Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Suspected root kit or malware or both, Please Help!!!


  • This topic is locked This topic is locked
5 replies to this topic

#1 momasboi

momasboi

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:03:08 AM

Posted 18 December 2016 - 07:03 PM

I ran the farbar recovery scanner but I am not sure how to interpret it, I also used GMER and it did discover a rootkit in a hidden folder that I couldn't delete, here is the farbar results, Please if you can help me I would appreciate it. I definitely dont need my computer to become inoperable nor do I want someone stealing any of my info:
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by momasboi34 (18-12-2016 15:50:24)
Running from C:\Users\momasboi34\Downloads
Windows 8.1 (Update) (X64) (2016-02-06 02:50:21)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-618084492-1320085081-182099660-500 - Administrator - Disabled)
Guest (S-1-5-21-618084492-1320085081-182099660-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-618084492-1320085081-182099660-1004 - Limited - Enabled)
momasboi34 (S-1-5-21-618084492-1320085081-182099660-1002 - Administrator - Enabled) => C:\Users\momasboi34
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Panda Global Protection (Disabled - Up to date) {46AEFD02-ACA3-E038-1FA5-4A15EFD361E0}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Global Protection (Disabled - Up to date) {FDCF1CE6-8A99-EFB6-2515-716794542B5D}
FW: Panda Firewall (Enabled) {7E957C27-E6CC-E160-34FA-E3201100269B}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Catalyst Control Center Next Localization BR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CutePDF Writer 3.1 (HKLM\...\CutePDF Writer Installation) (Version:  3.1 - Acro Software Inc.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6.5104 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.9.5009 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3906 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Dragon Notes en-US (HKLM-x32\...\{C438C1D0-A46C-4BFA-AFCD-11261DE9CCE0}) (Version: 01.00.100.011 - Nuance Communications Inc.)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.2 (HKLM-x32\...\{412F6426-A3C7-11E3-8A71-00163E98E7D6}) (Version: 5.2.0.2951 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{F90A86C9-7779-47DD-AC06-8EE832C55F55}) (Version: 6.0.18.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{ADE2F6A7-E7BD-4955-BD66-30903B223DDF}) (Version: 2.20.41 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{082B1425-0F24-43FA-9B64-E8F617B0AD3B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version:  - )
HP LaserJet Professional M1210 MFP Series Fax Installer (HKLM\...\{E65099C4-9110-4C31-BD03-5C17EFB5FE92}) (Version: 1.1.0 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.39 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.3.50.9 - HP)
HP Support Solutions Framework (HKLM-x32\...\{5F084DD8-AF2C-4004-9C92-820C32E4BD55}) (Version: 12.5.32.203 - HP)
HP System Event Utility (HKLM-x32\...\{D17A3B70-B75E-4C49-83D6-C17DDF65B35F}) (Version: 1.3.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{B7B82520-8ECE-4743-BFD7-93B16C64B277}) (Version: 2.4.2 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.39 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.39 - Softex Inc.) Hidden
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{C058FC5D-565F-4360-A562-0527A3D993DC}) (Version: 2.3.2211 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Mozilla Firefox 47.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 en-US)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
OEM Application Profile (HKLM-x32\...\{315F1A48-D883-B234-7C79-15873574ACC1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security)
Panda Devices Agent (x32 Version: 1.03.08 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.08.00 - Panda Security) Hidden
Panda Global Protection (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 17.00.01.0000 - Panda Security)
Panda Global Protection (Version: 8.31.00 - Panda Security) Hidden
Panda Safe Web (HKLM-x32\...\pandasecuritytb) (Version: 4.3.1.20 - Panda Security and Visicom Media Inc.)
Panda USB Vaccine 1.0.1.16 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pinger (HKLM-x32\...\Pinger 1.4.0.1) (Version: 1.4.0.1 - Pinger Inc.)
Pinger (x32 Version: 1.4.0.1 - Pinger Inc.) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7231 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.38 - REALTEK Semiconductor Corp.)
Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Solitaire Mystery Four Seasons (x32 Version: 3.0.2.51 - WildTangent) Hidden
Sparkle 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1230 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.7.8 - Synaptics Incorporated)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Total Tester A+ 90x AIO Demo v6.2 (HKLM-x32\...\{5292BAFC-874C-4B42-B3D0-8B859A0605A4}) (Version: 12.6.2 - Total Seminars, LLC)
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
Viking Saga (x32 Version: 3.0.2.48 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Windows Deployment Tools (HKLM-x32\...\{BFC9778E-9765-C94C-C082-C2514F8DEB9B}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 (HKLM-x32\...\{F89D69CA-6EE1-E037-DD3B-08CDDE1BED1C}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{85F4ACB1-E7DC-C3C6-F4FD-BB936DF2695E}) (Version: 8.59.25584 - Microsoft)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
Wireshark 2.2.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.3 - The Wireshark developer community, hxxps://www.wireshark.org)
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-618084492-1320085081-182099660-1002_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\momasboi34\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {07D7622F-AF37-46F0-A91B-BF882C73AE19} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {116748FC-D2AE-4929-9E28-61383661946F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {11E21AFF-096A-40CA-93CF-BC1C5CA907BE} - \Start OPBHOBroker -> No File <==== ATTENTION
Task: {17AA4EFD-82EF-425D-8504-C69A28B5B5D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-11-29] (HP Inc.)
Task: {2081C6C2-029D-4A88-802E-0D116762E34A} - \PandaUSBVaccine -> No File <==== ATTENTION
Task: {33851C23-2673-454E-8BE5-C99DAD83B74B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-31] (HP Inc.)
Task: {4798E61C-7099-4BC3-B81C-E9BB28E44EEF} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {481DE482-8B8B-4715-854B-D67E007AA1BC} - \Start OPBHOBrokerDesktop -> No File <==== ATTENTION
Task: {4ACE8C42-C15E-455B-8AB0-7711A084DFCB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {4E60823A-E349-429E-B297-5C5662D8AEB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {5257711E-AC9B-4A14-82B8-BD62F185FC0A} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {590801FA-A08D-4115-BC7F-6EADF616EC89} - \SweetLabs App Platform -> No File <==== ATTENTION
Task: {5BB9C0C2-2D22-4AE9-BB6C-AC5F19B415DE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {69680FC2-5622-4C2D-8999-DD5EA61C11A6} - \HPCeeScheduleForMOMASBOI$ -> No File <==== ATTENTION
Task: {717B0824-BEC6-4AA4-8041-139887F2937A} - System32\Tasks\SUPERAntiSpyware Scheduled Task 3ce41395-bbb7-4a7d-8c49-cd4d66d120ca => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {7582D820-3D0A-405A-B4F1-103C213866CF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {802585D2-F54B-4054-A720-B1F867A40099} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {81668DD1-76B5-40A5-84D4-337E58352D01} - \Start SimplePass -> No File <==== ATTENTION
Task: {85BF75C6-347A-42A3-9325-6C9019626F2C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {92F739D0-295C-4FF1-8523-F7B041E5A95E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-31] (HP Inc.)
Task: {9B58D1F0-AC12-49F4-A58F-C91A27CD73DC} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {A13FC215-FDC7-4A28-A29E-8178FC80186F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-14] (Adobe Systems Incorporated)
Task: {A2090239-2279-4A14-928F-EA9E6102C589} - \Microsoft OneDrive Auto Update Task-S-1-5-21-618084492-1320085081-182099660-1002 -> No File <==== ATTENTION
Task: {AA33B1AE-B9D9-4AC0-95A4-638048CCDC50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {ADA3D077-C5E4-4BE9-AE27-2126C466878C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {B2D14DCD-F3CF-497C-9FA7-EFBD9A6B9600} - System32\Tasks\HPCeeScheduleFormomasboi34 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-01-22] (Hewlett-Packard)
Task: {B769BBDA-70A4-4076-A3D3-11E5F10A314B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {C3D08294-B4FE-463B-9DAA-F9CC80FF7D9A} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {CFE6221C-38FB-4622-97AE-58C0FAE2F7BD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {D10748E0-F602-466C-BC53-222AD397D188} - \YCMServiceAgent -> No File <==== ATTENTION
Task: {D3045CA2-FE90-4C31-B9DB-7B062034F6B9} - \Optimize Start Menu Cache Files-S-1-5-21-618084492-1320085081-182099660-500 -> No File <==== ATTENTION
Task: {DAAC3C3F-3169-4128-9C36-165EE86550A5} - System32\Tasks\SUPERAntiSpyware Scheduled Task a108691d-f688-442a-995c-36f912db7f1b => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {EB290E30-3368-42AE-BC32-2785656C2AAF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {F0D7F1D5-B0D0-4646-AFEF-908D38E4416B} - \avast! Emergency Update -> No File <==== ATTENTION
Task: {F2D2C433-431C-4F0A-83B4-F29CBEE2D934} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {FA2DDF64-9601-4099-932F-396A1DB34305} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2014-05-19] (Hewlett-Packard Development Company, L.P.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForMOMASBOI$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleFormomasboi34.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3ce41395-bbb7-4a7d-8c49-cd4d66d120ca.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a108691d-f688-442a-995c-36f912db7f1b.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
ShortcutWithArgument: C:\Users\momasboi34\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AmazonShopping.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.amazon.com/gp/bit/amazonbookmark.html?tag=hp2-desktop-us-20&partner=HP
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-01-30 19:07 - 2015-01-30 19:07 - 02169344 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 00035840 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2015-01-30 19:16 - 2015-01-30 19:16 - 00431696 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2015-01-30 19:16 - 2015-01-30 19:16 - 00746064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2016-06-29 17:08 - 2016-01-22 15:57 - 00089008 _____ () C:\WINDOWS\System32\cpwmon64.dll
2016-02-08 19:30 - 2010-03-31 11:51 - 00407040 _____ () C:\WINDOWS\System32\HPM1210LM.DLL
2016-02-08 19:30 - 2010-03-31 11:51 - 00074240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2016-02-08 19:30 - 2010-03-31 11:51 - 03087872 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\hpm1210su.dll
2016-02-08 19:30 - 2010-03-31 12:17 - 01038336 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\HPM1210GC.dll
2016-08-25 23:23 - 2016-10-30 08:12 - 08924864 _____ () C:\Program Files\Microsoft Office\root\Office16\1033\GrooveIntlResource.dll
2016-12-16 19:26 - 2016-12-16 19:26 - 01678560 _____ () C:\Users\momasboi34\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2014-03-15 02:21 - 2014-03-15 02:21 - 00140288 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2014-03-15 02:20 - 2014-03-15 02:20 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 17:17 - 2016-10-05 17:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-30 19:09 - 2015-01-30 19:09 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2016-02-08 19:30 - 2010-03-31 11:51 - 00363008 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\hpm1210sd.dll
2015-12-15 09:17 - 2015-12-15 09:17 - 00618544 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 00387984 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\fl_core.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 01165712 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_asr.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 00199056 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_base.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 01132944 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_pron.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 00035216 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_platform.dll
2014-11-26 04:26 - 2013-02-01 11:16 - 00229264 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\sdxg.dll
2014-11-26 04:26 - 2013-02-01 11:15 - 00027136 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\WASAPIResamplingStreamCOMServer.dll
2016-12-15 11:03 - 2016-12-07 23:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 11:03 - 2016-12-07 23:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-12-12 15:01 - 2016-12-12 15:01 - 17833560 _____ () C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.186\pepflashplayer.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 05:25 - 2016-06-14 15:49 - 00000830 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-618084492-1320085081-182099660-1002\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AccelerometerSysTrayApplet"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [TCP Query User{0D3E762A-4CE2-47DE-8938-6BBE6EEDDA0A}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{68FD4E19-2DED-4CBF-9DD9-6744A9886F0C}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{92C8531F-ABEE-4262-AF08-5FE48EE9041E}C:\program files (x86)\java\jre1.8.0_111\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_111\bin\jp2launcher.exe
FirewallRules: [UDP Query User{3C36BE8C-C554-4DA0-9538-9A9098E2BBD7}C:\program files (x86)\java\jre1.8.0_111\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_111\bin\jp2launcher.exe
FirewallRules: [TCP Query User{0231A77D-9B7D-4300-91E8-CCF97DBC33FE}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [UDP Query User{DEB6D642-81E9-4022-83EE-54E534433F15}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
 
==================== Restore Points =========================
 
30-11-2016 12:21:55 Avira System Speedup 3.0.0
07-12-2016 16:27:38 Scheduled Checkpoint
13-12-2016 21:01:44 Removed Oracle VM VirtualBox 5.0.26
17-12-2016 13:36:10 Installed Microsoft Baseline Security Analyzer 2.3
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/18/2016 03:24:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 1pf9sr1e.exe, version: 2.2.19882.0, time stamp: 0x56e2cdca
Faulting module name: 1pf9sr1e.exe, version: 2.2.19882.0, time stamp: 0x56e2cdca
Exception code: 0xc0000005
Fault offset: 0x000136f5
Faulting process id: 0xc62c
Faulting application start time: 0x01d2597e53c4ed8c
Faulting application path: C:\Users\momasboi34\Downloads\1pf9sr1e.exe
Faulting module path: C:\Users\momasboi34\Downloads\1pf9sr1e.exe
Report Id: 2b010859-c579-11e6-82b5-3863bbaf5b15
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/17/2016 06:04:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PCTools.exe, version: 1.4.0.6, time stamp: 0x5638b533
Faulting module name: ntdll.dll, version: 6.3.9600.18233, time stamp: 0x56bb4e1d
Exception code: 0xc0000005
Fault offset: 0x000496a0
Faulting process id: 0x3030
Faulting application start time: 0x01d258d307be74fd
Faulting application path: C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCTools.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 47c8e2ac-c4c6-11e6-82b5-3863bbaf5b15
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/17/2016 01:14:15 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/17/2016 01:14:15 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
 
Error: (12/17/2016 12:57:08 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.
 
Details:
Could not query the status of the EventSystem service.
 
System Error:
A system shutdown is in progress.
.
 
Error: (12/17/2016 11:39:11 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/17/2016 11:39:11 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
 
Error: (12/17/2016 11:39:11 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/17/2016 11:39:11 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/17/2016 11:39:11 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "ESENT" in DLL "C:\WINDOWS\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
 
System errors:
=============
Error: (12/18/2016 09:05:52 AM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.
 
Error: (12/18/2016 09:05:22 AM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.
 
Error: (12/18/2016 08:56:55 AM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.
 
Error: (12/18/2016 08:56:25 AM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.
 
Error: (12/17/2016 02:00:23 PM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.
 
Error: (12/17/2016 01:59:53 PM) (Source: DCOM) (EventID: 10010) (User: Momasboi)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.
 
Error: (12/17/2016 01:22:54 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.
 
Error: (12/17/2016 01:20:54 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.
 
Error: (12/17/2016 01:16:47 PM) (Source: DCOM) (EventID: 10005) (User: Momasboi)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}
 
Error: (12/17/2016 01:16:23 PM) (Source: DCOM) (EventID: 10005) (User: Momasboi)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}
 
 
CodeIntegrity:
===================================
  Date: 2016-11-21 14:47:30.976
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-11-21 14:09:29.053
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-11-21 13:56:06.909
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-11-21 12:24:59.097
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-11-21 11:08:14.332
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-11-17 22:45:16.544
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-27 10:26:26.824
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume4\Program Files\HP\HP LaserJet M1210 MFP Series\SendFax.exe that did not meet the Store signing level requirements.
 
  Date: 2016-02-10 14:03:57.136
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume4\Program Files\HP\HP LaserJet M1210 MFP Series\SendFax.exe that did not meet the Store signing level requirements.
 
  Date: 2016-02-10 14:00:47.728
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume4\Program Files\HP\HP LaserJet M1210 MFP Series\SendFax.exe that did not meet the Store signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: AMD A8-6410 APU with AMD Radeon R5 Graphics 
Percentage of memory in use: 69%
Total physical RAM: 5055.49 MB
Available physical RAM: 1521.3 MB
Total Virtual: 6719.49 MB
Available Virtual: 2684.97 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:905.34 GB) (Free:811.3 GB) NTFS
Drive d: () (Fixed) (Total:24.33 GB) (Free:24.23 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 10745B49)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

Edited by Orange Blossom, 18 December 2016 - 07:10 PM.
Moved to log forum. ~ OB


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:08 AM

Posted 19 December 2016 - 11:52 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please post the FRST log created by the Farbar program.

I will review both logs.

Wait for further instructions.

