-12-15 02:19 - 2015-10-30 01:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-12-15 02:19 - 2015-10-30 01:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-12-14 19:42 - 2014-09-10 21:33 - 00000000 ____D C:\Users\Arjun\AppData\Local\Packages
2015-12-14 19:38 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-12-14 19:36 - 2015-10-30 01:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-12-14 19:35 - 2014-09-13 10:45 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-12-14 19:34 - 2014-09-10 21:36 - 00000000 __RDO C:\Users\Arjun\OneDrive
2015-12-14 19:32 - 2015-02-27 14:59 - 00000000 ____D C:\Users\Arjun\AppData\Local\Steam
2015-12-14 19:20 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-14 19:19 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-12-14 19:19 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-12-14 19:18 - 2015-03-05 21:39 - 00003072 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Arjun)
2015-12-14 19:17 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-12-14 19:15 - 2014-09-10 21:29 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-14 19:12 - 2015-08-06 15:53 - 00019053 _____ C:\WINDOWS\diagwrn.xml
2015-12-14 19:12 - 2015-08-06 15:53 - 00019053 _____ C:\WINDOWS\diagerr.xml
2015-12-14 19:09 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Registration
2015-12-14 19:06 - 2015-11-13 14:13 - 00003808 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2015-12-14 19:06 - 2015-11-04 22:43 - 00002808 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-arjunlalith@outlook.com
2015-12-14 19:06 - 2015-08-06 16:55 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-12-14 19:05 - 2015-11-13 14:13 - 00002980 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2015-12-14 19:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-12-14 19:05 - 2015-09-18 18:29 - 00002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2015-12-14 19:05 - 2015-07-20 17:48 - 00003066 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-14 19:05 - 2015-06-23 16:45 - 00003310 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2015-12-14 19:05 - 2014-09-13 17:21 - 00002276 _____ C:\WINDOWS\System32\Tasks\{E7DA05E0-FB98-42A5-8B1D-4D4BCD598D4D}
2015-12-14 19:05 - 2014-09-10 21:40 - 00003432 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-14 19:05 - 2014-09-10 21:40 - 00003208 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-14 19:05 - 2014-09-10 21:39 - 00002936 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-658155447-1158045699-234421219-1001
2015-12-14 19:05 - 2014-06-12 11:28 - 00002254 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2015-12-14 19:05 - 2014-06-12 11:19 - 00002534 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2015-12-14 19:05 - 2014-06-12 11:19 - 00002534 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2015-12-14 19:05 - 2014-06-12 11:16 - 00002552 _____ C:\WINDOWS\System32\Tasks\PocketCloudUpdater
2015-12-14 19:05 - 2014-06-12 11:16 - 00002428 _____ C:\WINDOWS\System32\Tasks\PocketCloudVirtualChannel
2015-12-14 19:05 - 2014-06-12 11:16 - 00002326 _____ C:\WINDOWS\System32\Tasks\PocketCloud
2015-12-14 19:04 - 2015-10-30 01:24 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-14 19:02 - 2014-10-04 20:19 - 00879220 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-12-14 18:53 - 2015-07-10 03:05 - 00000000 ____D C:\Users\Default.migrated
2015-12-14 18:49 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2015-12-14 18:49 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\spool
2015-12-14 18:49 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-14 18:49 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-14 18:49 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-12-14 18:49 - 2015-07-26 13:25 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2015-12-14 18:49 - 2015-07-20 17:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-12-14 18:49 - 2014-09-13 10:24 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-12-14 18:49 - 2014-06-12 11:24 - 00000000 ____D C:\WINDOWS\system32\nn-NO
2015-12-14 18:49 - 2014-06-12 11:23 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-12-14 18:49 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-12-14 18:49 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-12-14 18:47 - 2015-11-15 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pushbullet
2015-12-14 18:47 - 2015-11-13 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PRTG Network Monitor
2015-12-14 18:47 - 2015-11-04 22:42 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-12-14 18:47 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-12-14 18:47 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-12-14 18:47 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\InputMethod
2015-12-14 18:47 - 2015-10-30 01:24 - 00000000 ____D C:\ProgramData\USOPrivate
2015-12-14 18:47 - 2015-10-15 21:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2015-12-14 18:47 - 2015-09-18 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2015-12-14 18:47 - 2015-09-06 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl
