Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    Night Eye Extension Adds a Dark Mode to Websites

Featured Deal: Get 92% off The Complete Cisco Network Certification Training Bundle

Photo

error Filename+mgr

Started by swantonishere , Nov 14 2017 04:39 PM

  • This topic is locked This topic is locked
3 replies to this topic

#1 swantonishere

swantonishere

  • Members
  • 3 posts
  • OFFLINE
    •  
  • Local time:11:56 AM

Posted 14 November 2017 - 04:39 PM

my laptop formatted few hours ago then when i open some apps it pop Filename+mgr.exe i dont know how to fix it so i found this forum help to fix this is

 

my FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
Ran by Kenny Darjuan (administrator) on KENNYDARJUAN-PC (15-11-2017 05:28:17)
Running from C:\Users\Kenny Darjuan\Downloads\Programs
Loaded Profiles: Kenny Darjuan (Available Profiles: Kenny Darjuan)
Platform: Windows 7 Ultimate (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
(Alcor) C:\Windows\WebCam\S6000\S6000Mnt.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-14] (AVAST Software)
HKLM-x32\...\Run: [S6000Mnt] => C:\Windows\SysWOW64\Rundll32.exe S6000Rmv.dll,WinMainRmv /StartStillMnt
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\Run: [Mobile Partner] => C:\Program Files (x86)\Tattoo\Tattoo
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4015216 2016-12-15] (Tonec Inc.)
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\Run: [MurGee.com Auto Clicker] => C:\Users\Kenny Darjuan\AppData\Roaming\Auto Clicker\AutoClicker.exe [124072 2016-10-27] (MurGee.com)
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\MountPoints2: {3a0b5593-c9cf-11e7-8088-047d7b966c41} - G:\AutoRun.exe
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\MountPoints2: {3a0b5597-c9cf-11e7-8088-047d7b966c41} - G:\AutoRun.exe
Startup: C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2017-11-15]
ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe ()
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{95DDA1EB-CAF7-47BE-9BC6-38F68540A5EC}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{9BC8E903-043C-439E-97C0-54D924A4A67E}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{F665DF18-3728-4735-951C-7F725BB3F79F}: [DhcpNameServer] 8.8.8.8
 