#3 momasboi

momasboi
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:03:08 AM

Posted 19 December 2016 - 12:58 PM

Hi nasdaq,

Thank you for your reply the following is the FRST log

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2016
Ran by momasboi34 (administrator) on MOMASBOI (19-12-2016 09:52:43)
Running from C:\Users\momasboi34\Downloads
Loaded Profiles: momasboi34 (Available Profiles: momasboi34)
Platform: Windows 8.1 (Update) (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Visicom Media Inc.) C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe
(HP) C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\momasboi34\Downloads\FRST64 (3).exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2016-02-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2818800 2014-04-21] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6626696 2016-07-18] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1868472 2016-09-30] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-28] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [654088 2015-02-17] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [109824 2016-08-04] (Panda Security, S.L.)
HKLM\...\Policies\Explorer: [MemCheckBoxInRunDlg] 0
HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [884920 2016-09-30] (Adobe Systems Incorporated)
HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7943072 2016-12-06] (SUPERAntiSpyware)
HKU\S-1-5-21-618084492-1320085081-182099660-1002\...\MountPoints2: {3a8cc14e-cc7c-11e5-825d-3863bbaf5b15} - "F:\SISetup.exe" 
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
GroupPolicy: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{87D69986-4CE6-4573-B079-23172E76F8CE}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{947321BD-443A-4AEB-9B81-539215CB9E4E}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPNOT14/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPNOT14/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
HKU\S-1-5-21-618084492-1320085081-182099660-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
HKU\S-1-5-21-618084492-1320085081-182099660-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
HKU\S-1-5-21-618084492-1320085081-182099660-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://js.redirect.hp.com/jumpstation?bd=all&c=143&locale=ww_ww&pf=cnnb&s=ieHPtab&tp=iehome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {754E1FF1-69E1-4335-8347-D2C60F953F1C} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {754E1FF1-69E1-4335-8347-D2C60F953F1C} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-618084492-1320085081-182099660-1002 -> {754E1FF1-69E1-4335-8347-D2C60F953F1C} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-618084492-1320085081-182099660-1002 -> {BEFC005A-4A0B-44AF-BA67-75CDF8F2A010} URL = hxxps://search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-10-30] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
BHO: No Name -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> No File
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-30] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-10-30] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-29] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
BHO-x32: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll => No File
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-29] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-05-03] (Adobe Systems Incorporated)
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} hxxps://files.pcpitstop.com/cab/pcmatic.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: aed6r1j0.default
FF ProfilePath: C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default [2016-12-19]
FF DefaultSearchEngine.US: Mozilla\Firefox\Profiles\aed6r1j0.default -> Google
FF Extension: (No Name) - C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\Extensions\abs@avira.com [2016-11-17]
FF Extension: (Firefox Hotfix) - C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-03]
FF Extension: (No Name) - C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [not found]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-06-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-14] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-30] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-10-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default [2016-12-19]
CHR Extension: (Google Slides) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-07]
CHR Extension: (Google Docs) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-07]
CHR Extension: (Google Drive) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-07]
CHR Extension: (YouTube) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-07]
CHR Extension: (Ebates Cash Back) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi [2016-11-15]
CHR Extension: (Google Search) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-07]
CHR Extension: (Adobe Acrobat) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-09-09]
CHR Extension: (Panda Safe Web) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2016-12-14]
CHR Extension: (Google Sheets) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-07]
CHR Extension: (Avira Browser Safety) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-11-17]
CHR Extension: (Google Docs Offline) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (HP Network Check Launcher) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2016-10-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Gmail) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-07]
CHR Extension: (Chrome Media Router) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhfhojbhbnajajgihpicejdalbjlpcep] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eoalfhodgifhbkgmbbdafcihjpdldpll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [okmhneofinpilciglijihehjpaegledb] - <no Path/update_url>
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [140288 2014-03-15] () [File not signed]
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2218712 2016-12-13] (Adobe Systems, Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-03-15] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2016-10-30] (Microsoft Corporation)
R2 DACoreService; C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe [411024 2013-02-01] (Nuance Communications, Inc.)
R2 HPM1210RcvFaxSrvc; C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe [362296 2010-05-11] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [608520 2015-02-17] (Hewlett-Packard Development Company, L.P.)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [153096 2016-08-04] (Panda Security, S.L.)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [103424 2015-01-30] (Softex Inc.) [File not signed]
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
R2 panda_url_filtering; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [287752 2015-11-06] (Visicom Media Inc.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48584 2016-08-04] (Panda Security, S.L.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [191728 2014-04-21] (Synaptics Incorporated)
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [59960 2016-11-22] (Advanced Micro Devices, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, INC.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-22] (Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [103840 2016-11-22] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [262560 2016-11-22] (Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [110096 2016-05-04] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-24] (Samsung Electronics Co., Ltd.)
S3 HP1210FAX; C:\WINDOWS\System32\Drivers\HPM1210FAX.sys [16384 2011-04-15] ()
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2011-04-15] (Marvell Semiconductor, Inc.)
R1 NNSALPC; C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys [94456 2015-12-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\System32\DRIVERS\NNSHttp.sys [201464 2015-12-04] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\System32\DRIVERS\NNSHttps.sys [110840 2015-12-04] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\System32\DRIVERS\NNSIds.sys [110840 2015-12-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [58616 2015-06-19] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\System32\DRIVERS\NNSPicc.sys [103160 2015-12-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\System32\DRIVERS\NNSPihsw.sys [85712 2016-03-14] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\System32\DRIVERS\NNSPop3.sys [124152 2015-12-04] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\System32\DRIVERS\NNSProt.sys [300280 2015-12-04] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\System32\DRIVERS\NNSPrv.sys [177424 2016-02-17] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys [113400 2015-12-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\System32\DRIVERS\NNSStrm.sys [264976 2016-02-17] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys [106232 2015-12-04] (Panda Security, S.L.)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 panda_url_filteringd; C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc.)
R2 PSINAflt; C:\WINDOWS\System32\DRIVERS\PSINAflt.sys [171792 2016-08-04] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [127248 2016-08-04] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\System32\DRIVERS\psinknc.sys [205072 2016-08-04] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [131344 2016-08-04] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\System32\DRIVERS\PSINProt.sys [144656 2016-08-04] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\System32\DRIVERS\PSINReg.sys [114960 2016-08-04] (Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [70360 2016-08-08] (Panda Security, S.L.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-03] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [6168584 2016-10-03] (Realtek Semiconductor Corporation                           )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [30448 2014-04-21] (Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [31472 2014-04-21] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-24] (Samsung Electronics Co., Ltd.)
S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [119712 2016-07-18] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-24] (HP)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-24] (HP)
S3 xb1usb; C:\WINDOWS\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)
U0 aswVmm; no ImagePath
 