2015-12-14 18:47 - 2015-09-05 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-14 18:47 - 2015-07-26 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-12-14 18:47 - 2015-07-18 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2015-12-14 18:47 - 2015-07-08 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2015-12-14 18:47 - 2015-06-27 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dotjosh Studios
2015-12-14 18:47 - 2015-06-27 09:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-12-14 18:47 - 2015-06-22 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-12-14 18:47 - 2015-06-06 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-12-14 18:47 - 2015-06-01 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-12-14 18:47 - 2015-05-30 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2015-12-14 18:47 - 2015-05-14 20:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-12-14 18:47 - 2015-05-14 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-12-14 18:47 - 2015-03-05 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-12-14 18:47 - 2015-02-08 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-12-14 18:47 - 2015-01-24 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LSI - LoL Summoner Information
2015-12-14 18:47 - 2015-01-19 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-12-14 18:47 - 2014-11-23 08:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-12-14 18:47 - 2014-10-18 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-12-14 18:47 - 2014-09-20 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-12-14 18:47 - 2014-09-18 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-14 18:47 - 2014-09-17 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-14 18:47 - 2014-09-17 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-12-14 18:47 - 2014-09-13 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-14 18:47 - 2014-09-13 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-12-14 18:47 - 2014-09-13 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-12-14 18:47 - 2014-09-10 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-14 18:47 - 2014-06-12 11:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-12-14 18:47 - 2014-06-12 11:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-12-14 18:47 - 2014-06-12 11:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2015-12-14 18:47 - 2014-06-12 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wyse
2015-12-14 18:47 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-12-14 18:46 - 2015-10-30 01:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-14 18:45 - 2015-09-18 17:26 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2015-12-14 18:45 - 2015-08-22 10:59 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
2015-12-14 18:45 - 2015-08-05 13:51 - 00000000 ___RD C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-12-14 18:45 - 2015-07-05 16:32 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-14 18:45 - 2015-06-27 14:20 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2015-12-14 18:45 - 2015-06-22 13:59 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-12-14 18:45 - 2014-10-18 19:38 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-12-14 18:45 - 2014-09-18 20:11 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-14 18:45 - 2014-09-17 18:37 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-14 18:42 - 2015-10-30 00:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-14 18:35 - 2015-10-30 03:13 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-12-14 18:01 - 2015-10-30 03:42 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-13 23:37 - 2015-03-05 21:40 - 00000000 ____D C:\ProgramData\ProductData
2015-12-11 19:07 - 2014-09-20 18:54 - 00000000 ____D C:\Program Files\eclipse
2015-12-11 17:57 - 2014-09-10 21:33 - 00000000 ____D C:\Users\Arjun\AppData\Local\VirtualStore
2015-12-11 17:22 - 2014-09-17 20:31 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-10 19:16 - 2015-03-05 21:39 - 00000000 ____D C:\ProgramData\IObit
2015-12-09 18:59 - 2014-09-11 20:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 00:01 - 2015-06-16 15:29 - 00000000 ____D C:\Users\Arjun\AppData\Local\LogMeIn Hamachi
2015-12-08 21:39 - 2014-09-27 09:12 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-07 19:46 - 2015-05-22 15:56 - 00000000 ____D C:\ProgramData\Skype
2015-12-06 18:06 - 2014-06-12 11:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-11-29 11:01 - 2014-11-28 13:41 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-27 14:09 - 2014-09-13 18:10 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\.minecraft
2015-11-26 15:43 - 2013-08-22 07:25 - 00000187 _____ C:\WINDOWS\win.ini
2015-11-24 12:45 - 2015-06-01 20:19 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-11-24 10:09 - 2015-03-05 21:39 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\IObit
2015-11-24 10:09 - 2015-03-05 21:39 - 00000000 ____D C:\Program Files (x86)\IObit
2015-11-24 10:04 - 2015-03-05 21:39 - 00000000 ____D C:\Users\Arjun\AppData\LocalLow\IObit
2015-11-24 10:04 - 2015-02-16 19:11 - 00000000 ____D C:\Users\Arjun\AppData\Roaming\Apple Computer
2015-11-23 19:10 - 2014-09-11 20:10 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 
==================== Files in the root of some directories =======
 
