Inactive I think im infected

[Bashar00]

Hello. today I was searching for a program in google then I downloaded the program from a website.after that chrome closed and got everything reset to default ( got extensions,cookies and history removed)

I scanned my pc with malwarebytes and it found 5 malwares.

how can I know if im still infected?


Kind regards

 

[Broni]

Welcome aboard

Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

 

[Bashar00]

Scanned my pc with Microsoft Security Essentials it didnt find anything
FRSTtxt


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Bashar9 (administrator) on BASHAR on 09-04-2015 11:33:18
Running from C:\Users\Bashar9\Downloads
Loaded Profiles: Bashar9 (Available profiles: Bashar9)
Platform: Windows 8 Pro (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Microsoft Corporation) C:\Windows\sppsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() G:\Program Files (x86)\puush\puush.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Valve Corporation) G:\steam\Steam.exe
(Valve Corporation) G:\steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(TeamSpeak Systems GmbH) G:\TeamSpeak 3 Client\ts3client_win64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) G:\steam\bin\steamwebhelper.exe
(Valve Corporation) G:\steam\bin\steamwebhelper.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3918\Agent.exe
(Blizzard Entertainment) G:\battlenet\Battle.net\Battle.net.5669\Battle.net.exe
() C:\Program Files (x86)\Hearthstone\Hearthstone.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-11-16] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-30] (Glarysoft Ltd)
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\Run: [Steam] => G:\steam\steam.exe [2888896 2015-03-24] (Valve Corporation)
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (Tonec Inc.)
BootExecute: autocheck autochk /p \??\C:autocheck autochk *
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-961954038-57401663-2942830366-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-ae/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2014-07-10] (Internet Download Manager, Tonec Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-29] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-29] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-18] ()
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-29] (Oracle Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Bashar9\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-961954038-57401663-2942830366-1001: @hola.org/vlc,version=1.7.298 -> C:\Users\Bashar9\AppData\Local\Hola\firefox\app\vlc No File
FF Plugin HKU\S-1-5-21-961954038-57401663-2942830366-1001: @onlive.com/OnLiveGameClientDetector,version=1.0.0 -> C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll [2014-11-05] (OnLive)
FF Plugin HKU\S-1-5-21-961954038-57401663-2942830366-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Bashar9\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-08-08] (Unity Technologies ApS)
FF Extension: Hola Better Internet - C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-04-08]
FF Extension: anonymoX - C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default\Extensions\client@anonymox.net.xpi [2014-08-19]
FF Extension: ExHentai Easy 2 - C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default\Extensions\jid1-7NbXi2AqS1oUFw@jetpack.xpi [2015-03-09]
FF Extension: Adblock Plus - C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-31]
FF Extension: Greasemonkey - C:\Users\Bashar9\AppData\Roaming\Mozilla\Firefox\Profiles\9h00wj6s.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-09-06]
FF HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Bashar9\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Bashar9\AppData\Roaming\IDM\idmmzcc5 [2014-07-16]
FF HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Bashar9\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://facebook.com/", "hxxp://faceit.com/", "hxxp://gmail.com/"
CHR Profile: C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-08]
CHR Extension: (Google Docs) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-08]
CHR Extension: (Google Drive) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-08]