========================== Drivers MD5 =======================
 
C:\WINDOWS\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1
C:\WINDOWS\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1
C:\WINDOWS\system32\DRIVERS\Accelerometer.sys F39180029723D7779C80360F9E255709
C:\WINDOWS\System32\drivers\ACPI.sys E796AE43DDD1844281DB4D57294D17C0
C:\WINDOWS\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813
C:\WINDOWS\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F
C:\WINDOWS\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65
C:\WINDOWS\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7
C:\WINDOWS\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD
C:\WINDOWS\system32\drivers\afd.sys A460C3AF3755A2A79A3C8EFE72E147B5
C:\WINDOWS\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8
C:\WINDOWS\System32\DRIVERS\ahcache.sys FE14D249D39368CA62D8DA6BC94AC694
C:\WINDOWS\System32\drivers\AmdAS4.sys C3E8F88B4D196110673DA03E2E95D83B
C:\WINDOWS\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729
C:\WINDOWS\System32\drivers\amdkmafd.sys F2FF8C1B41B3784EDBD5C6D5397F403C
C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys 767D187F2F0E0C3541BBDF430C973E99
C:\WINDOWS\system32\DRIVERS\atikmdag.sys 34F266993B3574F4FDD3C6031D9AFFAE
C:\WINDOWS\system32\DRIVERS\atikmpag.sys 470FD5E2BF0418507014FA8AA58C6FFC
C:\WINDOWS\System32\drivers\amdkmpfd.sys C04F35935BF6274F5593B78C7B295760
C:\WINDOWS\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3
C:\WINDOWS\system32\DRIVERS\amdpsp.sys E50A2C76B8516CDEF6F6E32078DDD8A3
C:\WINDOWS\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2
C:\WINDOWS\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E
C:\WINDOWS\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50
C:\WINDOWS\System32\drivers\amd_sata.sys 5EA556BC3AECA6ADD398B13D898C52D3
C:\WINDOWS\System32\drivers\amd_xata.sys B5A18CB1C6D7DD5C5393E7A79CE79826
C:\WINDOWS\system32\drivers\appid.sys 415DD71628795197F7AFC176CBADC74E
C:\WINDOWS\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B
C:\WINDOWS\system32\DRIVERS\asyncmac.sys 3DB7721F06BC2FEDB25029EA23AB27DA
C:\WINDOWS\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD
C:\WINDOWS\system32\drivers\AtihdWB6.sys D8BD821A6F489A889619D7F92C430C98
C:\WINDOWS\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF
C:\WINDOWS\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68
C:\WINDOWS\System32\drivers\BasicRender.sys 38A82F4EE8C416A6744B6D30381ED768
C:\WINDOWS\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21
C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6
C:\WINDOWS\System32\DRIVERS\bowser.sys 4938A9236300A356F97E378491EE4844
C:\WINDOWS\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7
C:\WINDOWS\System32\drivers\bthhfenum.sys 272A62B660A48AEF366F8A1836CED19F
C:\WINDOWS\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07
C:\WINDOWS\System32\drivers\bthmodem.sys 66B791F6B11DC4303DD18A224A501542
C:\WINDOWS\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9
C:\WINDOWS\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D
C:\WINDOWS\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B
C:\WINDOWS\System32\drivers\CLFS.sys 9DA497AEAF35AA7BF7710132FC2A9906
C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys 5C646CAC91E086F7FF53C7F2E857F263
C:\WINDOWS\system32\DRIVERS\clwvd.sys 9731DAFDC7B690B2C7752FDFF045BFD8
C:\WINDOWS\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB
C:\WINDOWS\System32\Drivers\cng.sys EFC79D3224D19FD926FFEA0A24729FEF
C:\WINDOWS\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905
C:\WINDOWS\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2
C:\WINDOWS\System32\drivers\dam.sys 389C998C64319CD97625B0550E52ECFA
C:\WINDOWS\System32\Drivers\dfsc.sys FBFF94FC1FE0699A6BC5ACE270AB9EA1
C:\WINDOWS\system32\DRIVERS\ssudbus.sys D722BC26F7431A4DA9A183E56CA9FEE3
C:\WINDOWS\System32\drivers\disk.sys 8B1E62881D5AC68E673CD94B136B34AC
C:\WINDOWS\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F
C:\WINDOWS\system32\drivers\drmkaud.sys 00C594D5A1DBD22AD8B2902B9F6EFF94
C:\WINDOWS\System32\drivers\dxgkrnl.sys F74B839FA0F4E6060CA1DA6B8DA17941
C:\WINDOWS\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D
C:\WINDOWS\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9
C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B
C:\WINDOWS\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3
C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4
C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B
C:\WINDOWS\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B
C:\WINDOWS\System32\drivers\fileinfo.sys BCFD8B149B3ADF92D0DB1E909CAF0265
C:\WINDOWS\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF
C:\WINDOWS\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A
C:\WINDOWS\System32\drivers\fltmgr.sys C1FB505A73FA2E9019D32444AB33B75A
C:\WINDOWS\System32\drivers\FsDepends.sys A7C31B168F371E8E6796219F23E354DB
C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42
C:\WINDOWS\System32\DRIVERS\fvevol.sys D4AB6EE3D715BC44C00277FD934FAACF
C:\WINDOWS\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015
C:\WINDOWS\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA
C:\WINDOWS\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1
C:\WINDOWS\System32\Drivers\msgpioclx.sys 8DF1254093B5C354CE725EB6B9B0DE19
C:\WINDOWS\system32\drivers\HdAudio.sys 56F69F7C25FB67C970997D7066DBC593
C:\WINDOWS\System32\drivers\HDAudBus.sys D4B7ED39C7900384D9E5C1283F1E7926
C:\WINDOWS\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906
C:\WINDOWS\System32\drivers\hidbth.sys 42F88B57CAE42FC10059C887B3FCFCEA
C:\WINDOWS\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17
C:\WINDOWS\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95
C:\WINDOWS\System32\drivers\hidusb.sys 49676FEC898AB2A11B157F848269A56E
C:\WINDOWS\System32\Drivers\HPM1210FAX.sys 0570A17A2E5001B97E20C15B4FC516AE
C:\WINDOWS\System32\DRIVERS\hpdskflt.sys 8B8E6BD988EAF18C1B86704BF05E5C03
C:\WINDOWS\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D
C:\WINDOWS\System32\drivers\HTTP.sys 76A6FDA32A21515B67633497D8FDB1E4
C:\WINDOWS\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F
C:\WINDOWS\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1
C:\WINDOWS\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25
C:\WINDOWS\System32\drivers\i8042prt.sys 49EE0AE9E5B64FFBBD06D55C4984B598
C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05
C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C
C:\WINDOWS\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC
C:\WINDOWS\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2
C:\WINDOWS\system32\drivers\RTKVHD64.sys 44ED7064A8CFF33E6D2BCC81412145F7
C:\WINDOWS\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157
C:\WINDOWS\System32\drivers\intelpep.sys 7AA01AB1C110916825E6E1389F1B9AF2
C:\WINDOWS\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514
C:\WINDOWS\System32\drivers\IPMIDrv.sys C800DCD904016B2BF6AB541083770A3A
C:\WINDOWS\System32\drivers\ipnat.sys B7342B3C58E91107F6E946A93D9D4EFD
C:\WINDOWS\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97
C:\WINDOWS\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21
C:\WINDOWS\System32\drivers\msiscsi.sys AD3C1F4BD9167420F04052FDA197CF29
C:\WINDOWS\System32\drivers\kbdclass.sys 5917AFE4A3F695A54B99C1849C8207FE
C:\WINDOWS\System32\drivers\kbdhid.sys 8CD840A062F6BDF41DDE3ACB96164B72
C:\WINDOWS\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05
C:\WINDOWS\System32\Drivers\ksecdd.sys 304DA394D958BC3B62AF6DF514005B01
C:\WINDOWS\System32\Drivers\ksecpkg.sys 3D4AE520CD6F6FFE549DD195C1F515BE
C:\WINDOWS\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F
C:\WINDOWS\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8
C:\WINDOWS\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC
C:\WINDOWS\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141
C:\WINDOWS\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191
C:\WINDOWS\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C
C:\WINDOWS\system32\drivers\luafv.sys DDEE191AB32DFC22C6465002ECDF5EE4
C:\WINDOWS\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F
C:\WINDOWS\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363
C:\WINDOWS\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378
C:\WINDOWS\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9
C:\WINDOWS\System32\drivers\mouclass.sys 08374E4E5B8914DE6067CBA99F61E930
C:\WINDOWS\System32\drivers\mouhid.sys 5FCBAB60598AE119E02B4C27DE6B99EA
C:\WINDOWS\System32\drivers\mountmgr.sys 24DABC0A77FAFDC0E379AB3B30F61BB6
C:\WINDOWS\System32\drivers\mpsdrv.sys 6FC047578785B0435F4E2660946D1ADC
C:\WINDOWS\system32\drivers\mrxdav.sys 3F818C1518DA702C8F10259095C9BDE0
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys C3B0566DE49265AE98405825938C20A1
C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys 15D7AF1A26CCEBA32DF21A8E2098F463
C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys 0790EEB1EC199F8BE8259E47B373ED23
C:\WINDOWS\system32\DRIVERS\bridge.sys F3C060444777A59FC63D920719E43CCD
C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08
C:\WINDOWS\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD
C:\WINDOWS\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31
C:\WINDOWS\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA
C:\WINDOWS\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C
C:\WINDOWS\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D
C:\WINDOWS\system32\DRIVERS\mslldp.sys 51B3AC0560848CD6D65AC2033E293113
C:\WINDOWS\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6
C:\WINDOWS\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8
C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0
C:\WINDOWS\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E
C:\WINDOWS\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2
C:\WINDOWS\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E
C:\WINDOWS\System32\Drivers\mup.sys 438EA7A2D8D4F9B8AFB64748ACA70BA8
C:\WINDOWS\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F
C:\WINDOWS\System32\Drivers\mvusbews.sys 09818558C2579B45D78AB18A759B0CA8
C:\WINDOWS\system32\DRIVERS\nwifi.sys 008F7CED69FD5B30CBDE1E03C6F36A27
C:\WINDOWS\System32\drivers\ndis.sys 97DC5967F65503213FD1F1B3E4A6F983
C:\WINDOWS\system32\DRIVERS\ndiscap.sys 8CECC8DA55F3274181FD1EA28AD76664
C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys 269882812E9A68FFF1AFE1283D428322
C:\WINDOWS\system32\DRIVERS\ndistapi.sys DC1D9F692C2AD84C214584C28501C1F7
C:\WINDOWS\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59
C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE
C:\WINDOWS\system32\DRIVERS\ndiswan.sys C3755FCF9A0B5C6FE8ED9E873B85D3CE
C:\WINDOWS\system32\DRIVERS\ndiswan.sys C3755FCF9A0B5C6FE8ED9E873B85D3CE
C:\Windows\System32\Drivers\NDProxy.sys B8F36CBC72FC5C8B8A30AD850165EA8E
C:\WINDOWS\System32\drivers\Ndu.sys 3083926D1CC5B56EA0786527B557DD1B
C:\WINDOWS\System32\DRIVERS\netbios.sys 42FF4975D032CAE558AE4BB8448F6E5A
C:\WINDOWS\System32\DRIVERS\netbt.sys 9DC17B7D9D84C37C102D379FCC7D4942
C:\WINDOWS\System32\drivers\netvsc63.sys D4DCE03870314D3354F3501F9DDD4123
C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys 39C66DD0CF8716B7C3F932B648DAD41C
C:\WINDOWS\System32\DRIVERS\NNSHttp.sys 06C43C8D9B5AFDD564385E2A4D363678
C:\WINDOWS\System32\DRIVERS\NNSHttps.sys 7403DD9C85A602FDC585DA374B65760F
C:\WINDOWS\System32\DRIVERS\NNSIds.sys 6EFDD87CA13D50A676F54CF199A7759B
C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys E4B9C6200A8A1213FD29FAF3C42F5F22
C:\WINDOWS\System32\DRIVERS\NNSPicc.sys 0C98D5CDD089E2FB3915094268AF7CC5
C:\WINDOWS\System32\DRIVERS\NNSPihsw.sys EE55F874CBE9D1C67D88DE2D00D691CB
C:\WINDOWS\System32\DRIVERS\NNSPop3.sys 903DFF78E6C45D2603C07A2BCB42E62B
C:\WINDOWS\System32\DRIVERS\NNSProt.sys 35DD429050AC45C2BD3CC5C0837F5B9D
C:\WINDOWS\System32\DRIVERS\NNSPrv.sys 2CE3A333A43308FE45CED9F3523CD502
C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys 142494022B4461D631A54984E5C583F4
C:\WINDOWS\System32\DRIVERS\NNSStrm.sys D9E3A4B710CF2FD0F7D361190219DE50
C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys EFD286B66BB65FB1AEA8549E098E6844
C:\WINDOWS\System32\drivers\npf.sys DE7FCC77F4A503AF4CA6A47D49B3713D
C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351
C:\WINDOWS\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC
C:\WINDOWS\System32\drivers\nsiproxy.sys 0E046FF5823B95326D10CF1B4AF23541
C:\Windows\System32\Drivers\Ntfs.sys 9980B262DBE439AE6BDC91AA985F19EE
C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904
C:\WINDOWS\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8
C:\WINDOWS\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E
C:\WINDOWS\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49
C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys 6925454E20B184E482CD65F297D51DB5
C:\WINDOWS\System32\drivers\parport.sys 57DCE4FB0467986AE78E1C6FC5240D32
C:\WINDOWS\System32\drivers\partmgr.sys BAFF6122CFC9F95CA175AD8C348179A4
C:\WINDOWS\System32\drivers\pci.sys 91ED124E261EA8FAA1C0FFDF2A71B0C4
C:\WINDOWS\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4
C:\WINDOWS\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397
C:\WINDOWS\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D
C:\WINDOWS\System32\drivers\pdc.sys ED54A75050211DC77F9B98C41E026858
C:\WINDOWS\System32\drivers\peauth.sys 0ECEE590F2E2EF969FB74A6FC583A1E6
C:\WINDOWS\system32\DRIVERS\raspptp.sys E075CC071022BD4E9BE7C024717C0E0A
C:\WINDOWS\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F
C:\WINDOWS\system32\DRIVERS\pacer.sys FC0141B4A5AD6D637D883C1A89FC45C5
C:\WINDOWS\System32\DRIVERS\PSINAflt.sys 4C2100234BE55FED7F5AF17F44D94CC3
C:\WINDOWS\System32\DRIVERS\PSINFile.sys EB45C8CD42B74F87D6A4E556EDEECC5C
C:\WINDOWS\System32\DRIVERS\psinknc.sys F7AC32A9225DB455F7E294C5FC850C6A
C:\WINDOWS\System32\DRIVERS\PSINProc.sys 7A832241454BB9A29F3EF91708E9E0A6
C:\WINDOWS\System32\DRIVERS\PSINProt.sys 11D324F8A15EF374F845C3E9F08256F1
C:\WINDOWS\System32\DRIVERS\PSINReg.sys 6A66E0B13B786851D0EC2B091364DDD3
C:\WINDOWS\System32\DRIVERS\PSKMAD.sys 7A0DB69C5FAE330BD9F492A817B9AA8E
C:\WINDOWS\system32\drivers\qwavedrv.sys 83868EB2924E6BC21A54337C65D614D1
C:\WINDOWS\System32\DRIVERS\rasacd.sys B337B1F1E82A83E20A1743E008E25C0F
C:\WINDOWS\system32\DRIVERS\AgileVpn.sys D5ECE7E7F349EB3C4B152AFF3577280D
C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 235624C147E3CB4C288D5D3D8E8D64A2
C:\WINDOWS\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A
C:\WINDOWS\system32\DRIVERS\rassstp.sys 41F631007A158FEBB67F0E2AD1601BBA
C:\WINDOWS\System32\DRIVERS\rdbss.sys D67ED4AB59D1EF66B05AD1A81AC28B26
C:\WINDOWS\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32
C:\WINDOWS\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF
C:\WINDOWS\System32\drivers\rdpvideominiport.sys BC8A79C625568DDB7DCA49D0C2741A64
C:\WINDOWS\System32\drivers\rdyboost.sys A26AEC49F318FEE141DDDB2C5F99B3E6
C:\Windows\System32\Drivers\ReFS.sys 2D39BCFA4DD1081B8F282B623456B858
C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys 6A940599A059C6C9D6E54D7A3EF356B8
C:\WINDOWS\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC
C:\WINDOWS\system32\DRIVERS\Rt630x64.sys 7CC0D898D00675F14BA0C4BF056C1CF4
C:\WINDOWS\system32\DRIVERS\rtwlane.sys ABA3A32B5FAE4E22036F4A2166E61FA5
C:\WINDOWS\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0
C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS 3289766038DB2CB14D07DC84392138D5
C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS 58A38E75F3316A83C23DF6173D41F2B5
C:\WINDOWS\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7
C:\WINDOWS\System32\DRIVERS\scfilter.sys 13BEA6C882D4D877A5A85CA149C86BC1
C:\WINDOWS\System32\drivers\sdbus.sys C54B6B2170BF628FD42F799A66956D75
C:\WINDOWS\System32\drivers\sdstor.sys 0B1E929D11A8E358106955603FAC65E8
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\WINDOWS\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89
C:\WINDOWS\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431
C:\WINDOWS\System32\drivers\serenum.sys 1F0135949A6AD6025F363F80FE268251
C:\WINDOWS\System32\drivers\serial.sys 81633C87B42B63BA484A6177179AC750
C:\WINDOWS\System32\drivers\sermouse.sys 148195AE95D9BC7375A08846439FDAC1
C:\WINDOWS\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764
C:\WINDOWS\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F
C:\WINDOWS\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F
C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys 32B3FB238A26267D358D7159B9171505
C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys B71EF473D8B90A2C4DC76B03E382DEE6
C:\WINDOWS\System32\drivers\spaceport.sys 546B88E6906EE9813EFE314DC95E3488
C:\WINDOWS\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34
C:\WINDOWS\System32\DRIVERS\srv.sys 36B082C7A764A34FB1DC72D975870B61
C:\WINDOWS\System32\DRIVERS\srv2.sys F5849909D4B29B4E3D4445F943E5C7E3
C:\WINDOWS\System32\DRIVERS\srvnet.sys FABC49666708EA562549E78E6FBF3191
C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 36C3697CA09B23C77BDF95A6B0B57310
C:\WINDOWS\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B
C:\WINDOWS\System32\drivers\serscan.sys 8F3C0CCF27CFFE89424F30E9FB3381AB
C:\WINDOWS\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90
C:\WINDOWS\System32\drivers\vmstorfl.sys 8B9486B64E5FC17FB9CC04CA10B77A34
C:\WINDOWS\System32\drivers\stornvme.sys 0EDD1F4D470C775740625B06A60C9DD5
C:\WINDOWS\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F
C:\WINDOWS\System32\drivers\swenum.sys 65454187E0F8B6C0DCECB0287D06EC43
C:\WINDOWS\system32\DRIVERS\SynTP.sys CDA92383EFB52846B7894280A559C330
C:\WINDOWS\System32\drivers\tcpip.sys 2F10C145F517419E17203632FCDA0A13
C:\WINDOWS\system32\DRIVERS\tcpip.sys 2F10C145F517419E17203632FCDA0A13
C:\WINDOWS\System32\drivers\tcpipreg.sys 41CF802064F72E55F50CA0A221FD36D4
C:\WINDOWS\system32\DRIVERS\tdx.sys E0BD2D83875464FEEEB242CBA8B7E073
C:\WINDOWS\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431
C:\WINDOWS\system32\drivers\tpm.sys 80A2FC1A089A71F2DBE5D8394FFB009F
C:\WINDOWS\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93
C:\WINDOWS\System32\drivers\TsUsbGD.sys 20185BEB7512EDE4EFECDFA148AC9F99
C:\WINDOWS\system32\DRIVERS\tunnel.sys E85916632CD3B9E9B546968DB950BF42
C:\WINDOWS\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54
C:\WINDOWS\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B
C:\WINDOWS\System32\drivers\ucx01000.sys 807F8CF3E973305FC435C61CBBEE2A49
C:\WINDOWS\System32\DRIVERS\udfs.sys C61EAF8E1E4B2F62BA4FDF457440B2C6
C:\WINDOWS\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21
C:\WINDOWS\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9
C:\WINDOWS\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034
C:\WINDOWS\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E
C:\WINDOWS\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473
C:\WINDOWS\System32\drivers\usbccgp.sys FF78D053A05E5A394F4E3C1816CC65A8
C:\WINDOWS\System32\drivers\usbcir.sys 0139248F6B95CF0D837B5B46A2722D40
C:\WINDOWS\System32\drivers\usbehci.sys C996CBEF922B5653A01E3F50DDCE2F86
C:\WINDOWS\System32\drivers\usbhub.sys CD81683F4553677B9BF5163A922153EB
C:\WINDOWS\System32\drivers\UsbHub3.sys 5C90D5379B53590FBB24BBAD4FA682EE
C:\WINDOWS\System32\drivers\usbohci.sys A0F0484C97D6441ED6A75D7426ECCC9E
C:\WINDOWS\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C
C:\WINDOWS\System32\drivers\usbscan.sys 0F030491BA4A27BD46F8B8ACEEE83F1A
C:\WINDOWS\System32\drivers\USBSTOR.SYS 9D168BFA334D47BE404367EB58D4E130
C:\WINDOWS\System32\drivers\usbuhci.sys FC974B03C8B87455F44F734C8F31A3C8
C:\WINDOWS\System32\Drivers\usbvideo.sys 5C8F604F6DC74177CDD8372D7B1ADFF0
C:\WINDOWS\System32\drivers\USBXHCI.SYS 44603DA5A87FB491EF59C889EBBB4DDB
C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys 4253313F443C178BC264324577840F37
C:\WINDOWS\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562
C:\WINDOWS\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD
C:\WINDOWS\System32\drivers\vhdmp.sys 8ABB4BABF59F092DF0B43778D8FD1884
C:\WINDOWS\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199
C:\WINDOWS\System32\drivers\vmbus.sys 511AD3FF957A0127E6BD336FF6F89C38
C:\WINDOWS\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F
C:\WINDOWS\System32\drivers\volmgr.sys 436E1A724E7E683F6B612D3D58F04241
C:\WINDOWS\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7
C:\WINDOWS\System32\drivers\volsnap.sys 17F7B0F2298D97F4B6C7A69511033D3D
C:\WINDOWS\System32\drivers\vpci.sys DAC438FB5FF85A9E72806E2341D5D732
C:\WINDOWS\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07
C:\WINDOWS\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B
C:\WINDOWS\System32\drivers\vwifibus.sys 71066FF95C487327E44C8AF1B72EBE8B
C:\WINDOWS\system32\DRIVERS\vwififlt.sys 29AB43937FFDA0B0FB56984226E698C6
C:\WINDOWS\system32\DRIVERS\vwifimp.sys 8B8624A93E3F88CB923AEB05B6313227
C:\WINDOWS\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B
C:\WINDOWS\system32\DRIVERS\wanarp.sys 23006D660C0E54BF1CE8253E15F5E995
C:\WINDOWS\system32\DRIVERS\wanarp.sys 23006D660C0E54BF1CE8253E15F5E995
C:\WINDOWS\system32\drivers\WdBoot.sys 81285DDC994F03379DB46419300B2DCB
C:\WINDOWS\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D
C:\WINDOWS\system32\drivers\WdFilter.sys 26B8FED3F3B85F5F0C4BD03FD00B9941
C:\WINDOWS\System32\Drivers\WdNisDrv.sys CE67080F00E0AF32755096CEA6430ABA
C:\WINDOWS\System32\DRIVERS\wfplwfs.sys 715ABA3DD164D06457A2A3C92F6EA9D5
C:\WINDOWS\System32\drivers\wimmount.sys 5F66B7BB330AA80067FC66149A692620
C:\WINDOWS\system32\DRIVERS\WinUsb.sys 3AF1FA17F1C4ACBDB660D8F98B1A9C13
C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys 6B67A19ED279C1C6C76B7148462244C0
C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys 6B67A19ED279C1C6C76B7148462244C0
C:\WINDOWS\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128
C:\Windows\System32\Drivers\Wof.sys 7FC5667DF73D4B04AA457CC3A4180E09
C:\WINDOWS\System32\DRIVERS\wpcfltr.sys A2468CC3509394A33C4C32F99563D845
C:\WINDOWS\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A
C:\WINDOWS\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572
C:\WINDOWS\System32\drivers\WSDPrint.sys F586F3F1BF962FE9AE4316E0D896B22F
C:\WINDOWS\System32\drivers\WudfPf.sys 481286719402E4BAEFEA0604AB1B5113
C:\WINDOWS\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
C:\WINDOWS\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
C:\WINDOWS\system32\DRIVERS\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
C:\WINDOWS\System32\drivers\xb1usb.sys AAAF81690C24E2F1EE59F1B2AED5B632
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Three Months Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-19 09:51 - 2016-12-19 09:51 - 02420224 _____ (Farbar) C:\Users\momasboi34\Downloads\FRST64 (3).exe
2016-12-18 18:07 - 2016-12-18 18:07 - 00001617 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-12082415.jnlp
2016-12-18 18:05 - 2016-12-18 18:05 - 00002650 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-18-18-05-04.txt
2016-12-18 17:29 - 2016-12-18 17:29 - 00002800 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-12-18 17:28 - 2016-08-08 01:00 - 00070360 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2016-12-18 17:21 - 2016-12-18 17:21 - 00231390 _____ C:\Users\momasboi34\Downloads\RootkitRevealer.zip
2016-12-18 16:08 - 2016-12-18 16:11 - 00479840 _____ C:\TDSSKiller.3.1.0.12_18.12.2016_16.08.27_log.txt
2016-12-18 16:08 - 2016-12-18 16:08 - 04747704 _____ (AO Kaspersky Lab) C:\Users\momasboi34\Downloads\tdsskiller.exe
2016-12-18 15:50 - 2016-12-18 15:52 - 00041444 _____ C:\Users\momasboi34\Downloads\Addition.txt
2016-12-18 15:48 - 2016-12-19 09:53 - 00053186 _____ C:\Users\momasboi34\Downloads\FRST.txt
2016-12-18 15:47 - 2016-12-19 09:52 - 00000000 ____D C:\FRST
2016-12-18 15:46 - 2016-12-18 15:46 - 02420224 _____ (Farbar) C:\Users\momasboi34\Downloads\FRST64 (2).exe
2016-12-18 15:46 - 2016-12-18 15:46 - 02420224 _____ (Farbar) C:\Users\momasboi34\Downloads\FRST64 (1).exe
2016-12-18 15:38 - 2016-12-18 15:38 - 02420224 _____ (Farbar) C:\Users\momasboi34\Downloads\FRST64.exe
2016-12-18 14:30 - 2016-12-18 14:30 - 00380928 _____ C:\Users\momasboi34\Downloads\1pf9sr1e.exe
2016-12-18 14:28 - 2016-12-18 14:28 - 00464491 _____ C:\Users\momasboi34\Downloads\RootRepeal.zip
2016-12-18 13:46 - 2016-12-18 13:46 - 00001619 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-12078951.jnlp
2016-12-18 13:44 - 2016-12-18 13:44 - 28683768 _____ (SUPERAntiSpyware) C:\Users\momasboi34\Downloads\SUPERAntiSpyware (1).exe
2016-12-18 13:18 - 2016-12-18 17:28 - 00000538 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a108691d-f688-442a-995c-36f912db7f1b.job
2016-12-18 13:18 - 2016-12-18 17:28 - 00000538 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3ce41395-bbb7-4a7d-8c49-cd4d66d120ca.job
2016-12-18 13:18 - 2016-12-18 13:18 - 00003606 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 3ce41395-bbb7-4a7d-8c49-cd4d66d120ca
2016-12-18 13:18 - 2016-12-18 13:18 - 00003524 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task a108691d-f688-442a-995c-36f912db7f1b