2015-11-21 13:22 - 2015-11-20 01:22 - 0000040 ____H () C:\Program Files (x86)\820e7fe7.tmp
2015-08-04 21:35 - 2015-08-04 21:35 - 0007609 _____ () C:\Users\Arjun\AppData\Local\Resmon.ResmonCfg
2015-12-20 00:24 - 2015-12-20 00:24 - 0450574 _____ () C:\ProgramData\1450591775.bdinstall.bin
2015-12-20 00:09 - 2015-12-20 00:09 - 0025136 _____ () C:\ProgramData\1450591778.bdinstall.bin
2015-12-14 18:39 - 2015-12-14 18:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-06-12 11:22 - 2014-06-12 11:22 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-06-12 11:18 - 2014-06-12 11:19 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-06-12 11:20 - 2014-06-12 11:21 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-06-12 11:21 - 2014-06-12 11:22 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-06-12 11:18 - 2014-06-12 11:18 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
 
Some files in TEMP:
====================
C:\Users\Arjun\AppData\Local\Temp\dllnt_dump.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-12-14 18:35
 
==================== End of FRST.txt ============================


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 22 December 2015 - 02:51 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.


start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
FF user.js: detected! => C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\user.js [2015-11-24]

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the LogFile button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleanerCx.txt (x is a number).
===

Please post the logs.
Include also the Addition.txt file that was created by the Farbar tool.

Let me know if you see an improvement.

#3 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 22 December 2015 - 05:50 PM

Sorry about not attaching Addition.txt. I thought I did, but I guess I did not. I have attached the log now.

 

I ran FRST and clicked fix. I have attached Fixlog.txt

 

I ran AdwCleaner and deleted everything that showed up after the scan. I have attached the log it gave me.

 

Attached Files



#4 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 23 December 2015 - 10:12 AM


Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.

You can manually check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

Be careful not to install malware posing as Java update!
Important read this blog.
http://blog.trendmicro.com/trendlabs-security-intelligence/malware-poses-as-an-update-for-java-0-day-fix/

Quoted from the page.
"In light of the recent events surrounding Java, users must seriously consider their use of Java. Do they really need it? If yes, make sure that users follow the steps we recommended and get the security update directly from the official oracle website." at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

How to disable Java in your browsers
http://www.infoworld.com/t/web-browsers/how-disable-java-in-your-browsers-210882


If present remove the old version(s) of Java using the Control Panel > Programs and Features applet.

Java 8 Update 11 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418011FF}) (Version: 8.0.110 - Oracle Corporation)

If you need the Java Development tool update it.
Java SE Development Kit 8 Update 11 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180110}) (Version: 8.0.110 - Oracle Corporation)

If not remove it also.
===


Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.


start

CloseProcesses:

Task: {1ACBCCD8-D4BD-45FA-A45E-D00889951003} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {40FBAEE1-2E72-4FF5-B917-78986D14B302} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {55B1E45C-6214-419B-8299-DD94F683E6D4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {61A21315-7C87-4F97-ADE4-4D773ED51E77} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {68A499D1-F822-493C-96BE-2128E21254D3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {91DC948C-3FD0-4C07-98DF-7B9D9D78E1C9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {93864E77-8071-44F9-AE0A-743F36E9D628} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {9B20155C-7780-4151-8B68-B6C068538415} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {9B3172F7-8C7E-4D8A-A6D1-812AD6B29F52} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9C566F33-48A8-4907-857D-985E888991D2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CCC0F71C-748A-4E64-8536-A0D97E7D0B29} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:9A870F8B
AlternateDataStreams: C:\Users\Arjun\Downloads\ComboFix.exe:BDU
AlternateDataStreams: C:\Users\Arjun\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Arjun\Downloads\rkill.com:BDU
AlternateDataStreams: C:\Users\Arjun\Downloads\setup (1).exe:BDU

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

This malware is hidden.
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden

I need more information to remove it.