CHR Extension: (YouTube) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-08]
CHR Extension: (Easy SteamGifts) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\cklbilaeedbblhpkhjfcnmaocjdodcnm [2015-04-08]
CHR Extension: (Steam inventory helper) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-04-08]
CHR Extension: (Google Search) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-08]
CHR Extension: (Hola Better Internet Engine) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng [2015-04-08]
CHR Extension: (Google Sheets) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-08]
CHR Extension: (AdBlock) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-08]
CHR Extension: (Hola Better Internet) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-04-09]
CHR Extension: (IDM Integration Module) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2015-04-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-08]
CHR Extension: (Google Wallet) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-08]
CHR Extension: (Chrome Apps & Extensions Developer Tool) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohmmkhmmmpcnpikjeljgnaoabkaalbgc [2015-04-08]
CHR Extension: (Enhanced Steam) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-04-08]
CHR Extension: (Gmail) - C:\Users\Bashar9\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-08]
CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-07-10]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed]
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [409304 2014-08-13] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384728 2014-08-13] (BlueStack Systems, Inc.)
S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [777944 2014-08-13] (BlueStack Systems, Inc.)
R3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-02-16] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware3\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware3\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-21] (Electronic Arts)
R3 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [File not signed]
R3 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R3 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-01-26] (Razer Inc.)
R2 SLSvc; C:\Windows\sppsvc.exe [10240 2012-08-25] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer3\TeamViewer_Service.exe [5436176 2015-02-09] (TeamViewer GmbH)
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [122072 2014-08-13] (BlueStack Systems)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2015-04-08] (Emsisoft GmbH)
S1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-04-09] (Glarysoft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-02-17] (LogMeIn Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R1 MpKsl7dca0807; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{85F2C059-DBF1-422F-9C1B-98D4E95D4DBB}\MpKsl7dca0807.sys [45352 2015-04-09] (Microsoft Corporation)
R1 MpKslf148d96e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{85F2C059-DBF1-422F-9C1B-98D4E95D4DBB}\MpKslf148d96e.sys [45352 2015-04-09] (Microsoft Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
U3 TrueSight; C:\Windows\System32\Drivers\TrueSight.sys [35064 2015-04-09] ()
S3 CV2K1; \SystemRoot\system32\DRIVERS\cv2k1.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-09 11:31 - 2015-04-09 11:33 - 00036680 _____ () C:\Users\Bashar9\Downloads\Addition.txt
2015-04-09 11:25 - 2015-04-09 11:34 - 00018129 _____ () C:\Users\Bashar9\Downloads\FRST.txt
2015-04-09 11:25 - 2015-04-09 11:33 - 00000000 ____D () C:\FRST
2015-04-09 11:24 - 2015-04-09 11:24 - 02095616 _____ (Farbar) C:\Users\Bashar9\Downloads\FRST64.exe
2015-04-09 11:04 - 2015-04-09 11:04 - 00002259 _____ () C:\Windows\epplauncher.mif
2015-04-09 11:04 - 2015-04-09 11:04 - 00000000 ____D () C:\32d1f9934caa26a873bc1f
2015-04-09 11:02 - 2015-04-09 11:04 - 14160536 _____ (Microsoft Corporation) C:\Users\Bashar9\Downloads\mseinstall64.exe
2015-04-09 10:55 - 2015-04-09 10:55 - 00000000 ____D () C:\ProgramData\GlarySoft
2015-04-09 10:53 - 2015-04-09 10:53 - 04009167 _____ () C:\Users\Bashar9\Downloads\ServicesRepair.exe