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-14] (AVAST Software)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-14] (AVAST Software)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: v5bnavpi.default
FF ProfilePath: C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default [2017-11-15]
FF Session Restore: Mozilla\Firefox\Profiles\v5bnavpi.default -> is enabled.
FF Extension: (Советник Яндекс.Маркета) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2017-11-15]
FF Extension: (Visual Bookmarks) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\vb@yandex.ru.xpi [2017-11-15]
FF HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Kenny Darjuan\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Kenny Darjuan\AppData\Roaming\IDM\idmmzcc5 [2017-11-15] [not signed]
FF HKU\S-1-5-21-102698598-1727250080-1170495968-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-25] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-25] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX
CHR StartupUrls: Default -> "hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX"
CHR Profile: C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default [2017-11-15]
CHR Extension: (Slides) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-15]
CHR Extension: (Docs) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-15]
CHR Extension: (Google Drive) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-15]
CHR Extension: (YouTube) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-15]
CHR Extension: (Sheets) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-15]
CHR Extension: (Google Docs Offline) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-15]
CHR Extension: (softorama) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog [2017-11-15]
CHR Extension: (Emoji for Google Chrome™) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\immhpnclomdloikkpcefncmfgjbkojmh [2017-11-15]
CHR Extension: (IDM Integration Module) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-11-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-15]
CHR Extension: (Gmail) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-15]
CHR Extension: (Chrome Media Router) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-15]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-12-15]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-12-15]
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-14] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-14] (AVAST Software)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [252008 2016-05-06] (Synaptics Incorporated)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183584 2017-11-14] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321032 2017-11-14] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [198968 2017-11-14] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343288 2017-11-14] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57728 2017-11-14] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47008 2017-11-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [148288 2017-11-14] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110376 2017-11-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84416 2017-11-14] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1026232 2017-11-14] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [455384 2017-11-14] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203976 2017-11-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [364464 2017-11-14] (AVAST Software)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2013-07-18] (Qualcomm Atheros Co., Ltd.)
R3 S6000KNT; C:\Windows\System32\Drivers\S6000KNT.sys [3293400 2010-12-23] (Windows ® Win 7 DDK provider)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-11-15 05:27 - 2017-11-15 05:28 - 000000000 ____D C:\FRST
2017-11-15 05:22 - 2017-11-15 05:22 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Google
2017-11-15 04:31 - 2017-11-15 05:21 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2017-11-15 04:28 - 2017-11-15 04:28 - 000001101 _____ C:\Users\Public\Desktop\iTexMo.lnk
2017-11-15 04:28 - 2017-11-15 04:28 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\AwesomePats
2017-11-15 04:28 - 2017-11-15 04:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AwesomePats
2017-11-15 04:28 - 2017-11-15 04:28 - 000000000 ____D C:\Program Files (x86)\AwesomePats
2017-11-15 04:23 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-11-15 04:23 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-11-15 04:23 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-11-15 04:23 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-11-15 04:23 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-11-15 04:23 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-11-15 04:23 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-11-15 04:23 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-11-15 04:23 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-11-15 04:23 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-11-15 04:23 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-11-15 04:22 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-11-15 04:22 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-11-15 04:22 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-11-15 04:22 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-11-15 04:22 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-11-15 04:22 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-11-15 04:22 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-11-15 04:22 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-11-15 04:22 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-11-15 04:22 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-11-15 04:22 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-11-15 04:22 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-11-15 04:22 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-11-15 04:22 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-11-15 04:22 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-11-15 04:22 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-11-15 04:22 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-11-15 04:22 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-11-15 04:22 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-11-15 04:22 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-11-15 04:22 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-11-15 04:22 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-11-15 04:22 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-11-15 04:22 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-11-15 04:22 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-11-15 04:22 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-11-15 04:22 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-11-15 04:22 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-11-15 04:22 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-11-15 04:22 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-11-15 04:22 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-11-15 04:21 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-11-15 04:21 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-11-15 04:21 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-11-15 04:21 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-11-15 04:21 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-11-15 04:21 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-11-15 04:21 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-11-15 04:21 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-11-15 04:21 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-11-15 04:21 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-11-15 04:21 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-11-15 04:21 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-11-15 04:21 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-11-15 04:21 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-11-15 04:21 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-11-15 04:21 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-11-15 04:21 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-11-15 04:21 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-11-15 04:21 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-11-15 04:21 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-11-15 04:21 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-11-15 04:21 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-11-15 04:21 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-11-15 04:21 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-11-15 04:21 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-11-15 04:21 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-11-15 04:21 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-11-15 04:21 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-11-15 04:21 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-11-15 04:21 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-11-15 04:21 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-11-15 04:21 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-11-15 04:21 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-11-15 04:21 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-11-15 04:21 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-11-15 04:21 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-11-15 04:21 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-11-15 04:21 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-11-15 04:21 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-11-15 04:21 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-11-15 04:21 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-11-15 04:21 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-11-15 04:21 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-11-15 04:21 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-11-15 04:21 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-11-15 04:21 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-11-15 04:21 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-11-15 04:21 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-11-15 04:21 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-11-15 04:21 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-11-15 04:21 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-11-15 