Please run the Farbar Recovery Scan Tool. Enter Itibiti in the Search Box.
Click the Search Registry button, post the content of the Search.txt file in your next reply.

How is the computer running now?

#5 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 23 December 2015 - 11:40 AM

I need Java for Minecraft and Java JDK for coding, so instead of removing them I updated them.

 

 

Ran FRST with new fixlist.txt. I have attached that Fixlog.

 

 

I searched for itibiti. It seemed to how found some things. I have attached Search.txt.

 

Computer is slightly better,but still in the same state as before.

Attached Files


Edited by FlyingPies, 23 December 2015 - 11:46 AM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 23 December 2015 - 01:53 PM

Copy the text IN THE CODE BOX below to notepad. Save it as fixme.reg to your desktop.
Be sure the "Save as" type is set to "all files" Once you have saved Right click the .reg file and allow it to merge with the registry.
 
Windows Registry Editor Version 5.00


[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\4E30E037E0535E84D9E3349209D354D4]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4E30E037E0535E84D9E3349209D354D4\InstallProperties]
[-HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{730E03E4-350E-48E5-9D3E-4329903D454D}]
[-HKEY_USERS\S-1-5-21-658155447-1158045699-234421219-1001\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\d2acb0cd_0]
[HKEY_USERS\S-1-5-21-658155447-1158045699-234421219-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]
"Itibiti.exe"=-
You can delete the fixme.reg file when done.
===

Unhide files/folders Windows 7.
How To:
http://windows.microsoft.com/en-ca/windows/show-hidden-files#show-hidden-files=windows-7

Delete the folder in bold if found.
C:\Program Files (x86)\Itibiti Soft Phone

Restart the computer normally.

Any improvement?

#7 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 23 December 2015 - 02:24 PM

I merge the registry and used FRST to search for itibiti. The search found nothing so I assume it is gone.

 

I tried looking for C:\Program Files (x86)\Itibiti Soft Phone but I could not find it even after showing hidden folders. 

 

The computer has slightly improved but not back to its former state.



#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 24 December 2015 - 09:07 AM

Let see if this tool will find anything bad.

You will need to temporarily disable your AV program so it does not interfere.
Info on how to disable your security applications How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides.

Download Zeok tool from here

When the download appears, save to the Desktop.
On the Desktop, right-click the Zoek.exe file and select: Run as Administrator
(Give it a few seconds to appear.)

Click the Options in bold the following options are available to you.
Select only the check boxes for the options in bold.

Running Processes
Installed Programs
Startup Information
FireFox look
Chrome Look
Auto Clean


Do a Quick Scan
HijackThis log
Uninstall list
Shortcut Fix
Do a Deep Scan
Installer List
IE Default
Silent Runner
System Restore Info
Symlink Check
Reset Chrome
System Specs
Recently created
Empty Temp
Auto Clean



Now...
Close any open Browsers.
Click the Run script button, and wait. It takes a few minutes to run all the script.

When the tool finishes, the zoek-results.log is opened in Notepad.
The log is also found on the systemdrive, normally C:\
If a reboot is needed, the log is opened after the reboot.
Do
Please attach the zoek-results.log in your reply. It's probably too long to post.

How to:
In the Reply section in the bottom of the topic Click the "more reply Options" button.
attachlogs.png

Attach the file.
Select the "Choose a File" navigate to the location of the File.
Click the file you wish to Attach.

Click the Add reply button.

Make sure you Enable your AV Program.

#9 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 24 December 2015 - 09:24 PM

I ran Zoek 5 different times because my computer would keep crashing midway. I eventually was able to complete one scan. I have posted the log below 

 

After the reboot that happened after the last scan, my computer started doing a scan and repair of my C:, but I am not sure why.