2015-04-09 10:49 - 2015-04-09 10:57 - 00000000 ___HD () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2015-04-09 10:49 - 2015-04-09 10:49 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2015-04-09 10:46 - 2015-04-09 10:58 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\GlarySoft
2015-04-09 10:46 - 2015-04-09 10:46 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-04-09 10:46 - 2015-04-09 10:46 - 00002972 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2015-04-09 10:46 - 2015-04-09 10:46 - 00002626 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2015-04-09 10:46 - 2015-04-09 10:46 - 00001088 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-04-09 10:46 - 2015-04-09 10:46 - 00001076 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-04-09 10:46 - 2015-04-09 10:46 - 00000350 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2015-04-09 10:46 - 2015-04-09 10:46 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\DiskDefrag
2015-04-09 10:46 - 2015-04-09 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-04-09 10:46 - 2015-04-09 10:46 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2015-04-09 10:44 - 2015-04-09 10:45 - 15048880 _____ () C:\Users\Bashar9\Downloads\gup5setup.exe
2015-04-09 01:15 - 2015-04-09 01:15 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-04-09 00:43 - 2015-04-09 00:43 - 00000743 _____ () C:\Users\Bashar9\Desktop\Start Emsisoft Emergency Kit.lnk
2015-04-09 00:42 - 2015-04-09 00:44 - 00000000 ____D () C:\EEK
2015-04-09 00:36 - 2015-04-09 00:37 - 00000000 ____D () C:\AdwCleaner
2015-04-09 00:31 - 2015-04-09 00:31 - 00001816 _____ () C:\Users\Bashar9\Desktop\JRT.txt
2015-04-09 00:27 - 2015-04-09 00:27 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-BASHAR-Windows-8-Pro-(64-bit).dat
2015-04-09 00:26 - 2015-04-09 00:26 - 00000000 ____D () C:\RegBackup
2015-04-09 00:24 - 2015-04-09 00:27 - 00003980 _____ () C:\Users\Bashar9\Desktop\Rkill.txt
2015-04-09 00:24 - 2015-04-09 00:24 - 00000000 ____D () C:\Users\Bashar9\Desktop\rkill
2015-04-09 00:20 - 2015-04-09 00:20 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-04-09 00:20 - 2015-04-09 00:20 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-04-08 23:09 - 2015-04-08 23:09 - 00000000 _____ () C:\Users\Bashar9\AppData\Local\{717D9B77-8AF3-45A9-9CFC-D4E88C130685}
2015-04-08 22:46 - 2015-04-08 22:46 - 00002295 _____ () C:\Users\Bashar9\Desktop\Chrome App Launcher.lnk
2015-04-08 22:46 - 2015-04-08 22:46 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-08 22:41 - 2015-04-08 22:41 - 00002251 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-04-08 22:41 - 2015-04-08 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-08 22:39 - 2015-04-08 22:40 - 00880208 _____ (Google Inc.) C:\Users\Bashar9\Downloads\ChromeSetup.exe
2015-04-08 22:35 - 2015-04-08 22:36 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Deployment
2015-04-08 22:35 - 2015-04-08 22:35 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Apps\2.0
2015-04-08 22:33 - 2015-04-08 22:33 - 01417395 _____ () C:\Users\Bashar9\Desktop\bookmarks_4_8_15.html
2015-04-08 22:28 - 2015-04-08 22:29 - 00002339 _____ () C:\Users\Bashar9\Downloads\software_removal_tool.log
2015-04-08 22:17 - 2015-04-08 22:17 - 00000000 ____D () C:\ProgramData\nnkmfbnnahfkhndmmpaahlihoipgelok
2015-04-08 22:17 - 2015-04-08 22:17 - 00000000 ____D () C:\ProgramData\3978880215184647033
2015-04-07 17:20 - 2015-04-07 17:20 - 06481755 _____ () C:\Users\Bashar9\Downloads\XW.v5.5.6.18861.130830.1623.rar
2015-04-05 22:17 - 2015-04-05 22:17 - 00000090 _____ () C:\bcmwl5.log
2015-04-05 22:09 - 2015-04-05 22:16 - 39773064 _____ (Hewlett-Packard Company ) C:\Users\Bashar9\Downloads\broadcom bcm-43xx.exe
2015-04-05 14:03 - 2015-04-05 14:10 - 72341440 _____ (Hewlett-Packard Company ) C:\Users\Bashar9\Downloads\sp66403 (1).exe
2015-04-05 13:59 - 2015-04-05 14:02 - 47868672 _____ (Hewlett-Packard Company ) C:\Users\Bashar9\Downloads\sp66403.exe
2015-04-04 20:13 - 2015-04-04 20:13 - 00880208 _____ (Google Inc.) C:\Users\Bashar9\Desktop\ChromeSetup.exe
2015-04-04 20:10 - 2015-04-04 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2015-04-04 20:09 - 2015-04-04 20:09 - 01085440 _____ () C:\Users\Bashar9\Downloads\puush.msi