04:21 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-11-15 04:21 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-11-15 04:21 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-11-15 04:21 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-11-15 04:21 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-11-15 04:21 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-11-15 04:21 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-11-15 04:21 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-11-15 04:21 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-11-15 04:21 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-11-15 04:21 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-11-15 04:20 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-11-15 04:20 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-11-15 04:20 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-11-15 04:20 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-11-15 04:20 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-11-15 04:20 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-11-15 04:20 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-11-15 04:20 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-11-15 04:20 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-11-15 04:20 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-11-15 04:20 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-11-15 04:20 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-11-15 04:20 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-11-15 04:20 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-11-15 04:20 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-11-15 04:20 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-11-15 04:20 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-11-15 04:20 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-11-15 04:08 - 2017-11-15 04:08 - 000001045 _____ C:\Users\Kenny Darjuan\Desktop\Auto Clicker for Games.lnk
2017-11-15 04:08 - 2017-11-15 04:08 - 000001005 _____ C:\Users\Kenny Darjuan\Desktop\Auto Clicker.lnk
2017-11-15 04:08 - 2017-11-15 04:08 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Auto Clicker
2017-11-15 04:08 - 2017-11-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Clicker
2017-11-15 04:07 - 2017-02-14 14:13 - 000000000 ____D C:\Users\Kenny Darjuan\Desktop\best4pc.com
2017-11-15 04:06 - 2017-11-15 04:06 - 000000000 ____D C:\Users\Kenny Darjuan\Desktop\New folder
2017-11-15 04:06 - 2017-02-14 07:15 - 000855741 _____ C:\Users\Kenny Darjuan\Desktop\best4pc.com.rar
2017-11-15 03:46 - 2017-11-14 20:56 - 000837350 _____ (Hanbitsoft corp.) C:\Users\Kenny Darjuan\Desktop\HTLauncher.exe
2017-11-15 03:44 - 2017-11-15 03:59 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\DMCache
2017-11-15 03:44 - 2017-11-15 03:46 - 000000000 ____D C:\Users\Kenny Darjuan\Downloads\Compressed
2017-11-15 03:44 - 2017-11-15 03:45 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\IDM
2017-11-15 03:44 - 2017-11-15 03:44 - 000001009 _____ C:\Users\Kenny Darjuan\Desktop\Internet Download Manager.lnk
2017-11-15 03:44 - 2017-11-15 03:44 - 000000000 ____D C:\Users\Kenny Darjuan\Downloads\Video
2017-11-15 03:44 - 2017-11-15 03:44 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-11-15 03:44 - 2017-11-15 03:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-11-15 03:44 - 2017-11-15 03:44 - 000000000 ____D C:\ProgramData\IDM
2017-11-15 03:44 - 2017-11-15 03:44 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2017-11-15 03:43 - 2017-11-15 03:43 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\WinRAR
2017-11-15 03:42 - 2017-11-15 05:21 - 000003300 _____ C:\Windows\System32\Tasks\DRPNPS
2017-11-15 03:42 - 2017-11-15 03:42 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-11-15 03:42 - 2017-11-15 03:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-11-15 03:42 - 2017-11-15 03:42 - 000000000 ____D C:\Program Files (x86)\WinRAR
2017-11-15 03:40 - 2017-11-15 03:40 - 000478360 _____ (DriverPack) C:\Users\Kenny Darjuan\Downloads\DriverPack-17-Online.exe
2017-11-15 03:22 - 2017-11-15 03:28 - 060081936 _____ C:\Users\Kenny Darjuan\Downloads\PROWinx64.exe
2017-11-15 03:18 - 2017-11-15 05:21 - 000003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-15 03:18 - 2017-11-15 05:21 - 000003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-15 03:18 - 2017-11-15 03:33 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-15 03:18 - 2017-11-15 03:33 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-15 03:18 - 2017-11-15 03:18 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Local\DriverToolkit
2017-11-15 03:18 - 2017-11-15 03:18 - 000000000 ____D C:\Program Files (x86)\Google
2017-11-15 03:17 - 2017-11-15 03:19 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Local\Google
2017-11-15 03:17 - 2017-11-15 03:18 - 000000000 ____D C:\Program Files (x86)\DriverToolkit
2017-11-15 03:17 - 2017-11-15 03:17 - 000001067 _____ C:\Users\Public\Desktop\DriverToolkit.lnk
2017-11-15 03:17 - 2017-11-15 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
2017-11-15 03:12 - 2017-11-15 03:12 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-11-15 03:04 - 2017-11-15 03:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdaNet for Android
2017-11-15 03:04 - 2017-11-15 03:04 - 000000000 ____D C:\Program Files (x86)\PdaNet for Android
2017-11-15 03:01 - 2011-11-25 01:25 - 000015360 _____ (June Fabrics Technology Inc.) C:\Windows\system32\Drivers\pneteth.sys
2017-11-15 03:00 - 2017-11-15 03:00 - 003521496 ____N (June Fabrics Technology Inc. ) C:\Users\Kenny Darjuan\Desktop\PdaNetA4199.exe
2017-11-15 02:42 - 2017-11-15 02:42 - 000758128 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-11-15 02:38 - 2009-11-25 11:47 - 001942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 001130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-11-15 02:38 - 2009-11-25 11:47 - 000297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2017-11-15 02:38 - 2009-11-25 11:47 - 000109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2017-11-15 02:38 - 2009-11-25 11:47 - 000048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-11-15 02:36 - 2017-11-15 03:12 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\LocalLow\Mozilla
2017-11-15 02:35 - 2017-11-15 03:11 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Local\Mozilla
2017-11-15 02:35 - 2017-11-15 02:36 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla
2017-11-15 02:23 - 2017-11-15 02:23 - 000000000 ____D C:\Windows\SysWOW64\Darjuan
2017-11-15 02:23 - 2017-11-15 02:23 - 000000000 ____D C:\Users\Kenny
2017-11-15 02:22 - 2017-11-15 02:22 - 000000000 ____D C:\ProgramData\Qualcomm Atheros
2017-11-15 02:17 - 2017-11-15 03:02 - 000006656 _____ C:\Windows\system32\bcmwlrc.dll
2017-11-15 02:17 - 2017-11-15 02:17 - 000000000 ____D C:\Program Files\Broadcom
2017-11-15 02:13 - 2017-11-15 02:13 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Synaptics
2017-11-15 02:12 - 2017-11-15 02:12 - 000000000 _____ C:\Windows\ativpsrm.bin
2017-11-15 00:36 - 2017-11-15 02:12 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-11-14 23:48 - 2017-11-14 23:48 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\AVAST Software
2017-11-14 23:48 - 2017-11-14 23:48 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Local\CEF
2017-11-14 23:46 - 2017-11-15 02:47 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-11-14 23:46 - 2017-11-14 23:46 - 001142072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 001001272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 000455384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000365168 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-11-14 23:46 - 2017-11-14 23:46 - 000364464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000203976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000183584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000148288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-11-14 23:46 - 2017-11-14 23:46 - 000001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-11-14 23:46 - 2017-11-14 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-11-14 23:46 - 2017-11-14 23:45 - 001026232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-11-14 23:46 - 2017-11-14 23:45 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-11-14 23:46 - 2017-11-14 23:45 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-11-14 23:46 - 2017-11-14 23:45 - 000198968 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-11-14 23:46 - 2017-11-14 23:45 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-11-14 23:29 - 2017-11-14 23:29 - 000000000 ____D C:\Program Files\AVAST Software
2017-11-14 23:28 - 2017-11-15 02:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-11-14 23:24 - 2017-11-14 23:24 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-11-14 23:24 - 2017-11-14 23:24 - 000000000 ____D C:\Windows\system32\Macromed
2017-11-14 23:24 - 2017-11-14 23:24 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Adobe
2017-11-14 23:24 - 2017-10-25 07:28 - 001319936 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\Uninstall.exe
2017-11-14 23:24 - 2017-10-25 07:28 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-11-14 23:24 - 2017-10-25 07:28 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-14 23:23 - 2017-11-14 23:23 - 000000000 ____D C:\Intel
2017-11-14 23:23 - 2014-09-10 08:14 - 000163480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 001070232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000660120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000617896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000444328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MShflxgd.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000416408 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000279192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000259736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatlst.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000222360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000219288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000218776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dblist32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000212112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mci32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000179352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000170920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000131728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000130712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2017-11-14 23:23 - 2013-11-25 05:27 - 000127640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000119960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomm32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000108696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTKPRP.DLL