 

 
Zoek.exe v5.0.0.1 Updated 24-December-2015
Tool run by Arjun on Thu 12/24/2015 at 17:16:50.10.
Microsoft Windows 10 Home 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Arjun\Desktop\zoek.exe [Scan all users]  [Checkboxes used]
 
==== Older Logs ======================
 
C:\zoek-results2015-12-24-203040.log 4652 bytes
C:\zoek-results2015-12-24-230551.log 10630 bytes
 
==== Running Processes ======================
 
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\WINDOWS\system32\dashost.exe
C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
C:\Program Files (x86)\Samsung\Remote PC\rvagent.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\System32\RuntimeBroker.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\Program Files (x86)\Samsung\Remote PC\rvagtray.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\vssvc.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\WINDOWS\System32\svchost.exe -k swprv
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\System32\StikyNot.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
C:\Users\Arjun\AppData\Local\Pushbullet\bin\pushbullet_client.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
C:\Users\Arjun\AppData\Roaming\Spotify\spotify.exe
C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Arjun\AppData\Roaming\Spotify\spotify.exe
C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Arjun\AppData\Roaming\Spotify\spotify.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Users\Arjun\Desktop\zoek.exe
C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\System32\Taskmgr.exe
C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe
C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe
C:\Program Files (x86)\Dell Product Registration\prodreg.exe
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6508.23761.0_x64__8wekyb3d8bbwe\HubTaskHost.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6515.64021.0_x64__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\Dell\DellDataVault\DellDataVault.exe
 
==== Empty Folders Check ======================
 
C:\Users\Arjun\AppData\Local\ActiveSync deleted successfully
 
==== Deleting CLSID Registry Keys ======================
 
 
==== Deleting CLSID Registry Values ======================
 
 
==== Installed Programs ======================
 
Adobe Flash Player 18 NPAPI  
Adobe Photoshop CC 2014 (32 Bit)  
Adobe Reader 8.1.0  
Adobe Shockwave Player 12.1  
Apple Application Support (32-bit)  
Apple Application Support (64-bit)  
Apple Mobile Device Support  
Apple Software Update  
Arma 2  
Arma 2: DayZ Mod  
Arma 2: Operation Arrowhead  
Battle.net  
BattlEye for OA Uninstall  
BattlEye Uninstall  
Blacklight: Retribution  
BlueStacks App Player  
BlueStacks Notification Center  
Bonjour  
Cities: Skylines  
Counter-Strike  
Counter-Strike: Condition Zero  
Counter-Strike: Condition Zero Deleted Scenes  
Counter-Strike: Global Offensive  
Counter-Strike: Source  
CyberLink LabelPrint 2.5  
CyberLink Media Suite 10  
CyberLink Media Suite Essentials  
CyberLink Power2Go 8  
CyberLink PowerDirector 10  
CyberLink PowerDVD 12  
Day of Defeat  
Day of Defeat: Source  
DayZ Commander  
Deathmatch Classic  
Dell Backup and Recovery  
Dell Data Vault  
Dell Product Registration  
Dell SupportAssist  
Dell SupportAssistAgent  
Dell System Detect  
Dell Touchpad  
Dell WLAN and Bluetooth Client Installation  
Dota 2  
Dropbox  
Evolve  
Fallout 3  
Fallout: New Vegas  
Garry's Mod  
Google Chrome  
Google Drive  
Google Update Helper  
Guns of Icarus Online  
Half-Life  
Half-Life 2  
Half-Life 2: Deathmatch  
Half-Life 2: Episode One  
Half-Life 2: Episode Two  
Half-Life 2: Lost Coast  
Half-Life Deathmatch: Source  
Half-Life: Blue Shift  
Half-Life: Opposing Force  
Half-Life: Source  
Hearthstone  
Heroes & Generals  
Heroes of the Storm  
Hi-Rez Studios Authenticate and Update Service  
HitmanPro 3.7  
HP Support Solutions Framework  
Intel® Chipset Device Software  
Intel® Management Engine Components  
Intel® ME UninstallLegacy  
Intel® Processor Graphics  
Intel® Rapid Storage Technology  
Intelr Trusted Connect Service Client  
IObit Uninstaller  
iTunes  
Java 8 Update 66  
Java 8 Update 66 (64-bit)  
Java Auto Updater  
Java SE Development Kit 8 Update 11 (64-bit)  
Java SE Development Kit 8 Update 66 (64-bit)  
League of Legends  
Left 4 Dead  
Left 4 Dead 2  
Left 4 Dead 2 Beta  
LogMeIn Hamachi  
Microsoft Games for Windows - LIVE Redistributable  
Microsoft Games for Windows Marketplace  
Microsoft Office 365 - en-us  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2005 Redistributable (x64)  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501  
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501  
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005  
Microsoft XNA Framework Redistributable 4.0 Refresh  
Mount Your Friends  
Mozilla Firefox 39.0 (x86 en-US)  
Mozilla Maintenance Service  
My Dell Client Framework  
NVIDIA PhysX  
Office 15 Click-to-Run Extensibility Component  
Office 15 Click-to-Run Licensing Component  
Office 15 Click-to-Run Localization Component  
Open Broadcaster Software  
Origin  
ORION: Prelude  
PCSX2 - Playstation 2 Emulator  
PingPlotter 4.10.1  
PocketCloud  
Portal  
Portal 2  
Prezi  
Qualcomm Atheros Bluetooth Suite (64)  
Quickset64  
Realtek Card Reader  
Realtek Ethernet Controller All-In-One Windows Driver  
Realtek High Definition Audio Driver  
Remote PC Agent  
Ricochet  
RogueKiller version 11  
RuneScape Launcher 1.2.7  
Sanctum 2  
SDFormatter  
Sid Meier's Civilization V  
Skype Click to Call  
SkypeT 7.15  
Smart Switch  
Smite  
Spotify  
Steam  
swMSM  
System Requirements Lab for Intel  
Team Fortress 2  
Team Fortress Classic  
TeamSpeak 3 Client  
Terraria  
Trove  
Unity Web Player  
Unturned  
War Thunder  
WinPcap 4.1.3  
WinRAR 5.11 (32-bit)  
 