2015-04-04 20:06 - 2015-04-04 20:06 - 00587848 _____ () C:\Users\Bashar9\Downloads\puush_is_still_sorry.exe
2015-04-04 18:06 - 2015-04-04 18:08 - 00010027 _____ () C:\Users\Bashar9\Downloads\steam_market.user.js
2015-04-03 22:03 - 2015-04-03 22:03 - 01179904 _____ () C:\Users\Bashar9\Desktop\22.wav
2015-04-03 19:49 - 2015-04-03 19:49 - 04963048 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-03 03:55 - 2015-04-03 03:55 - 00000086 _____ () C:\setup.log
2015-04-03 03:55 - 2015-04-03 03:55 - 00000000 ____D () C:\ProgramData\Atheros
2015-04-03 03:32 - 2015-04-03 03:33 - 05197824 _____ () C:\Users\Bashar9\Downloads\HPSupportSolutionsFramework-11.51.0049 (1).msi
2015-04-03 03:31 - 2015-04-03 03:32 - 05197824 _____ () C:\Users\Bashar9\Downloads\HPSupportSolutionsFramework-11.51.0049.msi
2015-04-02 16:12 - 2015-04-02 16:12 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\Bashar9\Downloads\autodetectutility.exe
2015-04-01 19:40 - 2015-04-03 20:12 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\BlackHole
2015-03-31 15:07 - 2015-03-31 15:08 - 00000000 ____D () C:\Users\Bashar9\Downloads\Hola
2015-03-31 02:14 - 2015-03-31 02:14 - 00333745 _____ () C:\Users\Bashar9\Desktop\a0LV8OZ_460sv.mp4
2015-03-29 13:06 - 2015-03-29 13:06 - 00561064 _____ (Oracle Corporation) C:\Users\Bashar9\Downloads\chromeinstall-8u40.exe
2015-03-26 14:11 - 2015-03-26 14:11 - 00046130 _____ () C:\Users\Bashar9\Downloads\SteamAchievementManager63_hotfix.zip
2015-03-26 11:53 - 2015-03-26 11:53 - 00000117 _____ () C:\Windows\system32\netcfg-168920456.txt
2015-03-26 11:53 - 2015-03-26 11:53 - 00000117 _____ () C:\Windows\system32\netcfg-168920253.txt
2015-03-25 18:04 - 2015-03-25 18:04 - 00001082 _____ () C:\Users\Bashar9\Desktop\Tomb Raider.lnk
2015-03-25 17:17 - 2015-03-25 17:17 - 00376208 _____ () C:\Users\Bashar9\Downloads\images (3).zip
2015-03-25 16:52 - 2014-10-09 07:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-03-25 16:52 - 2014-10-09 07:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-03-25 16:52 - 2014-10-09 07:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-03-25 16:52 - 2014-10-09 06:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-03-25 16:52 - 2014-10-09 06:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-03-25 16:52 - 2012-09-20 09:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2015-03-25 16:52 - 2012-09-20 08:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2015-03-25 16:40 - 2015-03-25 16:40 - 00709714 _____ () C:\Users\Bashar9\Downloads\images (2).zip
2015-03-25 16:34 - 2015-03-25 17:30 - 00000000 ____D () C:\Users\Bashar9\Desktop\333333333
2015-03-25 16:23 - 2015-03-25 16:23 - 00702705 _____ () C:\Users\Bashar9\Downloads\images (1).zip
2015-03-25 16:23 - 2015-03-25 16:23 - 00262267 _____ () C:\Users\Bashar9\Downloads\images.zip
2015-03-25 16:20 - 2014-07-16 01:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-03-25 14:50 - 2015-03-25 14:50 - 04009042 _____ () C:\Users\Bashar9\Downloads\Windows-8-8.1-KMS-Activator-Ultimate-2014-v1.5.1.rar
2015-03-25 14:49 - 2015-03-25 14:49 - 00000117 _____ () C:\Windows\system32\netcfg-93090585.txt
2015-03-25 14:47 - 2015-03-25 14:47 - 00000000 _RSHD () C:\Windows Activation Technologies
2015-03-25 14:47 - 2012-10-22 03:18 - 00103424 _____ (KJ inside) C:\Windows\system32\SLCHook.dll
2015-03-25 14:46 - 2015-03-25 14:46 - 00000117 _____ () C:\Windows\system32\netcfg-92940091.txt
2015-03-25 01:09 - 2015-03-25 01:09 - 00000117 _____ () C:\Windows\system32\netcfg-43882644.txt
2015-03-25 01:09 - 2015-03-25 01:09 - 00000117 _____ () C:\Windows\system32\netcfg-43879196.txt
2015-03-25 01:08 - 2015-03-25 01:08 - 00000117 _____ () C:\Windows\system32\netcfg-43872894.txt
2015-03-25 01:06 - 2015-03-25 01:06 - 00000117 _____ () C:\Windows\system32\netcfg-43752945.txt
2015-03-24 23:30 - 2014-02-04 02:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-03-24 23:30 - 2014-02-04 02:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-03-24 23:30 - 2014-02-01 09:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2015-03-24 23:30 - 2014-01-31 06:55 - 00209712 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2015-03-24 23:30 - 2014-01-31 03:48 - 00485888 _____ (Microsoft Corporation)