2017-11-14 23:23 - 2013-11-25 05:27 - 000104088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\picclp32.ocx
2017-11-14 23:23 - 2013-11-25 05:27 - 000084624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx
2017-11-14 23:23 - 2011-01-12 11:36 - 001054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71u.dll
2017-11-14 23:23 - 2011-01-12 11:25 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71DEU.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71ITA.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71FRA.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71ESP.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71ENU.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71KOR.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71JPN.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71CHT.DLL
2017-11-14 23:23 - 2011-01-12 11:25 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71CHS.DLL
2017-11-14 23:23 - 2011-01-12 11:19 - 001060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71.dll
2017-11-14 23:23 - 2011-01-12 10:53 - 000090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll
2017-11-14 23:23 - 2008-04-15 04:00 - 001355776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll
2017-11-14 23:23 - 2007-02-01 08:13 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2017-11-14 23:23 - 2007-02-01 05:11 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2017-11-14 23:23 - 2007-01-30 08:04 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2017-11-14 23:23 - 2006-08-25 12:28 - 001017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ita.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70fra.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70esp.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70deu.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70enu.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70kor.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70jpn.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70cht.dll
2017-11-14 23:23 - 2006-08-25 12:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70chs.dll
2017-11-14 23:23 - 2006-08-25 12:07 - 001024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2017-11-14 23:23 - 2006-08-25 11:17 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll
2017-11-14 23:23 - 2005-01-20 07:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2017-11-14 23:23 - 2002-01-04 17:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCP70.DLL
2017-11-14 23:23 - 1996-01-11 16:00 - 000935632 _____ (Microsoft Corporation) C:\Windows\system\Vb40016.dll
2017-11-14 23:23 - 1996-01-11 16:00 - 000722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Vb40032.dll
2017-11-14 23:23 - 1994-11-17 13:00 - 000210944 _____ C:\Windows\SysWOW64\msvcrt10.dll
2017-11-14 23:23 - 1993-05-11 09:00 - 000398416 _____ (Microsoft Corporation) C:\Windows\system\Vbrun300.dll
2017-11-14 23:23 - 1992-10-20 14:00 - 000356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll
2017-11-14 23:23 - 1991-05-09 15:00 - 000271264 _____ C:\Windows\system\vbrun100.dll
2017-11-14 23:18 - 2017-11-14 23:18 - 000000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2017-11-14 23:18 - 2017-11-14 23:18 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-11-14 23:18 - 2017-11-14 23:18 - 000000000 ____D C:\Program Files\Synaptics
2017-11-14 23:18 - 2012-07-25 20:55 - 000785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-11-14 23:18 - 2012-07-25 20:55 - 000054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-11-14 23:18 - 2012-07-25 18:36 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-11-14 23:18 - 2012-06-02 06:35 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-11-14 23:15 - 2017-11-14 23:15 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-11-14 23:15 - 2017-11-14 23:15 - 000001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-11-14 23:15 - 2017-11-14 23:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-11-14 23:15 - 2017-11-14 23:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-11-14 23:12 - 2017-11-14 23:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2017-11-14 23:08 - 2017-11-14 23:08 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-11-14 22:48 - 2017-11-14 22:48 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\DRPNPS
2017-11-14 22:45 - 2017-11-14 22:45 - 000000000 ____R C:\Windows\perfc
2017-11-14 22:45 - 2017-11-14 22:45 - 000000000 ____R C:\Windows\infpub.dat
2017-11-14 22:43 - 2017-11-14 22:43 - 000057560 _____ C:\Users\Kenny Darjuan\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-14 22:39 - 2017-11-14 22:43 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu
2017-11-14 22:38 - 2017-11-14 22:38 - 000001152 _____ C:\Users\Public\Desktop\Tattoo.lnk
2017-11-14 22:38 - 2017-11-14 22:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2017-11-14 22:38 - 2017-11-14 22:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2017-11-14 22:38 - 2017-11-14 22:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2017-11-14 22:38 - 2017-11-14 22:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2017-11-14 22:38 - 2017-11-14 22:38 - 000000000 ____D C:\Program Files (x86)\Tattoo
2017-11-14 22:38 - 2012-12-03 03:22 - 000241152 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2017-11-14 22:38 - 2012-12-03 02:40 - 000452608 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2017-11-14 22:38 - 2012-10-29 20:42 - 000014336 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2017-11-14 22:38 - 2012-10-29 03:44 - 000076800 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2017-11-14 22:38 - 2012-08-19 16:55 - 000104960 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2017-11-14 22:38 - 2012-08-19 16:55 - 000090112 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2017-11-14 22:38 - 2012-08-19 16:55 - 000030720 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2017-11-14 22:38 - 2012-08-19 16:37 - 001490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2017-11-14 22:38 - 2012-08-19 16:37 - 001490656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2017-11-14 22:38 - 2011-12-30 17:20 - 000225920 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2017-11-14 22:38 - 2010-10-08 00:59 - 000032768 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2017-11-14 22:38 - 2010-09-26 02:09 - 000022016 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2017-11-14 22:38 - 2010-08-05 15:43 - 001001472 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys
2017-11-14 22:38 - 2010-07-26 17:52 - 000117248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2017-11-14 22:37 - 2017-11-14 22:38 - 000000000 ____D C:\ProgramData\DatacardService
2017-11-14 22:34 - 2017-11-15 02:24 - 000000000 ____D C:\Windows\SysWOW64\Atheros_L1e
2017-11-14 22:30 - 2017-11-15 03:04 - 000000000 ____D C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2017-11-14 22:30 - 2017-11-14 22:30 - 000000000 ____D C:\Program Files (x86)\Cisco
2017-11-14 22:30 - 2011-01-05 01:08 - 001109096 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192ce.sys
2017-11-14 22:30 - 2010-12-01 09:31 - 000451072 _____ C:\Windows\SysWOW64\ISSRemoveSP.exe
2017-11-14 22:20 - 2014-02-16 23:23 - 000060640 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2017-11-14 22:19 - 2017-11-14 22:20 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-14 22:18 - 2017-11-14 23:22 - 000000000 ____D C:\Program Files\AMD
2017-11-14 22:17 - 2017-11-14 22:17 - 000000000 ____D C:\Program Files\CONEXANT
2017-11-14 22:16 - 2017-11-15 02:58 - 000000000 ____D C:\Windows\system32\nn-NO
2017-11-14 22:16 - 2017-11-15 02:58 - 000000000 ____D C:\Program Files (x86)\Atheros
2017-11-14 22:16 - 2017-11-14 22:34 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-14 22:16 - 2010-11-02 19:00 - 000443040 _____ (Atheros) C:\Windows\system32\athihvs.dll
2017-11-14 22:16 - 2010-11-02 19:00 - 000063648 _____ (Atheros) C:\Windows\system32\athihvui.dll
2017-11-14 22:15 - 2017-11-14 22:16 - 000000000 ____D C:\ProgramData\Atheros
2017-11-14 22:14 - 2017-11-14 22:14 - 000001443 _____ C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-11-14 22:14 - 2017-11-14 22:14 - 000001409 _____ C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2017-11-14 22:13 - 2017-11-14 22:13 - 000000020 ___SH C:\Users\Kenny Darjuan\ntuser.ini
2017-11-14 22:13 - 2017-11-14 22:13 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Local\VirtualStore
2017-11-14 22:13 - 2017-11-14 22:13 - 000000000 ____D C:\Users\Kenny Darjuan
2017-11-14 22:13 - 2009-07-13 23:45 - 000000000 ____D C:\Users\Kenny Darjuan\AppData\Roaming\Media Center Programs
2017-11-14 22:08 - 2017-11-14 22:08 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-11-14 22:07 - 2017-11-14 22:07 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-11-14 19:57 - 2017-11-14 22:12 - 000000000 ____D C:\Windows\Panther
2017-10-27 02:29 - 2017-08-06 18:49 - 004184328 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2017-10-27 02:13 - 2016-05-06 07:44 - 000831080 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2017-10-27 02:12 - 2016-05-06 07:47 - 000295016 _____ (Synaptics Incorporated) C:\Windows\system32\SynGlwPadShlExt.dll
2017-10-27 02:12 - 2016-05-06 07:45 - 000797800 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2017-10-27 02:12 - 2016-05-06 07:45 - 000426600 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2017-10-27 02:12 - 2016-05-06 07:45 - 000279144 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo41.dll