2016-12-18 13:17 - 2016-12-18 13:17 - 00001827 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2016-12-18 13:17 - 2016-12-18 13:17 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\SUPERAntiSpyware.com
2016-12-18 13:17 - 2016-12-18 13:17 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2016-12-18 13:17 - 2016-12-18 13:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2016-12-18 13:17 - 2016-12-18 13:17 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-12-18 13:12 - 2016-12-18 13:12 - 28683768 _____ (SUPERAntiSpyware) C:\Users\momasboi34\Downloads\SUPERAntiSpyware.exe
2016-12-18 11:11 - 2016-12-18 11:12 - 25553992 _____ C:\Users\momasboi34\Downloads\RogueKillerX64.exe
2016-12-18 02:58 - 2016-12-18 02:58 - 00003194 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFormomasboi34
2016-12-17 18:08 - 2016-12-18 17:39 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-618084492-1320085081-182099660-1002
2016-12-17 17:25 - 2016-12-17 17:25 - 00001305 _____ C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2016-12-17 17:18 - 2016-12-17 17:19 - 05659917 _____ (Swearware) C:\Users\momasboi34\Downloads\ComboFix.exe
2016-12-17 16:59 - 2016-12-17 17:02 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\Wireshark
2016-12-17 16:34 - 2016-12-17 16:34 - 00001805 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2016-12-17 16:34 - 2016-12-17 16:34 - 00001793 _____ C:\Users\Public\Desktop\Wireshark.lnk
2016-12-17 16:34 - 2016-12-17 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2016-12-17 16:34 - 2016-12-17 16:34 - 00000000 ____D C:\Program Files (x86)\WinPcap
2016-12-17 13:54 - 2016-12-17 16:34 - 00000000 ____D C:\Program Files\Wireshark
2016-12-17 13:54 - 2016-12-17 13:54 - 00001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark Legacy.lnk
2016-12-17 13:52 - 2016-12-17 13:53 - 49358520 _____ (Wireshark development team) C:\Users\momasboi34\Downloads\Wireshark-win64-2.2.3.exe
2016-12-17 13:48 - 2016-12-17 13:48 - 00002656 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-13-48-38.txt
2016-12-17 13:48 - 2016-12-17 13:48 - 00002656 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-13-48-32.txt
2016-12-17 13:39 - 2016-12-17 13:39 - 00262144 _____ C:\Users\PCPitstopSVC
2016-12-17 13:37 - 2016-12-17 13:39 - 00000000 ____D C:\Users\momasboi34\SecurityScans
2016-12-17 13:36 - 2016-12-17 13:36 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Baseline Security Analyzer 2.3.lnk
2016-12-17 13:36 - 2016-12-17 13:36 - 00001100 _____ C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.3.lnk
2016-12-17 13:36 - 2016-12-17 13:36 - 00000000 ____D C:\Program Files\Microsoft Baseline Security Analyzer 2
2016-12-17 13:35 - 2016-12-17 13:35 - 01818624 _____ C:\Users\momasboi34\Desktop\MBSASetup-x64-EN.msi
2016-12-17 13:31 - 2016-12-17 13:32 - 00002656 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-13-31-37.txt
2016-12-17 12:12 - 2016-12-17 12:13 - 00002415 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-12-12-15.txt
2016-12-17 12:08 - 2016-12-17 12:09 - 00002200 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-12-08-33.txt
2016-12-17 12:03 - 2016-12-17 12:05 - 00002447 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-12-03-14.txt
2016-12-17 12:01 - 2016-12-17 12:03 - 00001799 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-12-01-59.txt
2016-12-17 12:01 - 2016-12-17 12:01 - 00001799 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-12-01-14.txt
2016-12-17 11:58 - 2016-12-17 13:07 - 00000000 ____D C:\WINDOWS\pss
2016-12-17 11:32 - 2016-12-17 11:33 - 00001973 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-11-32-25.txt
2016-12-17 11:31 - 2016-12-17 11:31 - 00001799 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-11-31-27.txt
2016-12-17 10:26 - 2016-12-17 10:27 - 00002298 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-10-26-01.txt
2016-12-17 10:23 - 2016-12-17 10:25 - 00003444 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-17-10-23-51.txt
2016-12-15 18:49 - 2016-12-15 18:49 - 00151898 _____ C:\Users\momasboi34\Desktop\app101info.pdf
2016-12-15 15:42 - 2016-12-15 15:42 - 00001617 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-12010073.jnlp
2016-12-14 16:52 - 2016-12-19 09:14 - 00000000 ____D C:\ProgramData\panda_url_filtering
2016-12-14 16:52 - 2016-12-17 13:33 - 00000000 ____D C:\Users\momasboi34\AppData\LocalLow\pandasecuritytb
2016-12-14 16:52 - 2016-12-14 16:52 - 00000000 ____D C:\Program Files\Panda Security URL Filtering
2016-12-14 16:51 - 2016-12-14 16:53 - 00002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Global Protection.lnk
2016-12-14 16:51 - 2016-12-14 16:53 - 00002216 _____ C:\Users\Public\Desktop\Panda Global Protection.lnk
2016-12-14 16:51 - 2016-12-14 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Global Protection
2016-12-14 16:48 - 2016-12-14 16:48 - 01817936 _____ (Panda Security, S.L.) C:\Users\momasboi34\Downloads\PANDAGP.exe
2016-12-14 16:45 - 2016-12-17 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2016-12-14 16:45 - 2016-12-14 16:45 - 00000000 ____D C:\Program Files (x86)\Panda USB Vaccine
2016-12-14 16:42 - 2016-12-14 16:42 - 00865272 _____ (Panda Security ) C:\Users\momasboi34\Downloads\usbvaccine.exe
2016-12-14 16:17 - 2016-12-14 16:18 - 00002078 _____ C:\Users\momasboi34\Desktop\Rkill.txt
2016-12-14 16:17 - 2016-12-14 16:17 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\momasboi34\Downloads\rkill (1).exe
2016-12-14 10:45 - 2016-12-14 10:45 - 06253640 _____ (AVAST Software) C:\Users\momasboi34\Downloads\avast_free_antivirus_setup_online_cnet_2 (1).exe
2016-12-14 10:15 - 2016-12-14 10:15 - 51969976 _____ (Malwarebytes ) C:\Users\momasboi34\Downloads\mb3-setup-consumer-3.0.4.1269.exe
2016-12-14 09:57 - 2016-12-14 09:59 - 00003293 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-14-9-57-17.txt
2016-12-14 09:51 - 2016-12-14 09:51 - 08803648 _____ (Piriform Ltd) C:\Users\momasboi34\Downloads\ccsetup525.exe
2016-12-14 09:43 - 2016-12-11 15:00 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-14 09:43 - 2016-12-11 15:00 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-14 09:07 - 2016-12-01 06:13 - 00869576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-12-14 09:07 - 2016-12-01 06:13 - 00678592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-12-14 09:07 - 2016-12-01 06:11 - 00875720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-12-14 09:07 - 2016-12-01 06:11 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-12-14 09:04 - 2016-11-19 13:24 - 00567152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-14 09:04 - 2016-11-19 13:24 - 00152856 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-14 09:04 - 2016-11-19 11:29 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-12-14 09:04 - 2016-11-19 10:44 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-12-14 09:04 - 2016-11-19 09:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-12-14 09:04 - 2016-11-19 09:22 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2016-12-14 09:04 - 2016-11-16 13:49 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-14 09:04 - 2016-11-12 13:06 - 00738104 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-12-14 09:04 - 2016-11-12 11:38 - 00613632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-12-14 09:04 - 2016-11-12 11:25 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-12-14 09:04 - 2016-11-12 11:08 - 25759744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-14 09:04 - 2016-11-12 11:07 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-12-14 09:04 - 2016-11-12 10:53 - 06049280 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-14 09:04 - 2016-11-12 10:29 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-12-14 09:04 - 2016-11-12 10:23 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-12-14 09:04 - 2016-11-12 10:17 - 20302848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-12-14 09:04 - 2016-11-12 10:14 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-12-14 09:04 - 2016-11-12 10:10 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-12-14 09:04 - 2016-11-12 09:45 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-12-14 09:04 - 2016-11-12 09:41 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-14 09:04 - 2016-11-12 09:38 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-12-14 09:04 - 2016-11-12 09:37 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-12-14 09:04 - 2016-11-12 09:35 - 02920960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-14 09:04 - 2016-11-12 09:21 - 13653504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-12-14 09:04 - 2016-11-12 09:20 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-14 09:04 - 2016-11-12 09:11 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-12-14 09:04 - 2016-11-12 09:05 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-12-14 09:04 - 2016-11-12 09:02 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-12-14 09:04 - 2016-11-12 09:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-12-14 09:04 - 2016-11-10 18:33 - 01541240 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-14 09:04 - 2016-11-09 09:25 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-12-14 09:04 - 2016-11-05 12:46 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-12-14 09:04 - 2016-11-05 10:35 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-14 09:04 - 2016-11-05 09:57 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-14 09:04 - 2016-11-05 09:11 - 03606528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-12-14 09:04 - 2016-11-05 07:56 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-12-14 09:04 - 2016-11-05 07:46 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-12-14 09:04 - 2016-10-27 18:56 - 01380048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-12-14 09:04 - 2016-10-27 06:28 - 01097728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-12-14 09:04 - 2016-10-12 13:49 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-12-14 09:04 - 2016-10-12 13:11 - 00922968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-12-14 09:04 - 2016-10-11 08:45 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-12-14 09:04 - 2016-10-10 15:31 - 00990040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-12-14 09:04 - 2016-10-10 10:18 - 00069976 _____ (Microsoft Corporation) C:\WINDOWS\system32\apisetschema.dll
2016-12-14 09:04 - 2016-10-10 10:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-12-14 09:04 - 2016-10-09 06:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2016-12-14 09:04 - 2016-10-09 06:08 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-12-14 09:04 - 2016-10-09 06:08 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2016-12-14 09:04 - 2016-10-08 14:24 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-12-14 09:04 - 2016-10-08 13:31 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-12-14 09:04 - 2016-10-08 13:10 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-12-14 09:04 - 2016-10-05 06:01 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-12-14 09:04 - 2016-10-05 06:00 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-12-14 09:04 - 2016-10-05 06:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-12-14 09:04 - 2016-10-05 05:52 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-12-14 09:04 - 2016-10-05 05:52 - 00513456 _____ C:\WINDOWS\system32\locale.nls
2016-12-14 09:04 - 2016-10-04 20:15 - 01969944 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-12-14 09:04 - 2016-10-04 20:15 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-12-14 09:04 - 2016-10-04 20:15 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-12-14 09:04 - 2016-10-04 20:15 - 00245320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-12-14 09:04 - 2016-09-27 12:16 - 00445873 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-12-14 09:04 - 2016-09-20 14:30 - 02462040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-12-14 08:28 - 2016-12-14 08:28 - 00002659 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-14-8-28-36.txt
2016-12-14 08:26 - 2016-12-14 08:26 - 06253640 _____ (AVAST Software) C:\Users\momasboi34\Downloads\avast_free_antivirus_setup_online_cnet_2.exe
2016-12-13 21:10 - 2016-12-13 21:10 - 00001791 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-13-21-10-29.txt
2016-12-13 21:10 - 2016-12-13 21:10 - 00001791 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-13-21-10-13.txt
2016-12-11 15:59 - 2016-12-11 15:59 - 00174264 _____ C:\Users\momasboi34\Downloads\11.3.1.4 Packet Tracer - Verifying and Troubleshooting NAT Configurations.pka
2016-12-11 15:53 - 2016-12-11 15:53 - 00132074 _____ C:\Users\momasboi34\Downloads\11.2.4.4 Packet Tracer - Configuring Port Forwarding on a Wireless Router.pka
2016-12-11 15:41 - 2016-12-11 15:41 - 00206714 _____ C:\Users\momasboi34\Downloads\11.2.3.6 Packet Tracer - Implementing Static and Dynamic NAT.pka
2016-12-11 15:07 - 2016-12-11 15:07 - 00173932 _____ C:\Users\momasboi34\Downloads\11.2.2.5 Packet Tracer - Configuring Dynamic NAT (1).pka
2016-12-09 09:06 - 2016-12-09 09:06 - 00173932 _____ C:\Users\momasboi34\Downloads\11.2.2.5 Packet Tracer - Configuring Dynamic NAT.pka
2016-12-09 08:53 - 2016-12-09 08:53 - 00145241 _____ C:\Users\momasboi34\Downloads\11.2.1.4 Packet Tracer - Configuring Static NAT (1).pka
2016-12-08 22:01 - 2016-12-08 22:01 - 27390960 _____ C:\Users\momasboi34\Downloads\MeyersUS5e_sampleChapter_03.pdf
2016-12-08 21:34 - 2016-12-18 17:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-08 15:41 - 2016-12-08 15:41 - 00145241 _____ C:\Users\momasboi34\Downloads\11.2.1.4 Packet Tracer - Configuring Static NAT.pka
2016-12-08 15:40 - 2016-12-08 15:40 - 00431808 _____ C:\Users\momasboi34\Downloads\StudentOne-Resume_Original.pdf
2016-12-08 15:40 - 2016-12-08 15:40 - 00415645 _____ C:\Users\momasboi34\Downloads\StudentOne-Resume_Updated.pdf
2016-12-08 15:02 - 2016-12-08 15:02 - 00001615 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-11733289.jnlp
2016-12-08 14:28 - 2016-12-08 14:28 - 00001617 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-11732435.jnlp
2016-12-08 14:13 - 2016-12-08 14:13 - 00443410 _____ C:\Users\momasboi34\Downloads\11.1.2.6 Packet Tracer - Investigating NAT Operation.pka
2016-12-08 11:09 - 2016-12-13 21:01 - 00000000 ____D C:\Users\momasboi34\AppData\Local\Deployment
2016-12-08 11:09 - 2016-12-08 11:09 - 01285360 _____ (Etwok LLC) C:\Users\momasboi34\Downloads\NetSpot.exe
2016-12-08 11:09 - 2016-12-08 11:09 - 00000000 ____D C:\Users\momasboi34\AppData\Local\Apps\2.0
2016-12-08 11:05 - 2016-12-08 11:06 - 04598752 _____ (Tarlogic Security S.L. ) C:\Users\momasboi34\Downloads\Acrylic_WiFi_Home_v3.1.6117.24454-Setup.exe
2016-12-08 10:18 - 2016-12-08 10:18 - 00002655 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-08-10-18-06.txt
2016-12-07 17:23 - 2016-12-07 17:24 - 00002648 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-07-17-23-54.txt
2016-12-06 17:10 - 2016-12-06 17:10 - 00236092 _____ C:\Users\momasboi34\Downloads\10.3.1.2 Packet Tracer - Skills Integration Challenge.pka
2016-12-06 16:41 - 2016-12-06 16:41 - 00284665 _____ C:\Users\momasboi34\Downloads\10.1.3.3 Packet Tracer - Configuring DHCPv4 Using Cisco IOS.pka
2016-12-06 11:34 - 2016-12-06 11:34 - 00002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002406 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002400 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002363 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002351 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00002343 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-12-06 11:34 - 2016-12-06 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2016-12-06 10:00 - 2016-12-12 15:47 - 00000000 ____D C:\Users\momasboi34\Desktop\Resumes and work stuff
2016-12-05 19:53 - 2016-12-05 19:53 - 00000000 ____D C:\Program Files (x86)\TeaTimer (Spybot - Search & Destroy)
2016-12-05 19:53 - 2016-12-05 19:53 - 00000000 ____D C:\Program Files (x86)\SDHelper (Spybot - Search & Destroy)
2016-12-05 19:53 - 2016-12-05 19:53 - 00000000 ____D C:\Program Files (x86)\Misc. Support Library (Spybot - Search & Destroy)
2016-12-05 19:53 - 2016-12-05 19:53 - 00000000 ____D C:\Program Files (x86)\File Scanner Library (Spybot - Search & Destroy)
2016-12-05 19:30 - 2016-12-05 20:27 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-12-05 19:30 - 2016-12-05 20:27 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2016-12-05 19:29 - 2016-12-05 19:29 - 05009935 _____ C:\Users\momasboi34\Downloads\spybot-s-d.zip
2016-12-05 18:29 - 2016-12-05 18:29 - 00380928 _____ C:\Users\momasboi34\Downloads\m824kb8i.exe
2016-12-05 11:33 - 2016-12-05 11:33 - 00000000 ____D C:\New folder
2016-12-04 16:33 - 2016-12-04 16:33 - 00001619 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-11551939.jnlp
2016-12-04 15:24 - 2016-12-04 15:24 - 00160877 _____ C:\Users\momasboi34\Downloads\9.5.2.6 Packet Tracer - Configuring IPv6 ACLs.pka
2016-12-04 14:38 - 2016-12-04 14:38 - 00217048 _____ C:\Users\momasboi34\Downloads\9.4.2.6 Packet Tracer - Troubleshooting ACLs.pka
2016-12-04 14:09 - 2016-12-04 15:09 - 01527714 _____ C:\Users\momasboi34\Desktop\TestOut LabSim.pdf
2016-12-04 13:53 - 2016-12-04 13:53 - 00095142 _____ C:\Users\momasboi34\Downloads\9.3.2.11 Configuring Extended ACLs Scenario 2.pka
2016-12-04 13:38 - 2016-12-04 13:38 - 00135648 _____ C:\Users\momasboi34\Downloads\9.3.2.10 Configuring Extended ACLs Scenario 1.pka
2016-12-04 13:21 - 2016-12-04 13:21 - 00160337 _____ C:\Users\momasboi34\Downloads\9.2.1.11 Packet Tracer - Configuring Named Standard ACLs.pka
2016-12-04 13:14 - 2016-12-04 13:14 - 00364660 _____ C:\Users\momasboi34\Downloads\9.2.1.10 Packet Tracer Configuring Standard ACLs.pka
2016-12-04 12:40 - 2016-12-04 12:40 - 00306991 _____ C:\Users\momasboi34\Downloads\8.3.3.5 Packet Tracer - Configuring Basic OSPFv3 in a Single Area.pka
2016-12-04 12:17 - 2016-12-04 12:17 - 00115357 _____ C:\Users\momasboi34\Downloads\8.2.2.7 Packet Tracer - Configuring OSPFv2 in a Single Area.pka
2016-12-02 13:44 - 2016-12-02 13:44 - 00025869 _____ C:\Users\momasboi34\Downloads\speccy.speccy
2016-12-02 13:44 - 2016-12-02 13:44 - 00025869 _____ C:\Users\momasboi34\Downloads\speccy (1).speccy
2016-12-02 13:36 - 2016-12-02 13:36 - 00000000 ____D C:\ProgramData\OptiSpeed
2016-12-02 13:35 - 2016-12-02 13:35 - 00359936 _____ (OptiSpeed) C:\Users\momasboi34\Downloads\optispeed-setup.exe
2016-12-02 13:34 - 2016-12-02 13:34 - 00025869 _____ C:\Users\momasboi34\Desktop\speccy.speccy
2016-12-02 13:21 - 2016-12-02 13:21 - 00003612 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-12-02-13-21-13.txt
2016-12-02 13:05 - 2016-12-02 13:05 - 00000815 _____ C:\Users\Public\Desktop\Speccy.lnk
2016-12-02 13:05 - 2016-12-02 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2016-12-02 13:05 - 2016-12-02 13:05 - 00000000 ____D C:\Program Files\Speccy
2016-12-02 13:04 - 2016-12-02 13:05 - 06293184 _____ (Piriform Ltd) C:\Users\momasboi34\Downloads\spsetup130 (1).exe
2016-12-02 13:04 - 2016-12-02 13:04 - 06293184 _____ (Piriform Ltd) C:\Users\momasboi34\Downloads\spsetup130.exe
2016-12-02 11:15 - 2016-12-02 11:15 - 00184501 _____ C:\Users\momasboi34\Downloads\FAX_20160923_1474652365_61.pdf
2016-12-02 11:14 - 2016-12-02 11:14 - 00005276 _____ C:\Users\momasboi34\Downloads\FAX_20160812_1471023203_25.pdf
2016-12-01 20:01 - 2016-12-01 20:01 - 00113342 _____ C:\Users\momasboi34\Downloads\7.3.2.3 Packet Tracer - Configuring RIPng.pka
2016-12-01 19:19 - 2016-12-01 19:19 - 00155443 _____ C:\Users\momasboi34\Downloads\7.3.1.8 Packet Tracer - Configuring RIPv2 (1).pka
2016-11-30 16:28 - 2016-11-30 16:29 - 04166400 _____ (PortableApps.com) C:\Users\momasboi34\Downloads\PortableApps.com_Platform_Setup_14.2.paf.exe
2016-11-30 15:50 - 2016-11-30 15:50 - 00155443 _____ C:\Users\momasboi34\Downloads\7.3.1.8 Packet Tracer - Configuring RIPv2.pka
2016-11-30 15:32 - 2016-11-30 15:34 - 164525784 _____ C:\Users\momasboi34\Downloads\EmsisoftEmergencyKit.exe
2016-11-30 14:58 - 2016-11-30 14:58 - 00147604 _____ C:\Users\momasboi34\Downloads\7.2.2.4 Packet Tracer - Comparing RIP and EIGRP Path Selection.pka
2016-11-30 12:32 - 2016-12-01 17:32 - 00000000 ____D C:\Program Files (x86)\PCPitstop
2016-11-30 12:32 - 2016-12-01 16:31 - 00000000 ____D C:\ProgramData\PCPitstop
2016-11-30 12:31 - 2016-11-30 12:32 - 06087288 _____ (PC Pitstop LLC ) C:\Users\momasboi34\Downloads\pcmatic-setup-0008.exe
2016-11-29 17:24 - 2016-11-29 17:24 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-11-29 17:24 - 2016-11-29 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-29 17:24 - 2016-11-29 17:24 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-29 17:22 - 2016-11-29 17:22 - 00737344 _____ (Oracle Corporation) C:\Users\momasboi34\Downloads\chromeinstall-8u111.exe
2016-11-28 19:45 - 2016-11-28 19:45 - 00304361 _____ C:\Users\momasboi34\Downloads\certificate.pdf
2016-11-28 00:09 - 2016-11-28 00:09 - 00105111 _____ C:\Users\momasboi34\Documents\Paragraph.pdf
2016-11-27 22:16 - 2016-11-27 22:16 - 00001615 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-11261671.jnlp
2016-11-27 22:03 - 2016-11-27 22:04 - 00001615 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-11261389.jnlp
2016-11-26 21:13 - 2016-11-26 21:13 - 00104700 _____ C:\Users\momasboi34\Downloads\7.1.3.6 Packet Tracer - Investigating Convergence.pka
2016-11-25 15:05 - 2016-11-25 15:05 - 00144850 _____ C:\Users\momasboi34\Downloads\6.5.2.4 Packet Tracer - Troubleshooting VLSM and Route Summarization.pka
2016-11-25 14:21 - 2016-11-25 14:21 - 00152493 _____ C:\Users\momasboi34\Downloads\6.5.2.3 Packet Tracer - Troubleshooting Static Routes.pka
2016-11-25 13:45 - 2016-11-25 13:45 - 00112564 _____ C:\Users\momasboi34\Downloads\6.4.2.4 Calculating and Configuring an IPv6 Route Summarization.pka
2016-11-25 12:56 - 2016-11-25 12:56 - 00142720 _____ C:\Users\momasboi34\Downloads\6.4.1.6 Packet Tracer - Configuring IPv4 Route Summarization - Scenario 2.pka
2016-11-25 11:45 - 2016-11-25 11:45 - 00114651 _____ C:\Users\momasboi34\Downloads\6.4.1.5 Packet Tracer - Configuring IPv4 Route Summarization - Scenario 1.pka
2016-11-23 21:20 - 2016-11-23 21:21 - 00122952 _____ C:\Users\momasboi34\Downloads\6.3.3.6 Packet Tracer - Designing and Implementing a VLSM Addressing Scheme.pka
2016-11-23 20:45 - 2016-11-23 20:45 - 00301673 _____ C:\Users\momasboi34\Downloads\6.2.4.4 Packet Tracer - Configuring IPv6 Static and Default Routes.pka
2016-11-23 20:07 - 2016-11-23 20:07 - 00042329 _____ C:\Users\momasboi34\Downloads\Completed - DOC 6.2.2.4 Configuring IPv4 Static and Default Routes FORM.pdf
2016-11-23 18:15 - 2016-11-23 18:15 - 00115756 _____ C:\Users\momasboi34\Downloads\6.2.2.4 Packet Tracer - Configuring IPv4 Static and Default Routes.pka
2016-11-23 18:11 - 2016-11-23 18:11 - 00139182 _____ C:\Users\momasboi34\Downloads\PT_Student_StaticDefault_Routes_IPv4_Lab.pkt
2016-11-22 21:31 - 2016-11-22 21:31 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\WildTangent
2016-11-22 21:29 - 2016-11-22 21:29 - 00108087 _____ C:\Users\momasboi34\Downloads\2016-05-17-statements-9817 (1).pdf
2016-11-22 21:28 - 2016-11-22 21:28 - 00119486 _____ C:\Users\momasboi34\Downloads\2015-03-17-statements-9817.pdf
2016-11-22 21:28 - 2016-11-22 21:28 - 00113650 _____ C:\Users\momasboi34\Downloads\2015-05-18-statements-9817.pdf
2016-11-22 21:27 - 2016-11-22 21:27 - 00137138 _____ C:\Users\momasboi34\Downloads\2015-04-16-statements-9817.pdf
2016-11-22 21:26 - 2016-11-22 21:26 - 00088230 _____ C:\Users\momasboi34\Downloads\2016-04-18-statements-0200.pdf
2016-11-22 21:25 - 2016-11-22 21:25 - 00088869 _____ C:\Users\momasboi34\Downloads\2016-03-16-statements-0200.pdf
2016-11-22 21:24 - 2016-11-22 21:24 - 00072027 _____ C:\Users\momasboi34\Downloads\2016-02-17-statements-0200.pdf
2016-11-22 20:48 - 2016-11-22 20:48 - 00122102 _____ C:\Users\momasboi34\Downloads\2016-07-19-statements-9817.pdf
2016-11-22 20:47 - 2016-11-22 20:47 - 00112191 _____ C:\Users\momasboi34\Downloads\2016-06-16-statements-9817.pdf
2016-11-22 20:47 - 2016-11-22 20:47 - 00108087 _____ C:\Users\momasboi34\Downloads\2016-05-17-statements-9817.pdf
2016-11-22 20:46 - 2016-11-22 20:46 - 00117153 _____ C:\Users\momasboi34\Downloads\2016-04-18-statements-9817.pdf
2016-11-22 20:46 - 2016-11-22 20:46 - 00104963 _____ C:\Users\momasboi34\Downloads\2016-03-16-statements-9817.pdf
2016-11-22 20:42 - 2016-11-22 20:42 - 00099829 _____ C:\Users\momasboi34\Downloads\2016-02-17-statements-9817.pdf
2016-11-22 20:41 - 2016-11-22 20:41 - 00090820 _____ C:\Users\momasboi34\Downloads\2016-01-20-statements-9817.pdf
2016-11-22 13:32 - 2016-11-22 13:32 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-22 04:31 - 2016-11-22 04:31 - 01813424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-11-22 04:31 - 2016-11-22 04:31 - 00137776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\tbaseregistry64.dll
2016-11-22 04:31 - 2016-11-22 04:31 - 00117304 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\tbaseregistry32.dll