==== Deleting Services ======================
 
 
==== FireFox Fix ======================
 
ProfilePath: C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default
 
user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 1);
---- FireFox user.js and prefs.js backups ---- 
 
prefs_20151224_0552_.backup
 
==== Deleting Files \ Folders ======================
 
C:\PROGRA~3\ProductData deleted
C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\extensions\abs@avira.com deleted
C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default\extensions\safesearchplus@avira.com deleted
"C:\Users\Arjun\AppData\LocalLow\Unity" not deleted
 
==== Startup Registry Enabled ======================
 
[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"
 
[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"
 
[HKEY_USERS\S-1-5-21-658155447-1158045699-234421219-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"Spotify Web Helper"="C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"
"OneDrive"="C:\Users\Arjun\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Pushbullet"="C:\Program Files (x86)\Pushbullet\pushbullet.exe -show false"
"Advanced SystemCare 9"="C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe /Auto"
"WTFast Tray"="C:\Program Files (x86)\WTFast\WTFast.exe trayonly"
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteView5 Tray"="C:\Program Files (x86)\Samsung\Remote PC\rvagtray.exe /background"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"IObit Malware Fighter"="C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart"
"LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"Spotify Web Helper"="C:\Users\Arjun\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"
"OneDrive"="C:\Users\Arjun\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Pushbullet"="C:\Program Files (x86)\Pushbullet\pushbullet.exe -show false"
"Advanced SystemCare 9"="C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe /Auto"
"WTFast Tray"="C:\Program Files (x86)\WTFast\WTFast.exe trayonly"
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
 
==== Startup Registry Enabled x64 ======================
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX5REC"
"MouseDriver"="TiltWheelMouse.exe"
"QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
 
==== Startup Registry Disabled x64 ======================
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AERTFilters]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AtherosSvc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\cphs]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DellProdRegManager]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\IAStorDataMgrSvc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel® Capability Licensing Service Interface]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel® Capability Licensing Service TCP IP Interface]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\jhi_service]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LMS]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\My Dell Client Framework]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RichVideo]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RtkAudioService]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SftService]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Steam Client Service]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WysePocketCloud]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WyseRemoteAccess]
 
 
==== Task Scheduler Jobs ======================
 
C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/20/2015 05:48 PM]
C:\WINDOWS\tasks\ASC9_SkipUac_Arjun.job --a-------- C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [11/10/2015 07:36 PM]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/29/2015 08:12 PM]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/29/2015 08:12 PM]
C:\WINDOWS\tasks\Uninstaller_SkipUac_Arjun.job --a-------- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [11/18/2015 01:39 PM]
 