2017-10-27 02:12 - 2016-05-06 07:45 - 000276584 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2017-10-27 02:12 - 2016-05-06 07:44 - 000060520 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2017-10-27 02:12 - 2016-05-06 07:44 - 000056936 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2017-10-27 02:12 - 2014-01-30 06:17 - 001795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2017-10-27 00:53 - 2015-08-03 17:42 - 000665088 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2017-10-27 00:52 - 2015-08-03 22:28 - 007929616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2017-10-27 00:52 - 2015-08-03 22:28 - 007408936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2017-10-27 00:52 - 2015-08-03 22:28 - 000152056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2017-10-27 00:52 - 2015-08-03 22:28 - 000133016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2017-10-27 00:52 - 2015-08-03 22:28 - 000120144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2017-10-27 00:52 - 2015-08-03 22:28 - 000102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2017-10-27 00:52 - 2015-08-03 22:27 - 008893160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2017-10-27 00:52 - 2015-08-03 22:27 - 008779872 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2017-10-27 00:52 - 2015-08-03 22:25 - 000297672 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2017-10-27 00:52 - 2015-08-03 22:23 - 021622784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2017-10-27 00:52 - 2015-08-03 20:12 - 000127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2017-10-27 00:52 - 2015-08-03 20:12 - 000113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2017-10-27 00:52 - 2015-08-03 19:21 - 000093696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2017-10-27 00:52 - 2015-08-03 19:21 - 000086528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2017-10-27 00:52 - 2015-08-03 18:32 - 025299968 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2017-10-27 00:52 - 2015-08-03 18:25 - 000367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2017-10-27 00:52 - 2015-08-03 18:07 - 000672768 _____ (AMD) C:\Windows\system32\atieclxx.exe
2017-10-27 00:52 - 2015-08-03 18:07 - 000160256 _____ C:\Windows\system32\atieah64.exe
2017-10-27 00:52 - 2015-08-03 18:07 - 000143872 _____ C:\Windows\SysWOW64\atieah32.exe
2017-10-27 00:52 - 2015-08-03 18:06 - 000246784 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2017-10-27 00:52 - 2015-08-03 18:05 - 000190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2017-10-27 00:52 - 2015-08-03 17:37 - 000102912 _____ C:\Windows\system32\hsa-thunk64.dll
2017-10-27 00:52 - 2015-08-03 17:37 - 000102400 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2017-10-27 00:52 - 2014-09-03 04:55 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2017-10-27 00:52 - 2014-09-03 04:55 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2017-10-27 00:52 - 2013-04-10 07:34 - 000332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2017-10-27 00:52 - 2013-04-10 07:34 - 000051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2017-10-27 00:51 - 2015-08-03 22:28 - 011948704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 010094152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 001445224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 001193904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 000078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 000078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 000071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2017-10-27 00:51 - 2015-08-03 22:28 - 000071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2017-10-27 00:51 - 2015-08-03 18:55 - 030752256 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2017-10-27 00:51 - 2015-08-03 18:25 - 000062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2017-10-27 00:51 - 2015-08-03 18:25 - 000052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2017-10-27 00:51 - 2015-08-03 18:24 - 015716864 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2017-10-27 00:51 - 2015-08-03 18:24 - 000055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2017-10-27 00:51 - 2015-08-03 18:24 - 000049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2017-10-27 00:51 - 2015-08-03 18:21 - 014302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2017-10-27 00:51 - 2015-08-03 18:07 - 000442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2017-10-27 00:51 - 2015-08-03 18:07 - 000029696 _____ (AMD) C:\Windows\system32\atimuixx.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 001247744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 000926720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 000926720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 000075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 000069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2017-10-27 00:51 - 2015-08-03 17:43 - 000069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2017-10-27 00:51 - 2015-08-03 17:42 - 000156672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2017-10-27 00:51 - 2015-08-03 17:42 - 000141824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2017-10-27 00:51 - 2015-08-03 17:35 - 000043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2017-10-27 00:50 - 2015-08-03 20:11 - 006477312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2017-10-27 00:50 - 2015-08-03 19:43 - 005068288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2017-10-27 00:50 - 2015-08-03 18:25 - 000660928 _____ C:\Windows\SysWOW64\atiapfxx.blb
2017-10-27 00:50 - 2015-08-03 18:25 - 000660928 _____ C:\Windows\system32\atiapfxx.blb
2017-10-27 00:50 - 2015-08-03 18:21 - 000050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2017-10-27 00:50 - 2015-08-03 18:21 - 000039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2017-10-27 00:50 - 2015-08-03 18:16 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2017-10-27 00:50 - 2015-08-03 18:12 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2017-10-27 00:50 - 2015-08-03 18:12 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2017-10-27 00:50 - 2015-08-03 18:12 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2017-10-27 00:50 - 2015-08-03 18:12 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2017-10-27 00:50 - 2015-08-03 18:07 - 000204800 _____ C:\Windows\system32\amdgfxinfo64.dll
2017-10-27 00:50 - 2015-08-03 18:07 - 000189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2017-10-27 00:50 - 2015-08-03 18:00 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2017-10-27 00:50 - 2015-08-03 17:48 - 000865792 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
2017-10-27 00:50 - 2015-07-13 07:19 - 000169152 _____ C:\Windows\system32\ativce03.dat
2017-10-27 00:50 - 2015-07-13 07:19 - 000167456 _____ C:\Windows\system32\amde31a.dat
2017-10-27 00:50 - 2015-07-09 23:40 - 000833798 _____ C:\Windows\system32\amdicdxx.dat
2017-10-27 00:50 - 2015-07-06 11:33 - 000100816 _____ C:\Windows\system32\ativce02.dat
2017-10-27 00:50 - 2015-05-28 17:21 - 000255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2017-10-27 00:50 - 2015-05-28 17:17 - 000250884 _____ C:\Windows\system32\ativvaxy_FJ.dat
2017-10-27 00:50 - 2015-05-28 17:15 - 000249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2017-10-27 00:50 - 2015-05-28 17:10 - 000322868 _____ C:\Windows\system32\ativvaxy_vi.dat
2017-10-27 00:50 - 2015-05-28 17:08 - 000321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2017-10-27 00:50 - 2015-05-28 17:00 - 000234420 _____ C:\Windows\system32\ativvaxy_cik.dat
2017-10-27 00:50 - 2015-05-28 16:58 - 000232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2017-10-27 00:50 - 2014-11-06 02:53 - 000737410 _____ C:\Windows\system32\atiicdxx.dat
2017-10-27 00:49 - 2015-08-03 22:18 - 047785472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2017-10-27 00:49 - 2015-08-03 22:09 - 000065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-10-27 00:49 - 2015-08-03 22:09 - 000059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-10-27 00:49 - 2015-08-03 21:58 - 027535872 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2017-10-27 00:49 - 2015-08-03 21:57 - 022318592 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2017-10-27 00:48 - 2015-08-03 22:19 - 001187342 _____ C:\Windows\system32\amdocl_as64.exe
2017-10-27 00:48 - 2015-08-03 22:19 - 001061902 _____ C:\Windows\system32\amdocl_ld64.exe
2017-10-27 00:48 - 2015-08-03 22:19 - 000995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2017-10-27 00:48 - 2015-08-03 22:19 - 000798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2017-10-27 00:48 - 2015-08-03 22:19 - 000235008 _____ C:\Windows\system32\clinfo.exe
2017-10-27 00:48 - 2015-08-03 22:14 - 039714304 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2017-10-27 00:04 - 2010-12-23 23:23 - 003293400 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\S6000KNT.sys
2017-10-27 00:04 - 2003-09-22 17:36 - 000013448 _____ C:\Windows\S6000Twn.src
2017-10-27 00:03 - 2010-08-19 01:51 - 000428632 _____ (ALi) C:\Windows\system\S6000Dex.dll
2017-10-27 00:03 - 2010-08-19 01:51 - 000141912 _____ () C:\Windows\system\S6000Vex.dll
2017-10-27 00:03 - 2010-08-19 01:51 - 000076376 _____ C:\Windows\system32\S6000DIF.dll
2017-10-27 00:03 - 2010-08-19 01:51 - 000064088 _____ (ALi) C:\Windows\system\S6000Rmv.dll
2017-10-27 00:03 - 2010-08-19 01:51 - 000013400 _____ C:\Windows\system\S6000Remov.exe
2017-10-27 00:03 - 2003-09-22 16:49 - 000015190 _____ C:\Windows\S6000Twn.ini
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-11-15 03:44 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\inf
2017-11-15 03:16 - 2009-07-13 21:13 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-15 03:16 - 2009-07-13 20:45 - 000017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-15 03:16 - 2009-07-13 20:45 - 000017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-15 03:09 - 2009-07-13 21:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-15 03:02 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\lv-LV
2017-11-15 03:02 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\lt-LT
2017-11-15 03:02 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\et-EE
2017-11-15 02:12 - 2009-07-13 20:45 - 000274320 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-14 23:23 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system
2017-11-14 23:00 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\NDF
2017-11-14 22:16 - 2009-07-13 19:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-11-14 22:12 - 2009-07-13 20:45 - 000000000 ____D C:\Windows\Setup
2017-11-14 22:12 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\oobe
2017-11-14 22:12 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\rescache
2017-11-14 22:08 - 2009-07-13 21:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-11-14 22:07 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\system32\sysprep
2017-11-14 22:05 - 2009-07-13 23:46 - 000000000 ____D C:\Windows\CSC
2017-11-14 19:57 - 2009-07-13 21:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2017-11-15 00:16
 