2016-11-22 04:31 - 2016-11-22 04:31 - 00059960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\tbaseprovisioning.exe
2016-11-22 04:31 - 2016-11-22 04:31 - 00034872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\t-base_client_api.dll
2016-11-22 04:30 - 2016-11-22 04:30 - 03036896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\rootpacommon.dll
2016-11-22 04:30 - 2016-11-22 04:30 - 00262560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdpsp.sys
2016-11-22 04:30 - 2016-11-22 04:30 - 00115256 _____ (AMD) C:\WINDOWS\system32\pspcoins.dll
2016-11-22 04:30 - 2016-11-22 04:30 - 00103840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdkmcsp.sys
2016-11-22 04:30 - 2016-11-22 04:30 - 00096312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdumcsp.dll
2016-11-22 04:30 - 2016-11-22 04:30 - 00079928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdumcsp.dll
2016-11-22 04:30 - 2016-11-22 04:30 - 00030776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\t-base_client_api.dll
2016-11-21 14:36 - 2016-11-21 14:36 - 00000000 _____ C:\Users\momasboi34\Downloads\7zip.exe
2016-11-21 14:35 - 2016-12-14 09:51 - 00000841 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-21 14:34 - 2016-11-21 14:35 - 08576448 _____ (Piriform Ltd) C:\Users\momasboi34\Downloads\ccsetup524.exe
2016-11-21 13:18 - 2016-12-16 19:29 - 00000000 ____D C:\Users\momasboi34\Desktop\LINUX STUFF
2016-11-21 13:15 - 2016-11-21 13:19 - 00000000 ____D C:\Users\momasboi34\Desktop\PC REPAIR UTILITIES
2016-11-21 13:14 - 2016-11-30 12:55 - 00000000 ____D C:\Users\momasboi34\Desktop\GAME STUFF
2016-11-18 19:06 - 2016-11-18 19:31 - 00447115 _____ C:\Users\momasboi34\Downloads\5.1.3.6 Packet Tracer - Configuring Router-on-a-Stick Inter-VLAN Routing.pka
2016-11-18 18:53 - 2016-11-18 18:53 - 00119610 _____ C:\Users\momasboi34\Downloads\4.3.2.5 Packet Tracer - Investigating Directly Connected Routes (2).pka
2016-11-18 18:01 - 2016-11-18 18:01 - 00264696 _____ C:\Users\momasboi34\Downloads\4.1.4.5 Packet Tracer - Configuring and Verifying a Small Network (1).pka
2016-11-18 17:58 - 2016-11-18 17:58 - 00119610 _____ C:\Users\momasboi34\Downloads\4.3.2.5 Packet Tracer - Investigating Directly Connected Routes (1).pka
2016-11-18 11:30 - 2016-11-18 11:30 - 00010454 _____ C:\Users\momasboi34\Downloads\PT_Student_InterVLAN_Lab.pkt
2016-11-17 22:46 - 2016-11-17 22:46 - 00000000 ____D C:\Users\momasboi34\AppData\Local\Avira
2016-11-17 22:35 - 2016-11-17 22:35 - 01368548 _____ C:\WINDOWS\SysWOW64\winapp2_disk.csv
2016-11-17 22:31 - 2016-11-17 22:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-17 22:22 - 2016-12-05 18:03 - 00000000 ____D C:\Program Files (x86)\Avira
2016-11-17 22:21 - 2016-12-05 18:03 - 00000000 ____D C:\ProgramData\Avira
2016-11-17 22:21 - 2016-11-17 22:21 - 04520336 _____ (Avira Operations GmbH & Co. KG) C:\Users\momasboi34\Downloads\avira_en_fass0_582e9dce05442__ws.exe
2016-11-17 18:19 - 2016-11-17 18:22 - 00005035 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-11-17-18-19-46.txt
2016-11-17 18:18 - 2016-11-17 18:19 - 00002656 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-11-17-18-18-15.txt
2016-11-17 18:18 - 2016-11-17 18:18 - 02091520 _____ (Conner Bernhard) C:\Users\momasboi34\Downloads\NetAdapterRepair1.2 (1).exe
2016-11-17 18:17 - 2016-11-17 18:17 - 02091520 _____ (Conner Bernhard) C:\Users\momasboi34\Downloads\NetAdapterRepair1.2.exe
2016-11-17 18:17 - 2016-11-17 18:17 - 00002656 _____ C:\Users\momasboi34\Downloads\netadapter-log-2016-11-17-18-17-32.txt
2016-11-17 17:52 - 2016-11-17 17:52 - 07801424 _____ (Tweaking.com) C:\Users\momasboi34\Downloads\tweaking.com_hardware_identify_setup.exe
2016-11-16 19:23 - 2016-11-16 19:23 - 00264696 _____ C:\Users\momasboi34\Downloads\4.1.4.5 Packet Tracer - Configuring and Verifying a Small Network.pka
2016-11-15 22:43 - 2016-11-15 22:43 - 00119610 _____ C:\Users\momasboi34\Downloads\4.3.2.5 Packet Tracer - Investigating Directly Connected Routes.pka
2016-11-15 22:14 - 2016-11-15 22:14 - 00190766 _____ C:\Users\momasboi34\Downloads\4.1.3.5 Packet Tracer - Configuring IPv4 and IPv6 Interfaces.pka
2016-11-15 20:40 - 2016-11-15 20:40 - 00519001 _____ C:\Users\momasboi34\Downloads\4.1.2.9 Packet Tracer - Documenting the Network.pka
2016-11-15 16:00 - 2016-11-15 16:00 - 00000207 _____ C:\WINDOWS\tweaking.com-regbackup-MOMASBOI-Microsoft-Windows-8.1-(64-bit).dat
2016-11-15 15:58 - 2016-11-15 15:58 - 00000000 ____D C:\RegBackup
2016-11-15 15:57 - 2016-12-05 20:29 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2016-11-15 15:56 - 2016-11-15 15:56 - 03443632 _____ C:\Users\momasboi34\Downloads\tweaking.com_simple_system_tweaker_setup.exe
2016-11-15 15:41 - 2016-11-15 15:41 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\momasboi34\Downloads\rkill.exe
2016-11-14 14:51 - 2016-11-14 14:51 - 00523188 _____ C:\Users\momasboi34\Downloads\4.1.1.8 Packet Tracer - Using Traceroute to Discover the Network.pka
2016-11-14 13:06 - 2016-12-18 17:23 - 00000000 ____D C:\Users\momasboi34\AppData\Local\CrashDumps
2016-11-14 01:25 - 2016-12-18 11:12 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-11-14 01:24 - 2016-11-14 01:27 - 00000000 ____D C:\ProgramData\RogueKiller
2016-11-14 01:24 - 2016-11-14 01:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-11-14 01:24 - 2016-11-14 01:24 - 00000000 ____D C:\Program Files\RogueKiller
2016-11-14 01:23 - 2016-11-14 01:23 - 34114800 _____ (Adlice Software ) C:\Users\momasboi34\Desktop\setup.exe
2016-11-12 16:58 - 2016-11-12 17:11 - 00000258 __RSH C:\ProgramData\ntuser.pol
2016-11-12 16:58 - 2016-11-12 16:58 - 00937592 _____ (Akeo Consulting (hxxp://akeo.ie)) C:\Users\momasboi34\Downloads\rufus-2.11.exe
2016-11-12 16:28 - 2016-11-12 16:28 - 00000714 _____ C:\Users\momasboi34\Downloads\ProtectDriveFromAutorunVirus.zip
2016-11-12 16:22 - 2016-11-12 16:25 - 621283886 _____ C:\Users\momasboi34\Downloads\Hirens.BootCD.15.2.zip
2016-11-11 17:33 - 2016-11-11 17:33 - 00084189 _____ C:\Users\momasboi34\Downloads\3.2.4.8 Packet Tracer - Troubleshooting a VLAN Implementation - Scenario 2.pka
2016-11-11 16:45 - 2016-11-11 16:45 - 00083763 _____ C:\Users\momasboi34\Downloads\3.2.4.7 Packet Tracer - Troubleshooting a VLAN Implementation - Scenario 1.pka
2016-11-11 13:57 - 2016-11-11 13:57 - 00090052 _____ C:\Users\momasboi34\Downloads\3.2.2.4 Packet Tracer - Configuring Trunks.pka
2016-11-11 12:23 - 2016-11-11 12:23 - 00083776 _____ C:\Users\momasboi34\Downloads\3.2.1.7 Packet Tracer - Configuring VLANs (2).pka
2016-11-10 16:57 - 2016-11-10 16:57 - 00083776 _____ C:\Users\momasboi34\Downloads\3.2.1.7 Packet Tracer - Configuring VLANs (1).pka
2016-11-09 22:19 - 2016-11-09 22:19 - 00083776 _____ C:\Users\momasboi34\Downloads\3.2.1.7 Packet Tracer - Configuring VLANs.pka
2016-11-09 21:11 - 2016-11-09 21:11 - 00093354 _____ C:\Users\momasboi34\Downloads\3.1.2.7 Packet Tracer - Investigating a VLAN Implementation (1).pka
2016-11-09 20:55 - 2016-11-09 20:55 - 00093354 _____ C:\Users\momasboi34\Downloads\3.1.2.7 Packet Tracer - Investigating a VLAN Implementation.pka
2016-11-09 17:12 - 2016-11-09 17:12 - 00067741 _____ C:\Users\momasboi34\Downloads\LPN_Competency_Skills_Checklist.pdf
2016-11-09 16:06 - 2016-11-09 16:06 - 00114306 _____ C:\Users\momasboi34\Downloads\little-blue-book-17.pdf
2016-11-09 14:21 - 2016-11-09 14:21 - 00080133 _____ C:\Users\momasboi34\Downloads\3.1.1.5 Packet Tracer - Who Hears the Broadcast (1).pka
2016-11-09 14:21 - 2016-11-02 12:48 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 14:21 - 2016-11-02 12:48 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 14:21 - 2016-11-02 06:03 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 14:21 - 2016-11-02 06:00 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 14:21 - 2016-10-27 10:51 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 14:21 - 2016-10-27 10:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 14:21 - 2016-10-27 10:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 14:21 - 2016-10-27 10:05 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 14:21 - 2016-10-27 09:49 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-09 14:21 - 2016-10-27 09:47 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-09 14:21 - 2016-10-27 09:46 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-09 14:21 - 2016-10-27 09:44 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-09 14:21 - 2016-10-22 09:34 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-09 14:21 - 2016-10-22 09:27 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 14:21 - 2016-10-22 08:58 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 14:21 - 2016-10-22 08:57 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 14:21 - 2016-10-22 08:56 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 14:21 - 2016-10-22 08:46 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-09 14:21 - 2016-10-22 08:45 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-09 14:21 - 2016-10-22 08:43 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-09 14:21 - 2016-10-13 11:06 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 14:21 - 2016-10-13 11:06 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 14:21 - 2016-10-11 12:21 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 14:21 - 2016-10-11 12:21 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 14:21 - 2016-10-11 10:34 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 14:21 - 2016-10-11 09:47 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 14:21 - 2016-10-11 08:55 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 14:21 - 2016-10-10 13:17 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 14:21 - 2016-10-10 13:17 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 14:21 - 2016-10-09 14:59 - 00551256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 14:21 - 2016-10-08 14:53 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 14:21 - 2016-10-08 14:21 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 14:21 - 2016-10-08 14:18 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-09 14:21 - 2016-10-08 14:07 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 14:21 - 2016-10-08 13:49 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 14:21 - 2016-10-08 13:21 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 14:21 - 2016-10-07 17:34 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 14:21 - 2016-10-07 17:34 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 14:21 - 2016-10-04 12:39 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 14:21 - 2016-10-04 12:23 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 14:21 - 2016-10-04 12:08 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 14:21 - 2016-10-04 12:08 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-08 16:24 - 2016-11-08 20:40 - 00000000 _____ C:\Users\momasboi34\Downloads\3.1.1.5 Packet Tracer - Who Hears the Broadcast.pka
2016-11-08 16:24 - 2016-11-08 20:39 - 00559166 _____ C:\Users\momasboi34\Downloads\3.1.1.5 Packet Tracer - Who Hears the Broadcast.pka~
2016-11-06 20:13 - 2013-04-01 23:19 - 00574464 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll
2016-11-06 18:10 - 2016-11-06 18:10 - 00427384 _____ C:\Users\momasboi34\Downloads\MUR-MinorEnrollmentForm_PDF_RevisedJune2016.pdf
2016-11-06 18:10 - 2016-11-06 18:10 - 00427384 _____ C:\Users\momasboi34\Downloads\MUR-MinorEnrollmentForm_PDF_RevisedJune2016 (2).pdf
2016-11-06 18:10 - 2016-11-06 18:10 - 00427384 _____ C:\Users\momasboi34\Downloads\MUR-MinorEnrollmentForm_PDF_RevisedJune2016 (1).pdf
2016-11-05 17:55 - 2016-11-05 17:55 - 00001772 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-05 17:55 - 2016-11-05 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-05 17:54 - 2016-11-05 17:55 - 00000000 ____D C:\Program Files\iTunes
2016-11-05 17:54 - 2016-11-05 17:54 - 00000000 ____D C:\Program Files\iPod
2016-11-03 16:38 - 2016-11-03 17:35 - 00430982 _____ C:\Users\momasboi34\Downloads\2.3.1.2 Packet Tracer - Skills Integration Challenge.pka
2016-11-03 00:05 - 2016-11-03 00:05 - 00054913 _____ C:\Users\momasboi34\Downloads\2.2.4.10 Packet Tracer - Troubleshooting Switch Port Security.pka
2016-11-02 22:59 - 2016-11-02 22:59 - 00055397 _____ C:\Users\momasboi34\Downloads\2.2.4.9 Packet Tracer - Configuring Switch Port Security (1).pka
2016-11-02 20:51 - 2016-11-02 20:51 - 00127757 _____ C:\Users\momasboi34\Downloads\PlainLanguageDisclosure.pdf
2016-11-02 20:51 - 2016-11-02 20:51 - 00018164 _____ C:\Users\momasboi34\Downloads\DisclosureStatement.pdf
2016-11-02 16:58 - 2016-11-02 16:58 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4_Packet_Tracer_-_Configuring_SSH (1).pka
2016-11-02 16:54 - 2016-11-02 16:54 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4_Packet_Tracer_-_Configuring_SSH.pka
2016-11-02 16:44 - 2016-11-02 16:44 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4 Packet Tracer - Configuring SSH (4).pka
2016-11-02 16:43 - 2016-11-02 16:43 - 00055397 _____ C:\Users\momasboi34\Downloads\2.2.4.9 Packet Tracer - Configuring Switch Port Security.pka
2016-11-02 16:25 - 2016-11-02 16:25 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4 Packet Tracer - Configuring SSH (3).pka
2016-11-02 16:20 - 2016-11-02 16:20 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4 Packet Tracer - Configuring SSH (2).pka
2016-11-02 16:15 - 2016-11-02 16:15 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4 Packet Tracer - Configuring SSH (1).pka
2016-11-01 18:46 - 2016-11-01 18:46 - 00053106 _____ C:\Users\momasboi34\Downloads\2.2.1.4 Packet Tracer - Configuring SSH.pka
2016-10-31 20:58 - 2016-10-31 20:58 - 00446081 _____ C:\Users\momasboi34\Downloads\C1S2_1313.pka
2016-10-31 18:25 - 2016-10-31 18:25 - 00065523 _____ C:\Users\momasboi34\Downloads\1.3.1.3 Packet Tracer - Skills Integration Challenge.pka
2016-10-29 18:53 - 2016-10-29 18:53 - 00191051 _____ C:\Users\momasboi34\Desktop\test.pdf
2016-10-24 19:29 - 2016-12-04 19:23 - 00107426 _____ C:\Users\momasboi34\Desktop\Student Information System - Unofficial Transcript.pdf
2016-10-22 11:27 - 2016-10-22 11:27 - 00001615 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-10040514.jnlp
2016-10-20 15:12 - 2016-10-20 15:12 - 22851472 _____ (Malwarebytes ) C:\Users\momasboi34\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-19 21:29 - 2015-01-05 19:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-10-19 21:29 - 2015-01-05 18:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-10-19 21:29 - 2015-01-05 17:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-10-19 21:29 - 2015-01-05 17:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-10-19 21:28 - 2014-11-15 11:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-19 21:28 - 2014-11-14 22:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-19 21:28 - 2014-11-13 22:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-19 21:28 - 2014-11-13 21:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-19 21:28 - 2014-11-07 20:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-10-19 21:28 - 2014-11-07 19:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-10-19 21:28 - 2014-11-07 19:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-10-19 21:28 - 2014-11-07 19:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-10-19 21:28 - 2014-11-07 19:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-10-19 21:28 - 2014-11-07 19:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-10-19 21:28 - 2014-11-07 19:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-10-19 21:28 - 2014-11-07 19:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-10-19 21:28 - 2014-11-07 18:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-10-19 21:28 - 2014-11-07 18:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-10-19 21:28 - 2014-11-07 17:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-10-19 21:28 - 2014-11-07 17:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-10-19 21:28 - 2014-11-04 18:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-10-19 21:28 - 2014-11-04 18:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-10-19 21:28 - 2014-11-04 18:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-10-19 21:28 - 2014-11-04 17:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-10-19 21:28 - 2014-11-04 17:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-10-19 21:28 - 2014-11-04 17:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-10-19 21:28 - 2014-11-04 17:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-10-19 21:28 - 2014-11-04 17:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-10-19 21:28 - 2014-11-04 17:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-10-19 21:28 - 2014-11-04 11:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-19 21:28 - 2014-11-03 22:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-19 21:28 - 2014-11-03 21:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-19 21:28 - 2014-10-28 17:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-10-19 21:28 - 2014-10-28 17:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-10-19 21:28 - 2014-10-20 17:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-10-19 21:28 - 2014-10-20 17:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-10-19 21:28 - 2014-10-20 16:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-10-19 21:28 - 2014-10-20 16:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-10-19 21:28 - 2014-10-20 16:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-10-19 21:28 - 2014-10-20 16:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-10-19 21:28 - 2014-10-16 20:56 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-10-19 21:28 - 2014-10-16 19:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-19 20:57 - 2016-08-11 05:12 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-10-19 20:57 - 2016-08-11 05:11 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-10-19 20:51 - 2015-10-22 09:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2016-10-19 20:51 - 2015-10-22 09:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2016-10-19 20:51 - 2015-10-22 09:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2016-10-19 20:51 - 2015-10-22 09:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2016-10-19 20:51 - 2015-10-22 08:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2016-10-19 20:51 - 2015-10-22 08:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2016-10-19 20:51 - 2015-10-22 08:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2016-10-19 20:51 - 2015-10-22 08:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2016-10-19 20:51 - 2015-10-22 07:58 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-10-19 20:50 - 2016-09-09 14:14 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-10-19 20:50 - 2016-09-09 06:15 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-19 20:50 - 2016-09-09 06:09 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-19 20:50 - 2016-09-09 06:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-19 20:50 - 2016-09-09 06:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-19 20:50 - 2016-09-09 06:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-10-19 20:50 - 2016-09-03 10:20 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-10-19 20:50 - 2016-09-03 10:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-10-19 20:50 - 2016-09-03 09:21 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-10-19 20:50 - 2016-09-03 08:12 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-10-19 20:50 - 2016-09-03 08:05 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-19 20:50 - 2016-09-03 07:58 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-10-19 20:50 - 2016-09-02 06:05 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-19 20:50 - 2016-09-02 06:05 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-10-19 20:50 - 2016-09-01 06:33 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-19 20:50 - 2016-09-01 06:33 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-19 20:50 - 2016-09-01 06:31 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-10-19 20:50 - 2016-08-30 06:11 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-10-19 20:50 - 2016-08-29 18:45 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-10-19 20:50 - 2016-08-29 18:18 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-10-19 20:50 - 2016-08-29 18:18 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-10-19 20:50 - 2016-08-29 18:03 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-10-19 20:50 - 2016-08-22 05:34 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-19 20:50 - 2014-11-17 12:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-10-19 20:50 - 2014-11-13 22:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-10-19 12:47 - 2016-10-19 12:47 - 00096831 _____ C:\Users\momasboi34\Downloads\11.2.4.5 Packet Tracer - Configuring Secure Passwords and SSH.pka
2016-10-19 12:00 - 2016-10-19 12:00 - 00799302 _____ C:\Users\momasboi34\Downloads\10.2.3.3 Packet Tracer - FTP (1).pka
2016-10-19 11:47 - 2016-10-19 11:47 - 00799302 _____ C:\Users\momasboi34\Downloads\10.2.3.3 Packet Tracer - FTP.pka
2016-10-19 11:35 - 2016-10-19 11:35 - 00798170 _____ C:\Users\momasboi34\Downloads\10.2.2.7 Packet Tracer - DNS and DHCP.pka
2016-10-19 11:04 - 2016-10-19 11:04 - 00477045 _____ C:\Users\momasboi34\Downloads\10.2.1.7 Packet Tracer - Web and Email.pka
2016-10-16 21:04 - 2016-10-16 21:04 - 00112792 _____ C:\Users\momasboi34\Downloads\9.3.1.2 Packet Tracer Simulation - Exploration of TCP and UDP Communications.pka
2016-10-15 14:35 - 2016-10-15 14:35 - 00129172 _____ C:\Users\momasboi34\Downloads\documents.mx_9412-packet-tracer-skills-integration-challenge-instructions.pdf
2016-10-15 14:32 - 2016-10-15 14:32 - 01151214 _____ C:\Users\momasboi34\Downloads\Chapter 9b IPv6 Subnetting.pptx
2016-10-15 14:18 - 2016-10-15 15:15 - 00615666 _____ C:\Users\momasboi34\Downloads\8.4.1.2 Packet Tracer - Skills Integration Challenge (1).pka
2016-10-15 11:03 - 2016-10-15 11:03 - 00000632 _____ C:\Users\momasboi34\Downloads\calendar.ics
2016-10-14 10:35 - 2016-10-14 10:35 - 00392734 _____ C:\Users\momasboi34\Downloads\Fusion364.zip
2016-10-14 08:53 - 2016-10-14 09:23 - 717404614 _____ C:\Users\momasboi34\Downloads\Genesis_Roms_-Revive_Retro_Full_Set.7z
2016-10-14 08:34 - 2016-10-23 17:57 - 00000000 ____D C:\Users\momasboi34\Desktop\TAX TRAINING
2016-10-14 08:33 - 2016-10-14 08:33 - 00011999 _____ C:\Users\momasboi34\Downloads\choplifter(1982-84).zip
2016-10-14 08:31 - 2016-10-14 08:31 - 00640142 _____ C:\Users\momasboi34\Downloads\koleko.zip
2016-10-13 11:43 - 2016-10-13 11:43 - 35199212 _____ C:\Users\momasboi34\Downloads\SOMComm1926-1936.pdf
2016-10-13 11:40 - 2016-10-13 11:40 - 00212392 _____ C:\Users\momasboi34\Downloads\8.4.1.2 Packet Tracer - Skills Integration Challenge.pka
2016-10-13 10:54 - 2016-10-13 10:56 - 00513905 _____ C:\Users\momasboi34\Downloads\8.3.1.4 Packet Tracer - Implementing a Subnetted IPv6 Addressing Scheme (2).pka
2016-10-13 09:52 - 2016-10-13 09:52 - 00115075 _____ C:\Users\momasboi34\Downloads\8.3.1.4 Packet Tracer - Implementing a Subnetted IPv6 Addressing Scheme (1).pka
2016-10-12 22:11 - 2016-10-12 22:11 - 00048368 _____ C:\Users\momasboi34\Downloads\Super Mario Bros. + Duck Hunt (USA).zip
2016-10-12 21:21 - 2016-10-12 21:21 - 00115075 _____ C:\Users\momasboi34\Downloads\8.3.1.4 Packet Tracer - Implementing a Subnetted IPv6 Addressing Scheme.pka
2016-10-12 20:19 - 2016-10-12 20:20 - 00001613 _____ C:\Users\momasboi34\Downloads\PT-Assessment-Client-9743918.jnlp
2016-10-12 19:19 - 2016-10-12 19:19 - 00111292 _____ C:\Users\momasboi34\Downloads\i274561v1n1_i208820v1n1_288820-3.pka
2016-10-11 21:25 - 2016-10-26 22:30 - 00000411 _____ C:\Users\momasboi34\Desktop\stdout.txt
2016-10-11 21:25 - 2016-10-26 21:58 - 00000000 _____ C:\Users\momasboi34\Desktop\stderr.txt
2016-10-11 21:25 - 2016-10-11 21:25 - 00000134 ____R C:\Users\momasboi34\Desktop\Valid.Ext