==== Other Scheduled Tasks ======================
 
"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\ASC9_SkipUac_Arjun" [C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac]
"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\WINDOWS\SysNative\tasks\CreateExplorerShellUnelevatedTask" [C:\WINDOWS\explorer.exe]
"C:\WINDOWS\SysNative\tasks\Dell SupportAssistAgent AutoUpdate" [C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe]
"C:\WINDOWS\SysNative\tasks\Driver Booster Scheduler" [C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe]
"C:\WINDOWS\SysNative\tasks\Driver Booster SkipUAC (Arjun)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\PCDEventLauncherTask" ["C:\Program Files\Dell\SupportAssist\sessionchecker.exe"]
"C:\WINDOWS\SysNative\tasks\PCDoctorBackgroundMonitorTask" ["C:\Program Files\Dell\SupportAssist\uaclauncher.exe"]
"C:\WINDOWS\SysNative\tasks\PocketCloud" [C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe]
"C:\WINDOWS\SysNative\tasks\PocketCloudUpdater" [C:\Program]
"C:\WINDOWS\SysNative\tasks\PocketCloudVirtualChannel" [C:\Program Files (x86)\Wyse\PocketCloud\WPCRDPVirtualChannelServer.exe]
"C:\WINDOWS\SysNative\tasks\RtHDVBg_PushButton" ["C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe"]
"C:\WINDOWS\SysNative\tasks\SmartDefrag4_Startup" [C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe]
"C:\WINDOWS\SysNative\tasks\SmartDefrag4_Update" [C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" ["C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"]
"C:\WINDOWS\SysNative\tasks\SystemToolsDailyTest" ["uaclauncher.exe"]
"C:\WINDOWS\SysNative\tasks\Uninstaller_SkipUac_Arjun" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{A4DBC9EF-6DF4-47C6-A3EB-52CDE13A12DA}" [C:\Windows\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Dell\Dell Product Registration" [C:\Program Files (x86)\Dell Product Registration\prodreg.exe]
 
==== Firefox Extensions ======================
 
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
==== Firefox Plugins ======================
 
Profilepath: C:\Users\Arjun\AppData\Roaming\Mozilla\Firefox\Profiles\1ex5qm2s.default
18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013
C92C7CA0E78F327951229F98BAEA15DB - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll - Shockwave for Director / Shockwave for Director
FD82108FD60B63010325D9AF6F00AF99 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll - Shockwave Flash
 
 
==== Chromium Look ======================
 
Google Chrome Version: 46.0.2490.86
 
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
khjilmcjipkeokomeekfnhkpbnhmgaje - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[10/12/2015 08:31 AM]
 
Google Slides - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Slinky Elegant - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln
Pushbullet - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd
uBlock₀ - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm
Google Search - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
ZenMate Security Privacy Unblock VPN - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme
Google Sheets - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Print or PDF with CleanPrint - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklmmmdcofimkjmfjdnobmmgmefbapkf
Avira Browser Safety - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk
Google Docs Offline - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Bookmark Manager - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Reddit Enhancement Suite - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb
Avira SafeSearch Plus - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje
Agario Ex - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflicjopopjcpojfoefhbpdncmjbcbin
Chrome Web Store Payments - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Browsec - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh
Gmail - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
 
==== Set IE to Default ======================
 
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{94823592-7F1B-4322-AC92-502D3CABCF75}"
 
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
 
==== All HKLM and HKCU SearchScopes ======================
 
HKLM\SearchScopes "DefaultScope"="{94823592-7F1B-4322-AC92-502D3CABCF75}"
HKLM\SearchScopes\{94823592-7F1B-4322-AC92-502D3CABCF75} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{94823592-7F1B-4322-AC92-502D3CABCF75}"
HKLM\Wow6432Node\SearchScopes\{94823592-7F1B-4322-AC92-502D3CABCF75} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{94823592-7F1B-4322-AC92-502D3CABCF75} - No_Url_Value
 