==================== End of FRST.txt ============================


THIS IS ADDITION
 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
Ran by Kenny Darjuan (15-11-2017 05:31:11)
Running from C:\Users\Kenny Darjuan\Downloads\Programs
Windows 7 Ultimate (X64) (2017-11-15 06:12:44)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-102698598-1727250080-1170495968-500 - Administrator - Disabled)
GAMING (S-1-5-21-102698598-1727250080-1170495968-1001 - Administrator - Enabled)
Guest (S-1-5-21-102698598-1727250080-1170495968-501 - Limited - Enabled)
Kenny Darjuan (S-1-5-21-102698598-1727250080-1170495968-1000 - Administrator - Enabled) => C:\Users\Kenny Darjuan
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player ActiveX+Plugins (HKLM\...\Adobe Flash Player) (Version: 27.0.0.183 - oszone.net)
AMD Catalyst Install Manager (HKLM\...\{DE74B890-4025-A7BE-8EBC-F374528DCFFD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Auto Clicker v3.1 (HKLM-x32\...\{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1) (Version: 3.1 - MurGee.com)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.100.82.63 - Broadcom Corporation)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.44.51 - Conexant)
DriverToolkit version 8.5.1.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.5.1.0 - Megaify Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
iTexMo Free SMS (HKLM-x32\...\{F411E142-7994-41F8-B7B5-555000D19CDA}) (Version: 4.0.2.6 - AwesomePats)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mozilla Firefox 54.0 (x86 ru) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 ru)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
PdaNet+ for Android 4.19 (HKLM-x32\...\PdaNet_is1) (Version:  - June Fabrics Technology Inc)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0178 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.1.3.5 - Synaptics Incorporated)
Tattoo (HKLM-x32\...\Tattoo) (Version: 1.11.00.158 - Huawei Technologies Co.,Ltd)
WebCam (HKLM-x32\...\{FC9B811E-39BC-4813-9E29-B83CCF700010}) (Version: 2.17.13.100 - Alcor)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-14] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-14] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-14] (AVAST Software)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-14] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {8956E4D2-2BD1-46BD-B893-302A649AA62E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-15] (Google Inc.)
Task: {DA9C6F31-48BD-45EB-80B8-4E0DBBA8AA0A} - C:\Windows\System32\Tasks\DRPNPS => Command(1): mshta.exe -> "http://update.drp.su/nps/online/bin/tools/run.hta" "17.7.75 Online" "1510746168780" "e226c410-681b-49bc-9eea-43ed5c69eb4c"
Task: {DA9C6F31-48BD-45EB-80B8-4E0DBBA8AA0A} - C:\Windows\System32\Tasks\DRPNPS => Command(2): SCHTASKS -> /Delete /TN DRPNPS /F
Task: {DC0CC193-101A-46AE-B2F7-ED3C9837E2BC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-14] (AVAST Software)
Task: {F0E7D696-F199-47BA-8195-98F3EE27602E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-15] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
==================== Loaded Modules (Whitelisted) ==============
 
2011-03-14 07:27 - 2011-03-14 07:27 - 000346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2017-11-15 03:04 - 2017-09-14 00:15 - 001025960 _____ () C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
2017-11-14 23:46 - 2017-11-14 23:46 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000169832 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 000859216 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 000292408 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 000281536 _____ () C:\Program Files\AVAST Software\Avast\x64\tasks_core.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000151104 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 005780480 _____ () C:\Program Files\AVAST Software\Avast\defs\17111299\algo.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000710056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000245608 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-11-15 03:15 - 2017-11-15 03:15 - 005881408 _____ () C:\Program Files\AVAST Software\Avast\defs\17111408\algo.dll
2017-11-14 23:46 - 2017-11-14 23:46 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-11-14 23:45 - 2017-11-14 23:45 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-11-15 03:33 - 2017-09-20 20:57 - 003011928 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-11-15 03:33 - 2017-09-20 20:57 - 000086872 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 18:34 - 2009-06-10 13:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-102698598-1727250080-1170495968-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kenny Darjuan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{DC29E7CF-7C65-47B8-B175-C6107D89A11A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EE14ED27-6993-4E83-AEFD-60EAB5012D1E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7FD7FBED-0EA3-4D9F-9D20-9832FFB4FF39}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
14-11-2017 22:16:39 Device Driver Package Install: Conexant Sound, video and game controllers
14-11-2017 22:19:21 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
14-11-2017 22:19:47 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
14-11-2017 22:29:51 Installed REALTEK PCIE Wireless LAN Driver
14-11-2017 22:34:10 Installed Qualcomm Atheros Inc.® AR81Family Gigabit/Fast EtherQLõZ
14-11-2017 22:43:25 DriverPack 17.7.75
14-11-2017 22:46:13 DriverPack 17.7.75
14-11-2017 23:07:20 DriverPack 17.7.75
15-11-2017 02:25:01 Configured Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethe
15-11-2017 02:37:56 Windows Update
15-11-2017 03:03:16 Device Driver Package Install: June Fabrics Technology Inc. Network adapters
15-11-2017 03:03:36 Installed REALTEK PCIE Wireless LAN Driver
15-11-2017 03:30:49 Installed Intel® Network Connections.
15-11-2017 03:43:23 DriverPack 17.7.75
15-11-2017 04:18:17 Installed DirectX
15-11-2017 04:28:09 Installed iTexMo Free SMS
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (11/15/2017 05:11:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x13d4
Faulting application start time: 0x01d35e133c2f2675
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: 7b6e4dc3-ca06-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:54:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x12d8
Faulting application start time: 0x01d35e10e5bf7841
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: 244ba0a0-ca04-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:43:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x744
Faulting application start time: 0x01d35e0f5d62ace4
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: 9b91f4a4-ca02-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:43:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x12d8
Faulting application start time: 0x01d35e0f558db1e8
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: 934fa92b-ca02-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:42:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0xb10
Faulting application start time: 0x01d35e0f227b0705
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: 60acdef4-ca02-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:31:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x438
Faulting application start time: 0x01d35e0da51ab370
Faulting application path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA - Copy\HTLaunchermgr.exe
Report Id: e4c632b4-ca00-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:19:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Faulting module name: HTLaunchermgr.exe, version: 0.0.0.0, time stamp: 0x3e05b18b
Exception code: 0xc0000005
Fault offset: 0x000547d3
Faulting process id: 0x1068
Faulting application start time: 0x01d35e0bf133ff8c
Faulting application path: D:\NEW FILES\Tantra FFA\HTLaunchermgr.exe
Faulting module path: D:\NEW FILES\Tantra FFA\HTLaunchermgr.exe
Report Id: 307e98b5-c9ff-11e7-a251-047d7b966c41
 