 

[Bashar00]

C:\Windows\SysWOW64\WSDApi.dll
2015-03-24 23:30 - 2014-01-31 03:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-03-24 23:30 - 2014-01-27 06:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-03-24 23:30 - 2014-01-16 02:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-03-24 23:30 - 2014-01-03 02:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-03-24 23:30 - 2014-01-03 02:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-03-24 23:29 - 2014-08-01 02:40 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-03-24 23:29 - 2013-06-17 01:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-03-24 23:29 - 2013-06-01 14:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-03-24 23:29 - 2013-06-01 14:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-03-24 23:29 - 2013-06-01 13:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-03-24 23:29 - 2013-06-01 12:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2015-03-24 23:29 - 2013-06-01 12:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-03-24 23:29 - 2013-06-01 12:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-03-24 23:29 - 2013-06-01 12:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2015-03-24 23:29 - 2013-06-01 12:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-03-24 23:29 - 2013-06-01 12:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-03-24 23:29 - 2013-06-01 12:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-03-24 23:29 - 2013-06-01 12:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-03-24 23:29 - 2013-06-01 12:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-03-24 23:29 - 2013-06-01 12:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2015-03-24 23:29 - 2013-06-01 12:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-03-24 23:29 - 2013-06-01 12:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-03-24 23:29 - 2013-06-01 12:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-03-24 23:29 - 2013-06-01 12:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-03-24 23:29 - 2013-06-01 12:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2015-03-24 23:29 - 2013-06-01 06:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2015-03-24 23:29 - 2013-05-25 01:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-24 23:29 - 2013-05-25 01:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-24 23:29 - 2013-05-25 01:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-24 23:29 - 2013-05-25 01:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-03-24 23:28 - 2015-02-23 13:52 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-24 23:28 - 2015-02-23 13:51 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-24 23:28 - 2015-02-23 13:50 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-24 23:28 - 2015-02-23 13:50 - 02656256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-24 23:28 - 2015-02-23 13:50 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-24 23:28 - 2015-02-23 13:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-24 23:28 - 2015-02-23 13:50 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-24 23:28 - 2015-02-23 12:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-24 23:28 - 2015-02-21 08:31 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-24 23:28 - 2015-02-21 08:31 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 00737280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-24 23:28 - 2015-02-21 08:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-24 23:28 - 2015-02-21 08:29 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-24 23:28 - 2015-02-21 08:29 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-24 23:28 - 2015-02-21 08:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-24 23:28 - 2013-01-10 04:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-03-24 23:28 - 2013-01-10 04:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-03-24 23:28 - 2013-01-10 02:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-03-24 23:28 - 2013-01-10 02:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-03-24 23:28 - 2013-01-10 02:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2015-03-24 23:28 - 2013-01-10 02:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-03-24 23:28 - 2013-01-10 02:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2015-03-24 23:28 - 2013-01-10 02:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-03-24 23:28 - 2013-01-10 02:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-03-24 23:28 - 2013-01-10 02:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-03-24 23:28 - 2013-01-10 02:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-03-24 23:28 - 2013-01-10 02:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-03-24 23:28 - 2013-01-10 02:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2015-03-24 23:28 - 2013-01-10 02:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-03-24 23:28 - 2013-01-10 02:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2015-03-24 23:28 - 2013-01-10 02:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-03-24 23:28 - 2012-11-02 08:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2015-03-24 23:28 - 2012-11-02 08:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-03-24 23:28 - 2012-11-02 08:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-03-24 23:28 - 2012-11-02 08:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-03-24 23:28 - 2012-11-02 08:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-03-24 23:28 - 2012-11-02 08:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-03-24 23:27 - 2015-02-23 13:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-24 23:27 - 2015-02-23 13:51 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-24 23:27 - 2015-02-23 13:51 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-03-24 23:27 - 2015-02-23 13:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-24 23:27 - 2015-02-23 13:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 19301888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-24 23:27 - 2015-02-23 13:50 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-24 23:27 - 2015-02-23 12:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2015-03-24 23:27 - 2015-02-21 08:31 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 14380544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-24 23:27 - 2015-02-21 08:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-24 23:27 - 2015-02-21 08:29 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-24 23:27 - 2015-02-21 07:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-24 23:26 - 2015-02-23 13:50 - 15410688 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-24 23:26 - 2015-02-23 13:49 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-24 23:26 - 2015-02-23 11:51 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-24 23:26 - 2015-02-21 08:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-03-24 