2016-10-11 20:38 - 2010-06-02 03:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-10-11 20:38 - 2010-06-02 03:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-10-11 20:38 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-10-11 20:38 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-10-11 20:38 - 2010-06-02 03:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-10-11 20:38 - 2010-06-02 03:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-10-11 20:38 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-10-11 20:38 - 2010-02-04 09:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-10-11 20:38 - 2009-09-04 16:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-10-11 20:38 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-10-11 20:38 - 2009-03-16 13:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-10-11 20:38 - 2009-03-09 14:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-10-11 20:38 - 2008-10-27 09:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-10-11 20:38 - 2008-10-10 03:52 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-10-11 20:38 - 2008-07-31 09:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-10-11 20:38 - 2008-07-31 09:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-10-11 20:38 - 2008-07-31 09:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-10-11 20:38 - 2008-07-31 09:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-10-11 20:38 - 2008-07-31 09:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-10-11 20:38 - 2008-07-31 09:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-10-11 20:38 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-10-11 20:38 - 2008-07-10 10:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-10-11 20:38 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-10-11 20:38 - 2008-07-10 10:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-10-11 20:38 - 2008-07-10 10:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-10-11 20:38 - 2008-07-10 10:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-10-11 20:38 - 2008-05-30 13:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-10-11 20:38 - 2008-05-30 13:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-10-11 20:38 - 2008-05-30 13:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-10-11 20:38 - 2008-05-30 13:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-10-11 20:38 - 2008-05-30 13:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-10-11 20:38 - 2008-05-30 13:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-10-11 20:38 - 2008-05-30 13:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-10-11 20:38 - 2008-05-30 13:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-10-11 20:38 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-10-11 20:38 - 2008-03-05 15:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-10-11 20:38 - 2008-03-05 15:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-10-11 20:38 - 2008-03-05 15:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-10-11 20:38 - 2008-03-05 15:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-10-11 20:38 - 2008-03-05 15:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-10-11 20:38 - 2008-03-05 15:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-10-11 20:38 - 2008-03-05 14:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-10-11 20:38 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-10-11 20:38 - 2008-03-05 14:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-10-11 20:38 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-10-11 20:38 - 2008-02-05 22:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-10-11 20:38 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-10-11 20:38 - 2007-10-22 02:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-10-11 20:38 - 2007-10-22 02:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-10-11 20:38 - 2007-10-12 14:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-10-11 20:38 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-10-11 20:38 - 2007-10-12 14:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-10-11 20:38 - 2007-10-12 14:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-10-11 20:38 - 2007-10-02 08:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-10-11 20:38 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-10-11 20:38 - 2007-07-19 23:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-10-11 20:38 - 2007-07-19 23:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-10-11 20:38 - 2007-07-19 17:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-10-11 20:38 - 2007-07-19 17:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-10-11 20:38 - 2007-07-19 17:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-10-11 20:38 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-10-11 20:37 - 2007-10-22 02:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-10-11 20:37 - 2007-10-22 02:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-10-11 20:37 - 2007-07-19 17:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-10-11 20:37 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-10-11 20:37 - 2007-06-20 19:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-10-11 20:37 - 2007-06-20 19:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-10-11 20:37 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-10-11 20:37 - 2007-04-04 17:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-10-11 20:37 - 2007-04-04 17:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-10-11 20:37 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-10-11 20:37 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-10-11 20:37 - 2007-03-15 15:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-10-11 20:37 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-10-11 20:37 - 2007-03-12 15:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-10-11 20:37 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-10-11 20:37 - 2007-03-12 15:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-10-11 20:37 - 2007-03-12 15:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-10-11 20:37 - 2007-03-05 11:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-10-11 20:37 - 2007-03-05 11:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-10-11 20:37 - 2007-01-24 14:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-10-11 20:37 - 2007-01-24 14:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-10-11 20:37 - 2006-12-08 11:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-10-11 20:37 - 2006-12-08 11:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-10-11 20:37 - 2006-11-29 12:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-10-11 20:37 - 2006-11-29 12:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-10-11 20:37 - 2006-11-29 12:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-10-11 20:37 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-10-11 20:37 - 2006-09-28 15:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-10-11 20:37 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-10-11 20:37 - 2006-09-28 15:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-10-11 20:37 - 2006-09-28 15:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-10-11 20:37 - 2006-07-28 08:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-10-11 20:37 - 2006-07-28 08:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-10-11 20:37 - 2006-07-28 08:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-10-11 20:37 - 2006-07-28 08:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-10-11 20:37 - 2006-05-31 06:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-10-11 20:37 - 2006-05-31 06:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-10-11 20:37 - 2006-03-31 11:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-10-11 20:37 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-10-11 20:37 - 2006-03-31 11:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-10-11 20:37 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-10-11 20:37 - 2006-03-31 11:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-10-11 20:37 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-10-11 20:37 - 2006-02-03 07:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-10-11 20:37 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-10-11 20:37 - 2006-02-03 07:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-10-11 20:37 - 2006-02-03 07:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-10-11 20:37 - 2006-02-03 07:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-10-11 20:37 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-10-11 20:37 - 2005-12-05 17:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-10-11 20:37 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-10-11 20:37 - 2005-07-22 18:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-10-11 20:37 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-10-11 20:37 - 2005-05-26 14:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-10-11 20:37 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-10-11 20:37 - 2005-03-18 16:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-10-11 20:37 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-10-11 20:37 - 2005-02-05 18:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-10-11 20:37 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-10-11 20:31 - 2016-10-11 20:38 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-10-11 20:30 - 2016-10-11 20:31 - 50110688 _____ (Microsoft Corporation) C:\Users\momasboi34\Downloads\Windows-KB890830-x64-V5.41.exe
2016-10-11 20:30 - 2016-10-11 20:30 - 00292184 _____ (Microsoft Corporation) C:\Users\momasboi34\Downloads\dxwebsetup.exe
2016-10-11 19:02 - 2016-10-11 19:02 - 02003610 _____ C:\Users\momasboi34\Downloads\snes9x-1.53-x64.zip
2016-10-11 18:58 - 2016-10-11 18:58 - 06780499 _____ C:\Users\momasboi34\Downloads\2016-07-17_RetroArch.7z
2016-10-11 18:50 - 2016-10-11 18:52 - 79016567 _____ C:\Users\momasboi34\Downloads\RetroArch.7z
2016-10-11 18:18 - 2016-10-11 18:18 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-10-11 18:18 - 2016-10-11 18:18 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-10-11 18:18 - 2016-10-11 18:18 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-10-11 18:12 - 2016-10-14 13:07 - 00000000 ____D C:\Users\momasboi34\Desktop\PICS
2016-10-11 16:32 - 2016-10-11 17:00 - 688113600 _____ C:\Users\momasboi34\Downloads\SuperNintendoUSAromset.7z
2016-10-11 16:22 - 2016-10-11 16:22 - 04789020 _____ C:\Users\momasboi34\Downloads\pcsx2-1.4.0-binaries.7z
2016-10-11 16:18 - 2016-10-11 16:18 - 02067069 _____ C:\Users\momasboi34\Downloads\cemu_1.5.2.zip
2016-10-11 16:17 - 2016-10-11 16:17 - 02955789 _____ C:\Users\momasboi34\Downloads\3doplay_1.8.2_eng.rar
2016-10-11 16:12 - 2016-10-11 16:12 - 00867785 _____ C:\Users\momasboi34\Downloads\zsnesw151.zip
2016-10-11 15:53 - 2016-10-11 15:53 - 02854912 _____ C:\Users\momasboi34\Downloads\xb1usb.11059.0.140526x64.msi
2016-10-11 15:53 - 2016-10-11 15:53 - 00000000 ____D C:\Program Files\Microsoft Xbox One Controller for Windows
2016-10-11 15:22 - 2016-11-14 16:26 - 00000000 ____D C:\Users\momasboi34\Desktop\save
2016-10-11 15:22 - 2016-10-11 15:22 - 00000000 ____D C:\Users\momasboi34\Desktop\states
2016-10-11 15:22 - 2016-10-11 15:22 - 00000000 ____D C:\Users\momasboi34\Desktop\screenshots
2016-10-11 15:22 - 2016-10-11 15:22 - 00000000 ____D C:\Users\momasboi34\Desktop\samples
2016-10-11 15:22 - 2016-10-11 15:22 - 00000000 ____D C:\Users\momasboi34\Desktop\cheats
2016-10-11 15:17 - 2016-10-11 15:17 - 00132926 _____ C:\Users\momasboi34\Downloads\Mike Tyson's Punch-Out!! (USA).zip
2016-10-11 15:13 - 2008-06-08 15:59 - 02065920 _____ C:\Users\momasboi34\Downloads\nestopia.exe
2016-10-11 15:12 - 2016-10-11 15:12 - 01249640 _____ C:\Users\momasboi34\Downloads\Nestopia140bin-938 (1).zip
2016-10-11 15:12 - 2008-06-08 15:50 - 00060928 _____ C:\Users\momasboi34\Desktop\english.nlg
2016-10-11 15:11 - 2016-10-11 15:11 - 01249640 _____ C:\Users\momasboi34\Downloads\Nestopia140bin-938.zip
2016-10-11 13:06 - 2016-10-11 13:06 - 00520091 _____ C:\Users\momasboi34\Downloads\C8S1_8214.pka
2016-10-11 12:43 - 2016-09-12 15:48 - 00085680 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-11 12:43 - 2016-09-09 05:38 - 01629184 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-11 12:43 - 2016-09-09 05:38 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-11 12:43 - 2016-08-12 13:47 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-11 12:43 - 2016-08-12 12:52 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-11 12:42 - 2016-09-30 16:22 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-11 12:42 - 2016-09-17 10:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-11 12:42 - 2016-09-17 09:21 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-11 12:42 - 2016-09-13 17:53 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-11 12:42 - 2016-09-13 17:53 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-11 12:42 - 2016-09-13 17:53 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-11 12:42 - 2016-09-13 17:53 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-11 12:42 - 2016-09-12 14:03 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-11 12:42 - 2016-09-12 13:01 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-11 12:42 - 2016-09-08 12:41 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-11 12:42 - 2016-09-08 06:00 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-11 12:42 - 2016-09-08 06:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-11 12:42 - 2016-09-07 14:07 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-11 12:42 - 2016-09-07 13:59 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-11 12:42 - 2016-09-07 13:59 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-11 12:42 - 2016-09-07 13:57 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-11 12:42 - 2016-09-07 13:56 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-11 12:42 - 2016-08-25 12:50 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-10-11 12:42 - 2016-08-25 11:40 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-10-11 12:42 - 2016-08-12 16:05 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-11 12:42 - 2016-08-12 16:03 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-10-11 12:42 - 2016-08-12 16:02 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-10-11 12:42 - 2016-08-12 16:01 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-10-11 12:42 - 2016-08-12 14:35 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-10-11 12:42 - 2016-08-12 14:19 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-10-11 12:42 - 2016-08-12 13:17 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-10-11 12:42 - 2016-08-11 17:58 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-11 12:42 - 2016-08-11 17:58 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-10-11 12:42 - 2016-08-11 10:33 - 00096256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-10-11 12:42 - 2016-08-11 10:33 - 00083456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-10-11 12:42 - 2016-08-11 10:33 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-10-11 12:42 - 2016-08-11 09:17 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-10-11 12:42 - 2016-08-03 07:42 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-11 12:42 - 2016-08-03 07:36 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-10-11 12:42 - 2016-08-03 07:36 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-11 12:42 - 2016-08-03 07:33 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-10-11 12:42 - 2016-07-30 09:12 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-11 12:42 - 2016-07-30 08:36 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-10-11 12:42 - 2016-07-26 05:40 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-10-11 12:42 - 2016-07-26 05:40 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-10-11 12:42 - 2016-07-23 10:18 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-11 12:42 - 2016-07-23 10:12 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-10-11 12:39 - 2016-08-27 11:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-11 12:39 - 2016-08-27 11:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-11 12:39 - 2016-08-27 11:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-10-11 12:39 - 2016-08-27 10:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-10-11 12:39 - 2016-08-27 10:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-10-11 12:39 - 2016-08-27 10:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-10-11 12:39 - 2016-08-27 08:33 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-10-11 12:39 - 2016-08-27 08:11 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-10-11 12:39 - 2016-08-27 08:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-11 12:39 - 2016-08-27 07:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-11 10:55 - 2016-10-11 10:55 - 00123336 _____ C:\Users\momasboi34\Downloads\8.2.1.4 Packet Tracer - Designing and Implementing a VLSM Addressing Scheme (2).pka
2016-10-11 08:19 - 2016-10-11 08:19 - 00009766 _____ C:\Users\momasboi34\Documents\subnetting cheatsheet.xlsx
2016-10-09 20:44 - 2016-10-09 20:44 - 00123336 _____ C:\Users\momasboi34\Downloads\8.2.1.4 Packet Tracer - Designing and Implementing a VLSM Addressing Scheme (1).pka
2016-10-09 20:05 - 2016-10-09 20:05 - 00123336 _____ C:\Users\momasboi34\Downloads\8.2.1.4 Packet Tracer - Designing and Implementing a VLSM Addressing Scheme.pka
2016-10-09 17:49 - 2016-10-09 17:49 - 00120586 _____ C:\Users\momasboi34\Downloads\8.1.4.7 Packet Tracer - Subnetting Scenario 1.pka
2016-10-09 17:45 - 2016-10-09 17:45 - 00114975 _____ C:\Users\momasboi34\Downloads\7.3.2.5 Packet Tracer - Verifying IPv4 and IPv6 Addressing (1).pka
2016-10-09 10:24 - 2004-12-07 10:11 - 00258352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unicows.dll
2016-10-09 10:24 - 2000-05-22 16:58 - 00608448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2016-10-09 10:24 - 1998-06-24 00:00 - 00137000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmapi32.ocx
2016-10-09 10:23 - 2016-11-21 14:13 - 00000000 ____D C:\Program Files (x86)\MyHeritage
2016-10-09 10:23 - 2016-10-09 10:28 - 00000000 ____D C:\ProgramData\MyHeritage
2016-10-09 10:23 - 2016-10-09 10:25 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\MyHeritage
2016-10-09 10:19 - 2016-10-09 10:20 - 47737760 _____ C:\Users\momasboi34\Downloads\family_tree_builder_8333.exe
2016-10-08 15:58 - 2016-10-08 15:58 - 00175605 _____ C:\Users\momasboi34\Downloads\7.3.2.9 Packet Tracer - Troubleshooting IPv4 and IPv6 Addressing.pka
2016-10-08 15:05 - 2016-10-08 15:05 - 00535577 _____ C:\Users\momasboi34\Downloads\C7S1_7325.pka
2016-10-08 15:05 - 2016-10-08 15:05 - 00143510 _____ C:\Users\momasboi34\Downloads\7.3.2.6 Packet Tracer - Pinging and Tracing to Test the Path.pka
2016-10-08 14:40 - 2016-10-08 14:40 - 00114975 _____ C:\Users\momasboi34\Downloads\7.3.2.5 Packet Tracer - Verifying IPv4 and IPv6 Addressing.pka
2016-10-08 00:10 - 2016-10-08 00:10 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-08 00:10 - 2016-10-08 00:10 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-08 00:09 - 2016-10-08 00:09 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-08 00:09 - 2016-10-08 00:09 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-08 00:09 - 2016-10-08 00:09 - 00244496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
2016-10-08 00:08 - 2016-10-08 00:08 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-08 00:08 - 2016-10-08 00:08 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-08 00:08 - 2016-10-08 00:08 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-07 23:38 - 2016-10-07 23:43 - 00592608 _____ C:\Users\momasboi34\Downloads\C7S1_7249.pka
2016-10-07 22:15 - 2016-10-07 22:15 - 06956766 _____ C:\Users\momasboi34\Downloads\C6S1_6434.pka
2016-10-07 22:04 - 2016-10-07 22:04 - 00192854 _____ C:\Users\momasboi34\Downloads\7.2.4.9 Packet Tracer - Configuring IPv6 Addressing (1).pka
2016-10-06 19:40 - 2016-10-06 19:40 - 00192854 _____ C:\Users\momasboi34\Downloads\7.2.4.9 Packet Tracer - Configuring IPv6 Addressing.pka
2016-10-05 11:20 - 2016-10-05 11:20 - 00267819 _____ C:\Users\momasboi34\Downloads\6.4.3.4 Packet Tracer - Troubleshooting Default Gateway Issues (1).pka
2016-10-03 15:56 - 2016-10-03 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-10-03 13:35 - 2016-10-03 13:35 - 00553914 _____ C:\Users\momasboi34\Downloads\HealthSummary20161003 (2).zip
2016-10-03 13:35 - 2016-10-03 13:35 - 00448271 _____ C:\Users\momasboi34\Downloads\HealthSummary20161003.zip
2016-10-03 13:35 - 2016-10-03 13:35 - 00363383 _____ C:\Users\momasboi34\Downloads\HealthSummary20161003 (1).zip
2016-10-03 04:40 - 2016-10-03 04:40 - 06168584 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlane.sys
2016-10-03 04:32 - 2016-10-03 04:32 - 00022454 _____ C:\WINDOWS\system32\Drivers\rtldata.txt
2016-10-01 19:20 - 2016-10-01 19:20 - 00007476 _____ C:\Users\momasboi34\Downloads\Latasha-Proctor (1).pdf
2016-10-01 15:53 - 2016-10-01 15:53 - 00698112 _____ C:\Users\momasboi34\Downloads\T104_T104_TranscribeMe General Style Guide August 2014.pdf
2016-09-30 17:39 - 2016-09-30 17:39 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\PlaysTV
2016-09-30 16:08 - 2016-09-30 16:08 - 00267819 _____ C:\Users\momasboi34\Downloads\6.4.3.4 Packet Tracer - Troubleshooting Default Gateway Issues.pka
2016-09-30 14:45 - 2016-09-30 14:45 - 00126681 _____ C:\Users\momasboi34\Downloads\6.4.3.3 Packet Tracer - Connect a Router to a LAN.pka
2016-09-30 13:52 - 2016-09-30 13:52 - 00060211 _____ C:\Users\momasboi34\Downloads\6.4.1.3 Packet Tracer - Configure Initial Router Settings.pka
2016-09-30 08:24 - 2016-09-30 08:24 - 00124905 _____ C:\Users\momasboi34\Downloads\CSEP Computer Network and Security Management.pdf
2016-09-30 07:02 - 2016-09-30 07:02 - 00000000 ____D C:\Users\momasboi34\Documents\CyberLink
2016-09-30 06:48 - 2016-09-30 06:48 - 00000000 ____D C:\Users\momasboi34\Downloads\SysinternalsSuite
2016-09-29 19:15 - 2016-09-29 19:15 - 00000000 ____D C:\Users\momasboi34\Documents\Avatar
2016-09-29 11:44 - 2016-09-29 11:45 - 71351646 _____ C:\Users\momasboi34\Downloads\gf_full.zip
2016-09-29 10:51 - 2016-09-29 10:51 - 00000000 ____D C:\ProgramData\ATI
2016-09-29 10:47 - 2016-09-29 10:47 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\momasboi34\Downloads\autodetectutility (2).exe
2016-09-28 21:30 - 2016-09-28 21:30 - 00000000 ____D C:\WINDOWS\HP
2016-09-28 21:28 - 2016-09-28 21:28 - 23000744 _____ (HP ) C:\Users\momasboi34\Downloads\sp74845.exe
2016-09-28 20:53 - 2016-09-30 17:38 - 00002042 _____ C:\Users\Public\Desktop\Raptr.lnk
2016-09-28 20:53 - 2016-09-30 07:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-09-28 20:53 - 2016-09-28 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-09-28 20:50 - 2016-09-28 20:51 - 00000000 ____D C:\Program Files (x86)\Raptr Inc
2016-09-28 20:50 - 2016-09-28 20:50 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\library_dir
2016-09-28 20:49 - 2016-10-26 22:21 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\Raptr
2016-09-28 20:48 - 2016-09-28 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2016-09-28 20:47 - 2016-09-28 20:47 - 00000000 ____D C:\Program Files (x86)\AMD
2016-09-28 20:39 - 2016-09-29 10:51 - 00000000 ____D C:\AMD
2016-09-28 20:37 - 2016-09-28 20:37 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\momasboi34\Downloads\autodetectutility (1).exe
2016-09-28 20:34 - 2016-09-28 20:34 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\momasboi34\Downloads\autodetectutility.exe
2016-09-28 20:14 - 2016-09-28 20:14 - 00387072 _____ (TweakBit) C:\Users\momasboi34\Downloads\driver-updater-setup.exe
2016-09-27 09:18 - 2016-09-27 09:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-09-27 09:18 - 2016-09-27 09:18 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-09-27 08:50 - 2016-09-27 08:50 - 06334848 ____N (AVAST Software) C:\Users\momasboi34\Downloads\avast_free_antivirus_setup_online (1).exe
2016-09-27 08:46 - 2016-09-27 08:46 - 06334848 _____ (AVAST Software) C:\Users\momasboi34\Downloads\avast_free_antivirus_setup_online.exe
2016-09-26 08:32 - 2016-09-26 08:32 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\Sun
2016-09-26 08:32 - 2016-09-26 08:32 - 00000000 ____D C:\Users\momasboi34\AppData\LocalLow\Sun
2016-09-26 08:32 - 2016-09-26 08:32 - 00000000 ____D C:\Users\momasboi34\.oracle_jre_usage
2016-09-26 08:31 - 2016-10-18 21:28 - 00000000 ____D C:\ProgramData\Oracle
2016-09-26 08:29 - 2016-09-26 08:29 - 00739904 _____ (Oracle Corporation) C:\Users\momasboi34\Downloads\chromeinstall-8u101.exe
2016-09-25 10:35 - 2016-09-25 10:35 - 00475882 _____ C:\Users\momasboi34\Downloads\Appendix Lab - Observing ARP with the Windows CLI, IOS CLI, and Wireshark.pdf
2016-09-24 19:49 - 2016-09-24 19:49 - 00118411 _____ C:\Users\momasboi34\Downloads\5.3.2.8 Packet Tracer - Examine the ARP Table.pka
2016-09-24 18:55 - 2016-09-24 18:55 - 00099819 _____ C:\Users\momasboi34\Downloads\5.3.1.3 Packet Tracer - Identify MAC and IP Addresses.pka
2016-09-24 12:42 - 2016-09-24 12:42 - 10918532 _____ (ALS ) C:\Users\momasboi34\Downloads\CMEngine (1).exe
2016-09-24 12:38 - 2016-09-24 12:38 - 00000000 ____D C:\ProgramData\ExamForce
2016-09-24 12:36 - 2016-09-24 12:36 - 10918532 _____ (ALS ) C:\Users\momasboi34\Downloads\CMEngine.exe
2016-09-24 12:34 - 2016-09-24 12:34 - 01600364 _____ C:\Users\momasboi34\Downloads\w_mach01.pdf
2016-09-24 12:32 - 2016-09-24 12:32 - 00339532 _____ C:\Users\momasboi34\Downloads\LF_SysAdmin_Guidebook.pdf
2016-09-22 17:05 - 2016-09-22 17:05 - 00166048 _____ C:\Users\momasboi34\Downloads\06543.pdf
2016-09-22 16:02 - 2016-09-22 16:02 - 00069678 _____ C:\Users\momasboi34\Downloads\MyStudentData (1).txt
2016-09-22 16:01 - 2016-09-22 16:01 - 00069678 _____ C:\Users\momasboi34\Downloads\MyStudentData.txt
2016-09-20 20:09 - 2016-09-20 20:09 - 00007476 _____ C:\Users\momasboi34\Downloads\Latasha-Proctor.pdf
 