==== Deleting Registry Keys ======================
 
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
 
==== Empty IE Cache ======================
 
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\IHPBYFR9 will be deleted at reboot
C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\LKJBPQ6G will be deleted at reboot
C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\MRUX02V7 will be deleted at reboot
C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\UPGXX4BN will be deleted at reboot
 
==== Empty FireFox Cache ======================
 
No FireFox Profiles found
 
==== Empty Chrome Cache ======================
 
C:\Users\Arjun\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
 
==== Empty All Flash Cache ======================
 
No Flash Cache Found
 
==== Empty All Java Cache ======================
 
Java Cache cleared successfully
 
==== C:\zoek_backup content ======================
 
C:\zoek_backup (files=3689 folders=725 1290114356 bytes)
 
==== Empty Temp Folders ======================
 
C:\Users\Arjun\AppData\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
 
==== After Reboot ======================
 
==== Empty Temp Folders ======================
 
C:\WINDOWS\Temp successfully emptied
C:\Users\Arjun\AppData\Local\Temp successfully emptied
 
==== Empty Recycle Bin ======================
 
C:\$RECYCLE.BIN successfully emptied
 
==== Deleting Files / Folders ======================
 
"C:\Users\Arjun\AppData\LocalLow\Unity"  not found
"C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\IHPBYFR9" not found
"C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\LKJBPQ6G" not found
"C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\MRUX02V7" not found
"C:\Users\Arjun\AppData\Local\Microsoft\Windows\INetCache\IE\UPGXX4BN" not found
 
==== EOF on Thu 12/24/2015 at 20:09:21.84 ======================
 


#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 25 December 2015 - 10:34 AM

Temporarily disable your AV program so it does not interfere.
Info on how to disable your security applications How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides.


Right-click the Zoek.exe file and select: Run as Administrator
(Give it a few seconds to appear.)

Next, copy/paste the entire script inside the code box below to the input field of Zoek:
flliilndjeohchalpbbcdekjklbdgfkk; chr 
khjilmcjipkeokomeekfnhkpbnhmgaje; chr 
omghfjlpggmjjaagoclmmobgdodcjboh; chr 
Browsec - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh

Now...
Close any open Browsers.
Click the Run script button, and wait. It takes a few minutes to run all the script.

When the tool finishes, the zoek-results.log is opened in Notepad.
The log is also found on the systemdrive, normally C:\
If a reboot is needed, the log is opened after the reboot.

Please attach the zoek-results.log in your reply.

Also, please provide an update on how the computer is behaving after running the above script.

How is the computer running now?

#11 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 25 December 2015 - 12:58 PM

I ran the script in Zoek. I posted the log below. Nothing really happened after running the log.

For some reason I can't attach logs anymore, it says upload skipped.

 

I tried to play a game of CS:GO, but it was still very laggy. After about 30 minutes I tried again and it had gotten a little better, but it was not the same as before I had the virus

 

 
Zoek.exe v5.0.0.1 Updated 24-December-2015
Tool run by Arjun on Fri 12/25/2015 at 11:20:58.37.
Microsoft Windows 10 Home 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Arjun\Desktop\zoek.exe [Scan all users] [Script inserted] 
 
==== System Restore Info ======================
 
12/25/2015 11:23:04 AM Zoek.exe System Restore Point Created Successfully.
 
==== C:\zoek_backup content ======================
 
C:\zoek_backup (files=3689 folders=725 1290114356 bytes)
 
==== EOF on Fri 12/25/2015 at 11:23:50.97 ======================
 


#12 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 26 December 2015 - 08:49 AM

Please run the Farbar tool and post a fresh FRST log for my review.

#13 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 26 December 2015 - 12:52 PM

I have attached the FRST log.

Attached Files

  • Attached File  FRST.txt   116.29KB   3 downloads


#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,169 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:31 PM

Posted 27 December 2015 - 08:34 AM

Please disable this Chrome Extension and test your speed.

Browsec - Arjun\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh

===

Keep me posted.

#15 FlyingPies

FlyingPies
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 27 December 2015 - 05:23 PM

I disabled the extension and it is still the same.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users