23:26 - 2015-02-21 08:30 - 13768704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-24 23:26 - 2015-02-21 08:07 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2015-03-24 23:26 - 2015-02-21 06:00 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-03-24 23:23 - 2014-09-03 05:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-03-24 23:23 - 2014-09-03 05:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-03-24 23:23 - 2014-06-13 04:57 - 01453400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-03-24 23:23 - 2014-06-13 04:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-03-24 23:23 - 2013-10-19 08:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-03-24 23:23 - 2013-10-19 07:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-03-24 23:23 - 2013-10-10 14:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-03-24 23:23 - 2013-10-10 12:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-03-24 23:23 - 2013-10-10 12:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-03-24 23:23 - 2013-07-06 03:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-03-24 23:23 - 2013-07-04 05:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-03-24 23:23 - 2012-10-10 10:04 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-03-24 23:23 - 2012-10-10 09:31 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-03-24 23:23 - 2012-09-27 10:17 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2015-03-24 23:23 - 2012-09-27 10:17 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2015-03-24 23:23 - 2012-09-27 10:15 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2015-03-24 23:23 - 2012-09-27 09:35 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2015-03-24 23:23 - 2012-09-27 09:35 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2015-03-24 23:23 - 2012-09-27 09:34 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2015-03-24 23:22 - 2014-03-25 02:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2015-03-24 23:22 - 2014-03-25 01:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-03-24 23:20 - 2015-01-24 09:42 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-24 23:20 - 2015-01-24 08:00 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-24 23:20 - 2013-08-16 08:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-03-24 23:20 - 2013-08-16 08:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-03-24 23:20 - 2013-08-16 08:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-03-24 23:20 - 2013-08-16 08:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-03-24 23:20 - 2013-08-16 08:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-03-24 23:20 - 2013-08-16 08:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2015-03-24 23:20 - 2013-08-16 08:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2015-03-24 23:20 - 2013-08-16 08:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-03-24 23:20 - 2013-08-16 08:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-03-24 23:20 - 2013-08-16 08:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-03-24 23:20 - 2013-08-16 01:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2015-03-24 23:20 - 2013-08-16 01:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2015-03-24 23:20 - 2013-08-16 01:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2015-03-24 23:20 - 2013-08-16 01:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2015-03-24 23:20 - 2013-08-16 01:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2015-03-24 23:15 - 2012-09-20 10:55 - 03265256 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys
2015-03-24 23:15 - 2012-09-20 10:55 - 00533224 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys
2015-03-24 23:15 - 2012-09-20 09:33 - 03964416 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-03-24 23:15 - 2012-09-20 09:33 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-03-24 23:14 - 2012-09-20 12:08 - 00027280 _____ (Microsoft Corporation) C:\Windows\system32\avrt.dll
2015-03-24 23:14 - 2012-09-20 11:40 - 00389360 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-03-24 23:14 - 2012-09-20 11:31 - 00425192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-03-24 23:14 - 2012-09-20 09:47 - 00307192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00866304 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00699392 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-03-24 23:14 - 2012-09-20 09:33 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00545280 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-03-24 23:14 - 2012-09-20 09:33 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00420352 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-03-24 23:14 - 2012-09-20 09:33 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2015-03-24 23:14 - 2012-09-20 09:33 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-03-24 23:14 - 2012-09-20 09:33 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2015-03-24 23:14 - 2012-09-20 09:33 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2015-03-24 23:14 - 2012-09-20 09:32 - 01739264 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 01019392 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2015-03-24 23:14 - 2012-09-20 09:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-03-24 23:14 - 2012-09-20 09:31 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2015-03-24 23:14 - 2012-09-20 09:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\mmcss.dll
2015-03-24 23:14 - 2012-09-20 09:30 - 02016256 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-03-24 23:14 - 2012-09-20 09:30 - 01743872 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2015-03-24 23:14 - 2012-09-20 09:30 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-03-24 23:14 - 2012-09-20 09:30 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-03-24 23:14 - 2012-09-20 09:30 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-03-24 23:14 - 2012-09-20 09:30 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-03-24 23:14 - 2012-09-20 09:13 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2015-03-24 23:14 - 2012-09-20 09:13 - 00023656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2015-03-24 23:14 - 2012-09-20 09:08 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2015-03-24 23:14 - 2012-09-20 08:55 - 00995328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2015-03-24 23:14 - 2012-09-20 08:55 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2015-03-24 23:14 - 2012-09-20 08:55 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-03-24 23:14 - 2012-09-20 08:55 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2015-03-24 23:14 - 2012-09-20 08:55 - 00263168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2015-03-24 23:14 - 2012-09-20 08:55 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2015-03-24 23:14 - 2012-09-20 08:55 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-03-24 23:14 - 2012-09-20 08:55 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2015-03-24 23:14 - 2012-09-20 08:54 - 01369600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 01137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00413184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-03-24 23:14 - 2012-09-20 08:54 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2015-03-24 23:14 - 2012-09-20 08:53 - 02007040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2015-03-24 23:14 - 2012-09-20 08:53 - 01247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2015-03-24 23:14 - 2012-09-20 08:53 - 00675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-03-24 23:14 - 2012-09-20 08:53 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2015-03-24 23:14 - 2012-09-20 08:53 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2015-03-24 23:13 - 2012-09-20 09:33 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-03-24 23:13 - 2012-09-20 09:33 - 00110592 _____ () C:\Windows\system32\OEMLicense.dll