Error: (11/15/2017 04:09:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Failed auto update retrieval of third-party root certificate from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4.crt> with error: The specified server cannot perform the requested operation.
.
 
Error: (11/15/2017 04:09:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Failed auto update retrieval of third-party root certificate from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/02FAF3E291435468607857694DF5E45B68851868.crt> with error: This network connection does not exist.
.
 
Error: (11/15/2017 04:09:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Failed auto update retrieval of third-party root certificate from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4.crt> with error: This operation returned because the timeout period expired.
.
 
 
System errors:
=============
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the SMB 1.x MiniRedirector service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the SMB 1.x MiniRedirector service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (11/15/2017 05:31:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the SMB 1.x MiniRedirector service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
Error: (11/15/2017 05:29:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (11/15/2017 05:29:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the SMB 1.x MiniRedirector service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
Error: (11/15/2017 05:29:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (11/15/2017 05:29:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Workstation service depends on the SMB 1.x MiniRedirector service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
 
CodeIntegrity:
===================================
  Date: 2017-11-15 05:27:43.191
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:27:40.700
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:27:10.136
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:27:05.930
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:26:57.820
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:23:22.778
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:23:12.656
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:23:07.153
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:21:46.220
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-11-15 05:21:43.866
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP74.dll because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Processor: AMD E-450 APU with Radeon™ HD Graphics
Percentage of memory in use: 68%
Total physical RAM: 1770.9 MB
Available physical RAM: 553.96 MB
Total Virtual: 3541.8 MB
Available Virtual: 1840.02 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:256.32 GB) (Free:235.77 GB) NTFS
Drive d: (Data Files) (Fixed) (Total:209.34 GB) (Free:76.3 GB) NTFS
Drive f: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F145DBF3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=256.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=209.3 GB) - (Type=OF Extended)
 
==================== End of Addition.txt ============================


 


BC AdBot (Login to Remove)

 

#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:56 PM

Posted 15 November 2017 - 09:40 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.


Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
FF Extension: (???????? ??????.???????) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2017-11-15]
FF Extension: (Visual Bookmarks) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\vb@yandex.ru.xpi [2017-11-15]
CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX
CHR StartupUrls: Default -> "hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX"
CHR Extension: (softorama) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog [2017-11-15]
CHR Extension: (Emoji for Google Chrome™) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\immhpnclomdloikkpcefncmfgjbkojmh [2017-11-15]

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Please download Malwarebytes Anti-Malware from here
  • Right-click on the MBAM icon and select Run as administrator to run the tool.
  • Click Yes to accept any security warnings that may appear.
  • Once the MBAM dashboard opens, on the right detail pane click on the word "Current" under the Scan Status to update the tool database.
  • On the left menu pane click the Settings tab, and then select the Protection tab on the top.
  • Under the Scan Options, turn on the button Scan for rootkits and Scan within archives.
  • Click the Scan tab on the right detail pane, select Threat Scan and click the Start Scan button
  • Note: The scan may take some time to finish, so please be patient.
  • If potential threats are detected, ensure to checkmark all the listed items, and click the Quarantine Selected button.
  • While still on the Scan tab, click the View Report button, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log can also be viewed by clicking the log to select it, then clicking the View Report button.
Please post the log for my review.

Note: If asked to restart the computer, please do so immediately.
===

Please post the logs land let me know what problem persists with this computer.

#3 swantonishere

swantonishere
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
    •  
  • Local time:11:56 AM

Posted 15 November 2017 - 02:12 PM

hello nasdaq thanks for helping :)

This is the result of Fixlog.txt

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-11-2017
Ran by Kenny Darjuan (16-11-2017 02:34:20) Run:1
Running from C:\Users\Kenny Darjuan\Downloads\Programs
Loaded Profiles: Kenny Darjuan (Available Profiles: Kenny Darjuan & Guest)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
 
Start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
FF Extension: (???????? ??????.???????) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2017-11-15]
FF Extension: (Visual Bookmarks) - C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\vb@yandex.ru.xpi [2017-11-15]
CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX
CHR StartupUrls: Default -> "hxxp://www.oursurfing.com/?type=hp&ts=1430876272&z=38984936d0dfaf659e5c05bgazfcdeeb9o0o3g8mbw&from=amt&uid=HitachiXHTS545032B9A300_101128PBPC031D1Z39PLX"
CHR Extension: (softorama) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog [2017-11-15]
CHR Extension: (Emoji for Google Chrome�) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\immhpnclomdloikkpcefncmfgjbkojmh [2017-11-15]
 
End
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key removed successfully
C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\sovetnik-yandex@yandex.ru.xpi => moved successfully
C:\Users\Kenny Darjuan\AppData\Roaming\Mozilla\Firefox\Profiles\v5bnavpi.default\Extensions\vb@yandex.ru.xpi => moved successfully
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
CHR Extension: (softorama) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog [2017-11-15] => Error: No automatic fix found for this entry.
CHR Extension: (Emoji for Google Chrome�) - C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\immhpnclomdloikkpcefncmfgjbkojmh [2017-11-15] => Error: No automatic fix found for this entry.
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 2849203 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 31337974 B
Edge => 0 B
Chrome => 51873346 B
Firefox => 23938090 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83391 B
systemprofile32 => 692 B
LocalService => 66228 B
NetworkService => 1218 B
Kenny Darjuan => 1815122397 B
Guest => 141348 B
 