==================== Three Months Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-19 09:39 - 2016-03-02 23:30 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-19 09:28 - 2014-03-18 01:53 - 00956540 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-19 09:28 - 2013-08-22 05:36 - 00000000 ____D C:\WINDOWS\Inf
2016-12-19 09:23 - 2016-02-05 18:51 - 00000000 ____D C:\Users\momasboi34
2016-12-19 09:22 - 2013-08-22 06:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-18 18:07 - 2016-08-30 17:34 - 00000178 _____ C:\Users\momasboi34\.packettracer
2016-12-18 17:28 - 2016-05-23 22:38 - 00000370 _____ C:\WINDOWS\Tasks\HPCeeScheduleFormomasboi34.job
2016-12-18 17:27 - 2014-11-26 03:55 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-12-18 14:18 - 2014-11-26 04:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-12-18 14:15 - 2014-11-26 04:11 - 00000000 ____D C:\ProgramData\WildTangent
2016-12-18 09:05 - 2016-02-10 19:17 - 00000000 ____D C:\Users\momasboi34\AppData\Local\ElevatedDiagnostics
2016-12-17 17:24 - 2016-07-08 12:58 - 00000000 ____D C:\Program Files (x86)\Panda Security
2016-12-17 14:01 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\rescache
2016-12-17 13:54 - 2014-11-26 03:53 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-17 13:39 - 2013-08-22 06:45 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-12-17 11:57 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-12-16 19:26 - 2016-08-27 09:18 - 00002359 _____ C:\Users\momasboi34\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-12-15 11:03 - 2016-02-07 20:38 - 00002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-15 11:03 - 2016-02-07 20:38 - 00002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-15 10:51 - 2016-02-12 18:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-15 10:43 - 2016-02-12 18:58 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-14 17:15 - 2013-08-22 06:44 - 00532456 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-14 16:57 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-12-14 16:51 - 2016-07-08 12:58 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\Panda Security
2016-12-14 16:51 - 2016-07-08 12:55 - 00000000 ____D C:\ProgramData\Panda Security
2016-12-14 10:47 - 2016-02-07 20:33 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-14 09:37 - 2013-08-22 05:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-14 08:39 - 2016-03-02 23:30 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-12-14 08:39 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-12-13 21:26 - 2013-08-22 05:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-12-11 16:07 - 2016-09-01 12:57 - 00000000 ____D C:\Users\momasboi34\Cisco Packet Tracer 7.0
2016-12-11 16:07 - 2016-08-30 17:34 - 00000000 ____D C:\Users\momasboi34\Desktop\Cisco Packet Tracer 7.0
2016-12-08 11:09 - 2016-08-17 16:29 - 00000000 ____D C:\Users\momasboi34\AppData\Roaming\Acrylic Wi-Fi Home
2016-12-07 09:23 - 2016-06-29 17:09 - 00000000 ____D C:\Users\momasboi34\AppData\Local\CutePDF Writer
2016-12-06 18:59 - 2016-02-05 18:52 - 00000000 ____D C:\Users\momasboi34\AppData\Local\Packages
2016-12-05 18:23 - 2016-06-13 18:45 - 00000000 ____D C:\Users\momasboi34\.VirtualBox
2016-12-01 17:33 - 2016-02-13 11:33 - 00000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForMOMASBOI$.job
2016-11-30 13:04 - 2013-08-22 07:36 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-11-22 13:33 - 2013-08-22 07:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-22 13:32 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-22 13:30 - 2016-08-25 23:18 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-21 13:18 - 2016-08-30 17:16 - 00000000 ___RD C:\Users\momasboi34\Desktop\CS972
 