2015-03-24 23:13 - 2012-09-20 09:33 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2015-03-24 23:13 - 2012-09-20 09:33 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-03-24 23:13 - 2012-09-20 09:33 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-03-24 23:13 - 2012-09-20 09:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-03-24 23:13 - 2012-09-20 09:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\perfos.dll
2015-03-24 23:13 - 2012-09-20 09:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2015-03-24 23:13 - 2012-09-20 09:32 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2015-03-24 23:13 - 2012-09-20 09:32 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2015-03-24 23:13 - 2012-09-20 09:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2015-03-24 23:13 - 2012-09-20 09:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-03-24 23:13 - 2012-09-20 09:31 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-03-24 23:13 - 2012-09-20 09:31 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2015-03-24 23:13 - 2012-09-20 09:31 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2015-03-24 23:13 - 2012-09-20 09:30 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-03-24 23:13 - 2012-09-20 09:30 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2015-03-24 23:13 - 2012-09-20 09:30 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2015-03-24 23:13 - 2012-09-20 09:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-03-24 23:13 - 2012-09-20 09:09 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2015-03-24 23:13 - 2012-09-20 08:55 - 00417280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-03-24 23:13 - 2012-09-20 08:55 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-03-24 23:13 - 2012-09-20 08:55 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-03-24 23:13 - 2012-09-20 08:54 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2015-03-24 23:13 - 2012-09-20 08:54 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2015-03-24 23:13 - 2012-09-20 08:54 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2015-03-24 23:13 - 2012-09-20 08:54 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2015-03-24 23:13 - 2012-09-20 08:54 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-03-24 23:13 - 2012-09-20 08:53 - 01701376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-03-24 23:13 - 2012-09-20 08:53 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-03-24 23:13 - 2012-09-20 08:53 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-03-24 23:02 - 2014-11-15 08:13 - 03286016 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-03-24 23:01 - 2014-11-15 09:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-03-24 23:01 - 2014-11-15 08:13 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-03-24 23:01 - 2014-11-15 08:13 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-03-24 23:01 - 2014-11-15 08:13 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-03-24 23:01 - 2014-11-15 08:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-03-24 23:01 - 2014-11-15 08:13 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-03-24 23:01 - 2014-11-15 08:13 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-03-24 23:01 - 2014-11-15 08:12 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-03-24 23:01 - 2014-11-15 06:54 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-03-24 23:01 - 2014-11-15 06:53 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-03-24 23:01 - 2014-11-15 06:53 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-03-24 23:01 - 2014-11-15 06:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-03-24 23:01 - 2014-11-05 09:40 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-03-24 23:01 - 2014-11-05 09:39 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-03-24 23:01 - 2014-11-01 09:28 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-03-24 23:01 - 2014-10-30 10:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-24 23:01 - 2014-10-30 08:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-24 23:01 - 2014-10-29 17:21 - 00499008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-03-24 23:01 - 2014-10-28 01:10 - 00390841 _____ () C:\Windows\system32\ApnDatabase.xml
2015-03-24 23:01 - 2014-08-28 09:01 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-03-24 23:00 - 2015-03-06 10:39 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-03-24 23:00 - 2015-03-06 10:39 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-24 23:00 - 2015-03-06 08:48 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-03-24 23:00 - 2015-03-06 08:48 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-24 23:00 - 2015-02-03 02:18 - 00569712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-24 23:00 - 2015-01-15 14:44 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-03-24 23:00 - 2015-01-15 14:43 - 01282560 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-24 23:00 - 2015-01-15 13:00 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-03-24 23:00 - 2015-01-15 12:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-24 23:00 - 2015-01-15 12:09 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-24 22:59 - 2015-02-26 07:35 - 04063232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-24 22:59 - 2014-06-18 02:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-03-24 22:59 - 2014-06-18 02:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-03-24 22:56 - 2014-06-05 04:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-03-24 22:56 - 2014-06-04 02:12 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2015-03-24 22:55 - 2014-12-11 09:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-03-24 22:51 - 2015-02-20 16:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-24 22:51 - 2015-02-20 14:56 - 00366592 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-24 22:51 - 2015-02-20 11:10 