RecycleBin => 0 B
EmptyTemp: => 1.8 GB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 02:36:59 ====
 
 
then this is the summary report of mbam
 
 
Malwarebytes
www.malwarebytes.com
 
-Log Details-
Scan Date: 11/16/17
Scan Time: 2:47 AM
Log File: 79ad7134-cabb-11e7-bfad-002637bd3942.json
Administrator: Yes
 
-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3264
License: Trial
 
-System Information-
OS: Windows 7
CPU: x64
File System: NTFS
User: KennyDarjuan-PC\Kenny Darjuan
 
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 332991
Threats Detected: 210
Threats Quarantined: 210
Time Elapsed: 14 min, 2 sec
 
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
 
-Scan Details-
Process: 0
(No malicious items detected)
 
Module: 0
(No malicious items detected)
 
Registry Key: 0
(No malicious items detected)
 
Registry Value: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Data Stream: 0
(No malicious items detected)
 
Folder: 17
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\triage, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\winext, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\diagnostics, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Internet, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\PROGRAMS, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\DRIVERS, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\events, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Logs, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\ohm, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\USERS\KENNY DARJUAN\APPDATA\ROAMING\DRPSU, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\_metadata, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\icons, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\USERS\KENNY DARJUAN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HOPFPNBNMIIPPELEPJFLGDJPGOFMMPOG, Quarantined, [9104], [443230],1.0.3264
 
File: 193
PUP.Optional.DriverPack, C:\USERS\KENNY DARJUAN\APPDATA\ROAMING\DRPSU\DIAGNOSTICS\HARDWARE.JSON, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\diagnostics\localdiagnostics.json, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\diagnostics\soft.json, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\diagnostics\softchanges.json, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\triage\pooltag.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\triage\triage.ini, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\winext\ext.dll, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\dbgeng.dll, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\dbghelp.dll, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\dumpchk.exe, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\dumpchk\dumpchk.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Internet\WifiInterface.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Logs\log___2017-11-14-22-39-36.html, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Logs\log___2017-11-14-23-05-44.html, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\Logs\log___2017-11-15-03-41-37.html, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\ohm\openhardwaremonitor.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20171114_223955.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20171114_224558.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20171114_230605.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20171115_034202.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20171115_034537.zip, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_10687.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_11264.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_19881.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_2709.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_4762.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_49964.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\devcon_97946.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_15372.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_24016.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_24191.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_39174.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_51928.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_51928.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_59409.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_65108.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_69332.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_69972.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_76603.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_79751.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_81919.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_91252.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_94170.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_97946.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_99150.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_10687.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_11264.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_15372.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_19881.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_21395.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_24016.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_24191.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_2709.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_32377.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_39174.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ofi4m.j1z5o.ps1, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ofi51.p0ggc.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ofi51.p0ggc.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ofi51.p0ggc.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7iv.di1we.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7iv.di1we.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7iv.di1we.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7vb.z5zji.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7vb.z5zji.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc7vb.z5zji.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc85p.d0y8o.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc85p.d0y8o.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_10687.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_11264.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_15372.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_19881.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_21395.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_24016.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_24191.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_2709.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_32377.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_39174.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_39780.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_40636.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_42011.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_4762.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_65108.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pc85p.d0y8o.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsgvz.2om7k.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.ir1yu.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_finished_49964.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_39780.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_40636.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_42011.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_42656.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_4762.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_49964.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_51928.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_59409.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_65108.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_69332.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_69972.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_76603.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_79751.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_81919.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_91252.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_94170.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_97946.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\wget_log_99150.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\taskkill_17234.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\taskkill_26789.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_10687.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_11264.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_19881.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_2709.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_4762.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_49964.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_81919.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_97946.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_99150.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\unzipping_undefined.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_69332.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_69972.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\installing_91252.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_10687.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_11264.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_19881.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_2709.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_4762.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_49964.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_81919.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_97946.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\log_zip_file_99150.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pd3wc.okcf0.ps1, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pd3wc.qhf55.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pd3wc.qhf55.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0pd3wc.qhf55.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wn4nv.4k0dw.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wn4nv.4k0dw.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wn4nv.4k0dw.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wnl5q.z3jx0.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wnl5q.z3jx0.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wnl5q.z3jx0.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wo3ds.lk1sd.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wo3ds.lk1sd.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wo3ds.lk1sd.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsgvz.2om7k.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsgvz.2om7k.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsl68.8ap7e.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsl68.8ap7e.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wsl68.8ap7e.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu22y.w7bxy.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu22y.w7bxy.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu22y.w7bxy.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu254.btaa1.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu254.btaa1.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wu254.btaa1.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.1z33e.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.1z33e.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.1z33e.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.ir1yu.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wuv4m.ir1yu.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wvr3q.0ucer.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wvr3q.0ucer.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wvr3q.0ucer.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ww6gr.36fv1.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ww6gr.36fv1.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0ww6gr.36fv1.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wwle8.amkjs.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wwle8.amkjs.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0wwle8.amkjs.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7bio.pci8x.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7bio.pci8x.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7bio.pci8x.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7byz.cai26.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7byz.cai26.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7byz.cai26.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7c4x.xlq6o.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7c4x.xlq6o.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7c4x.xlq6o.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7v0j.4j297.ps1, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7v0z.4rzlb.cmd.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7v0z.4rzlb.stderr.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\ps.ja0z7v0z.4rzlb.stdout.log, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_3754.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_65984.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_77521.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_78742.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_84839.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.DriverPack, C:\Users\Kenny Darjuan\AppData\Roaming\DRPSu\temp\run_command_9683.txt, Quarantined, [2082], [358060],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\USERS\KENNY DARJUAN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\USERS\KENNY DARJUAN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Replaced, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\USERS\KENNY DARJUAN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HOPFPNBNMIIPPELEPJFLGDJPGOFMMPOG\1.0.1_0\MANIFEST.JSON, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\icons\icon128.png, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\icons\icon16.png, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\_metadata\verified_contents.json, Quarantined, [9104], [443230],1.0.3264
PUP.Optional.SearchAlgo.Generic, C:\Users\Kenny Darjuan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hopfpnbnmiippelepjflgdjpgofmmpog\1.0.1_0\background.js, Quarantined, [9104], [443230],1.0.3264
Adware.Elex.ShrtCln, C:\USERS\KENNY DARJUAN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [2306], [454721],1.0.3264
 
Physical Sector: 0
(No malicious items detected)
 
 
(end)

#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:56 PM

Posted 16 November 2017 - 07:45 AM

Hi,

Any remaining issues?
Back to Virus, Trojan, Spyware, and Malware Removal Help


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Virus, Trojan, Spyware, and Malware Removal Help
  4. Privacy Policy
  5. Rules ·