==================== Files in the root of some directories =======
 
2016-08-02 20:00 - 2016-08-02 20:00 - 0000017 _____ () C:\Users\momasboi34\AppData\Local\resmon.resmoncfg
2016-08-30 17:35 - 2016-08-30 17:36 - 0021504 _____ () C:\Users\momasboi34\AppData\Local\WebpageIcons.db
 
Some files in TEMP:
====================
C:\Users\momasboi34\AppData\Local\Temp\GHBSBWR.exe
C:\Users\momasboi34\AppData\Local\Temp\NHGORM.exe
C:\Users\momasboi34\AppData\Local\Temp\NKPEQVHU.exe
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== BCD ================================
 
Firmware Boot Manager
---------------------
identifier              {fwbootmgr}
displayorder            {bootmgr}
                        {5d4f1426-756a-11e4-aa75-a3f40dfd0385}
                        {32614d25-cc7a-11e5-a519-bd3d06db7488}
                        {44858d38-c49e-11e6-82b4-806e6f6e6963}
                        {44858d37-c49e-11e6-82b4-806e6f6e6963}
                        {5d4f142a-756a-11e4-aa75-a3f40dfd0385}
                        {32614d26-cc7a-11e5-a519-bd3d06db7488}
timeout                 2
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
integrityservices       Enable
default                 {current}
resumeobject            {cc2d7ab2-7575-11e4-825b-3863bbaf5b15}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30
 
Firmware Application (101fffff)
-------------------------------
identifier              {32614d25-cc7a-11e5-a519-bd3d06db7488}
device                  partition=\Device\HarddiskVolume2
description             Internal Hard Disk
 
Firmware Application (101fffff)
-------------------------------
identifier              {32614d26-cc7a-11e5-a519-bd3d06db7488}
description             Internal CD/DVD ROM Drive(UEFI)
 
Firmware Application (101fffff)
-------------------------------
identifier              {44858d37-c49e-11e6-82b4-806e6f6e6963}
description             Internal CD/DVD ROM Drive(UEFI)
 
Firmware Application (101fffff)
-------------------------------
identifier              {44858d38-c49e-11e6-82b4-806e6f6e6963}
description             USB Drive (UEFI)
 
Firmware Application (101fffff)
-------------------------------
identifier              {5d4f1426-756a-11e4-aa75-a3f40dfd0385}
device                  partition=\Device\HarddiskVolume2
description             Internal Hard Disk
 
Firmware Application (101fffff)
-------------------------------
identifier              {5d4f142a-756a-11e4-aa75-a3f40dfd0385}
description             Internal CD/DVD ROM Drive(UEFI)
 
Windows Boot Loader
-------------------
identifier              {32614d28-cc7a-11e5-a519-bd3d06db7488}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{32614d29-cc7a-11e5-a519-bd3d06db7488}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{32614d29-cc7a-11e5-a519-bd3d06db7488}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Windows Boot Loader
-------------------
identifier              {cc2d7aa6-7575-11e4-825b-3863bbaf5b15}
device                  ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{cc2d7aa7-7575-11e4-825b-3863bbaf5b15}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{cc2d7aa7-7575-11e4-825b-3863bbaf5b15}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Windows Boot Loader
-------------------
identifier              {cc2d7aab-7575-11e4-825b-3863bbaf5b15}
device                  ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{cc2d7aac-7575-11e4-825b-3863bbaf5b15}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{cc2d7aac-7575-11e4-825b-3863bbaf5b15}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.efi
description             Windows 8.1
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {32614d28-cc7a-11e5-a519-bd3d06db7488}
integrityservices       Enable
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {cc2d7ab2-7575-11e4-825b-3863bbaf5b15}
nx                      OptIn
bootmenupolicy          Standard
 
Resume from Hibernate
---------------------
identifier              {5d4f142c-756a-11e4-aa75-a3f40dfd0385}
device                  partition=C:
path                    \Windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {cc2d7aa6-7575-11e4-825b-3863bbaf5b15}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Resume from Hibernate
---------------------
identifier              {cc2d7aa9-7575-11e4-825b-3863bbaf5b15}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {cc2d7aab-7575-11e4-825b-3863bbaf5b15}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Resume from Hibernate
---------------------
identifier              {cc2d7ab2-7575-11e4-825b-3863bbaf5b15}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {32614d28-cc7a-11e5-a519-bd3d06db7488}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\memtest.efi
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 No
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {32614d29-cc7a-11e5-a519-bd3d06db7488}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {cc2d7aa7-7575-11e4-825b-3863bbaf5b15}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume1
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {cc2d7aa8-7575-11e4-825b-3863bbaf5b15}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
 
Device options
--------------
identifier              {cc2d7aac-7575-11e4-825b-3863bbaf5b15}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume5
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {cc2d7aad-7575-11e4-825b-3863bbaf5b15}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
 
 
LastRegBack: 2016-12-18 09:04
 
==================== End of FRST.txt ============================


#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:08 AM

Posted 20 December 2016 - 10:17 AM

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.
 
Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM-x32\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
GroupPolicy: Restriction <======= ATTENTION
BHO: No Name -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> No File
BHO-x32: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll => No File
FF Extension: (No Name) - C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [not found]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
CHR Extension: (Ebates Cash Back) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi [2016-11-15]
CHR Extension: (Avira Browser Safety) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-11-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhfhojbhbnajajgihpicejdalbjlpcep] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eoalfhodgifhbkgmbbdafcihjpdldpll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [okmhneofinpilciglijihehjpaegledb] - <no Path/update_url>
U0 aswVmm; no ImagePath
Task: {11E21AFF-096A-40CA-93CF-BC1C5CA907BE} - \Start OPBHOBroker -> No File <==== ATTENTION
Task: {2081C6C2-029D-4A88-802E-0D116762E34A} - \PandaUSBVaccine -> No File <==== ATTENTION
Task: {4798E61C-7099-4BC3-B81C-E9BB28E44EEF} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {481DE482-8B8B-4715-854B-D67E007AA1BC} - \Start OPBHOBrokerDesktop -> No File <==== ATTENTION
Task: {5257711E-AC9B-4A14-82B8-BD62F185FC0A} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {590801FA-A08D-4115-BC7F-6EADF616EC89} - \SweetLabs App Platform -> No File <==== ATTENTION
Task: {69680FC2-5622-4C2D-8999-DD5EA61C11A6} - \HPCeeScheduleForMOMASBOI$ -> No File <==== ATTENTION
Task: {81668DD1-76B5-40A5-84D4-337E58352D01} - \Start SimplePass -> No File <==== ATTENTION
Task: {9B58D1F0-AC12-49F4-A58F-C91A27CD73DC} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {A2090239-2279-4A14-928F-EA9E6102C589} - \Microsoft OneDrive Auto Update Task-S-1-5-21-618084492-1320085081-182099660-1002 -> No File <==== ATTENTION
Task: {C3D08294-B4FE-463B-9DAA-F9CC80FF7D9A} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {D10748E0-F602-466C-BC53-222AD397D188} - \YCMServiceAgent -> No File <==== ATTENTION
Task: {D3045CA2-FE90-4C31-B9DB-7B062034F6B9} - \Optimize Start Menu Cache Files-S-1-5-21-618084492-1320085081-182099660-500 -> No File <==== ATTENTION
Task: {F0D7F1D5-B0D0-4646-AFEF-908D38E4416B} - \avast! Emergency Update -> No File <==== ATTENTION
C:\Users\momasboi34\AppData\Local\Temp\GHBSBWR.exe
C:\Users\momasboi34\AppData\Local\Temp\NHGORM.exe
C:\Users\momasboi34\AppData\Local\Temp\NKPEQVHU.exe


Reboot:

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.

Please let me know how the computer is performing.

Please let me know what problem persists with this computer.

#5 momasboi

momasboi
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:03:08 AM

Posted 20 December 2016 - 05:34 PM

Hi Nasdaq

I did what you requested, what exactly did that do and what did you find by looking at that info can you please give me a brief explanation. My computer so far is fine but I just did it so we will see in a few days how it is, I know I brought my friends computer over here about two weeks ago and attempted to remove a virus from her computer, I believe it is a rogue virus but i think i transfered something onto mine by way of USB, here is the fix log Fix result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016

Ran by momasboi34 (20-12-2016 14:24:11) Run:1
Running from C:\Users\momasboi34\Downloads
Loaded Profiles: momasboi34 (Available Profiles: momasboi34)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
Start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
HKLM-x32\...\Run: [] =>
[X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
GroupPolicy: Restriction <======= ATTENTION
BHO: No Name -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> No File
BHO-x32: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll => No File
FF Extension: (No Name) - C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [not found]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
CHR Extension: (Ebates Cash Back) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi [2016-11-15]
CHR Extension: (Avira Browser Safety) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-11-17]
CHR
Extension: (Chrome Web Store Payments) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhfhojbhbnajajgihpicejdalbjlpcep] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eoalfhodgifhbkgmbbdafcihjpdldpll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [okmhneofinpilciglijihehjpaegledb] - <no Path/update_url>
U0 aswVmm; no ImagePath
Task: {11E21AFF-096A-40CA-93CF-BC1C5CA907BE} - \Start OPBHOBroker
-> No File <==== ATTENTION
Task: {2081C6C2-029D-4A88-802E-0D116762E34A} - \PandaUSBVaccine -> No File <==== ATTENTION
Task: {4798E61C-7099-4BC3-B81C-E9BB28E44EEF} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {481DE482-8B8B-4715-854B-D67E007AA1BC} - \Start OPBHOBrokerDesktop -> No File <==== ATTENTION
Task: {5257711E-AC9B-4A14-82B8-BD62F185FC0A} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {590801FA-A08D-4115-BC7F-6EADF616EC89} - \SweetLabs App Platform -> No File <==== ATTENTION
Task: {69680FC2-5622-4C2D-8999-DD5EA61C11A6} - \HPCeeScheduleForMOMASBOI$ -> No File <==== ATTENTION
Task: {81668DD1-76B5-40A5-84D4-337E58352D01} - \Start SimplePass -> No File <==== ATTENTION
Task: {9B58D1F0-AC12-49F4-A58F-C91A27CD73DC} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {A2090239-2279-4A14-928F-EA9E6102C589} - \Microsoft OneDrive Auto Update Task-S-1-5-21-618084492-1320085081-182099660-1002
-> No File <==== ATTENTION
Task: {C3D08294-B4FE-463B-9DAA-F9CC80FF7D9A} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {D10748E0-F602-466C-BC53-222AD397D188} - \YCMServiceAgent -> No File <==== ATTENTION
Task: {D3045CA2-FE90-4C31-B9DB-7B062034F6B9} - \Optimize Start Menu Cache Files-S-1-5-21-618084492-1320085081-182099660-500 -> No File <==== ATTENTION
Task: {F0D7F1D5-B0D0-4646-AFEF-908D38E4416B} - \avast! Emergency Update -> No File <==== ATTENTION
C:\Users\momasboi34\AppData\Local\Temp\GHBSBWR.exe
C:\Users\momasboi34\AppData\Local\Temp\NHGORM.exe
C:\Users\momasboi34\AppData\Local\Temp\NKPEQVHU.exe
 
 
Reboot:
 
End
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
[X] => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found. 
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}" => key removed successfully
HKCR\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} => key not found. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}" => key removed successfully
C:\Users\momasboi34\AppData\Roaming\Mozilla\Firefox\Profiles\aed6r1j0.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi => path removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\firefox@bho.com => value removed successfully
C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi => moved successfully
C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => moved successfully
CHR => Error: No automatic fix found for this entry.
Extension: (Chrome Web Store Payments) - C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06] => Error: No automatic fix found for this entry.
C:\Users\momasboi34\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bhfhojbhbnajajgihpicejdalbjlpcep" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eoalfhodgifhbkgmbbdafcihjpdldpll" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\okmhneofinpilciglijihehjpaegledb" => key removed successfully
aswVmm => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11E21AFF-096A-40CA-93CF-BC1C5CA907BE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11E21AFF-096A-40CA-93CF-BC1C5CA907BE}" => key removed successfully
-> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2081C6C2-029D-4A88-802E-0D116762E34A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2081C6C2-029D-4A88-802E-0D116762E34A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PandaUSBVaccine" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4798E61C-7099-4BC3-B81C-E9BB28E44EEF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4798E61C-7099-4BC3-B81C-E9BB28E44EEF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{481DE482-8B8B-4715-854B-D67E007AA1BC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{481DE482-8B8B-4715-854B-D67E007AA1BC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start OPBHOBrokerDesktop" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5257711E-AC9B-4A14-82B8-BD62F185FC0A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5257711E-AC9B-4A14-82B8-BD62F185FC0A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{590801FA-A08D-4115-BC7F-6EADF616EC89}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{590801FA-A08D-4115-BC7F-6EADF616EC89}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69680FC2-5622-4C2D-8999-DD5EA61C11A6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69680FC2-5622-4C2D-8999-DD5EA61C11A6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForMOMASBOI$" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{81668DD1-76B5-40A5-84D4-337E58352D01}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81668DD1-76B5-40A5-84D4-337E58352D01}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start SimplePass" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B58D1F0-AC12-49F4-A58F-C91A27CD73DC} => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2090239-2279-4A14-928F-EA9E6102C589}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2090239-2279-4A14-928F-EA9E6102C589}" => key removed successfully
-> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C3D08294-B4FE-463B-9DAA-F9CC80FF7D9A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3D08294-B4FE-463B-9DAA-F9CC80FF7D9A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task v2" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D10748E0-F602-466C-BC53-222AD397D188}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D10748E0-F602-466C-BC53-222AD397D188}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YCMServiceAgent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3045CA2-FE90-4C31-B9DB-7B062034F6B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3045CA2-FE90-4C31-B9DB-7B062034F6B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Start Menu Cache Files-S-1-5-21-618084492-1320085081-182099660-500" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{F0D7F1D5-B0D0-4646-AFEF-908D38E4416B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0D7F1D5-B0D0-4646-AFEF-908D38E4416B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Emergency Update" => key removed successfully
C:\Users\momasboi34\AppData\Local\Temp\GHBSBWR.exe => moved successfully
C:\Users\momasboi34\AppData\Local\Temp\NHGORM.exe => moved successfully
C:\Users\momasboi34\AppData\Local\Temp\NKPEQVHU.exe => moved successfully
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 20971520 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20279990 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 6985839 B
Edge => 0 B
Chrome => 111076518 B
Firefox => 14824790 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5756 B
NetworkService => 0 B
momasboi34 => 33550476 B
PCPitstopSVC => 0 B
 
RecycleBin => 2758704 B
EmptyTemp: => 200.7 MB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 14:25:23 ====


#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:08 AM

Posted 21 December 2016 - 07:55 AM

I think the cause was with the Chrome Extensions that I removed.

How they got installed I cannot say.

===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users