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-24 22:51 - 2015-02-20 10:24 - 00304128 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-24 22:51 - 2015-01-31 16:48 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-03-24 22:51 - 2015-01-31 08:55 - 00275712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-03-24 22:51 - 2012-11-08 07:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-24 22:51 - 2012-11-08 07:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-24 22:51 - 2012-11-08 07:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-24 22:51 - 2012-11-08 07:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-24 22:51 - 2012-11-08 07:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-24 22:51 - 2012-11-08 07:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-24 22:50 - 2013-10-05 09:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-03-24 22:50 - 2013-08-30 08:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-03-24 22:50 - 2013-08-30 08:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-03-24 22:50 - 2013-08-30 02:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2015-03-24 22:50 - 2013-08-30 02:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-03-24 22:44 - 2013-07-25 02:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-03-24 22:44 - 2013-07-25 02:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-24 22:43 - 2014-09-13 09:24 - 02233152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-03-24 22:43 - 2014-08-29 07:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-03-24 22:43 - 2014-08-29 07:04 - 02837504 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-03-24 22:43 - 2014-08-29 07:04 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-03-24 22:43 - 2014-07-24 16:12 - 00328512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-03-24 22:43 - 2013-08-30 08:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2015-03-24 22:43 - 2013-08-30 08:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-03-24 22:43 - 2013-08-30 02:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-03-24 22:43 - 2013-08-21 09:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-03-24 22:43 - 2013-08-10 09:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-03-24 22:43 - 2012-09-20 09:48 - 00062488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2015-03-24 22:42 - 2014-09-03 05:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2015-03-24 22:42 - 2014-09-03 05:22 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-03-24 22:42 - 2014-08-29 07:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-03-24 22:42 - 2014-08-28 09:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2015-03-24 22:42 - 2014-08-28 09:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-03-24 22:42 - 2014-08-28 08:59 - 00616448 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-03-24 22:42 - 2014-08-28 08:59 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-03-24 22:42 - 2014-08-28 08:59 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-03-24 22:42 - 2014-08-28 08:59 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2015-03-24 22:40 - 2015-01-29 11:05 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-24 22:40 - 2015-01-29 09:19 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-24 22:40 - 2012-08-31 03:53 - 00017888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2015-03-24 22:40 - 2012-08-31 03:52 - 00017888 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2015-03-24 22:37 - 2013-07-06 01:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-03-24 22:37 - 2013-07-06 01:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-03-24 22:37 - 2013-07-02 01:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2015-03-24 22:37 - 2013-06-22 08:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-03-24 22:37 - 2013-06-22 08:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-03-24 22:29 - 2014-10-09 06:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-03-24 22:29 - 2014-10-09 06:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-03-24 22:29 - 2014-10-09 06:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-03-24 22:29 - 2014-09-22 08:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-03-24 22:29 - 2014-09-22 06:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-03-24 22:29 - 2014-09-18 02:24 - 00987136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2015-03-24 22:29 - 2014-09-18 02:24 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll
2015-03-24 22:29 - 2014-09-18 02:24 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm.dll
2015-03-24 22:29 - 2014-09-18 02:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adrclient.dll
2015-03-24 22:29 - 2014-09-18 01:57 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2015-03-24 22:29 - 2014-09-18 01:57 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2015-03-24 22:29 - 2014-09-18 01:57 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\srm.dll
2015-03-24 22:29 - 2014-09-18 01:57 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\adrclient.dll
2015-03-24 22:29 - 2013-07-09 11:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2015-03-24 22:29 - 2013-07-09 06:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-03-24 22:29 - 2013-07-09 01:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-03-24 22:29 - 2013-07-09 01:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-03-24 22:29 - 2013-07-09 01:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2015-03-24 22:29 - 2013-07-09 01:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-03-24 22:29 - 2013-07-03 03:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-03-24 22:29 - 2013-07-03 03:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-03-24 22:29 - 2013-07-03 03:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-03-24 22:29 - 2013-07-03 03:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-03-24 22:29 - 2013-07-01 01:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2015-03-24 22:29 - 2013-07-01 01:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2015-03-24 22:29 - 2013-06-29 09:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-03-24 22:29 - 2013-06-29 09:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-03-24 22:29 - 2013-06-26 06:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-03-24 22:29 - 2013-06-26 05:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-03-24 22:29 - 2013-06-25 01:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-03-24 22:29 - 2013-06-25 01:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-03-24 22:29 - 2013-06-25 01:54 - 00074240 _____ (Microsoft Corporation)

 

[Bashar00]

C:\Windows\system32\wcmcsp.dll
2015-03-24 22:29 - 2013-06-19 08:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2015-03-24 22:29 - 2013-06-19 08:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-03-24 22:29 - 2013-06-19 01:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2015-03-24 22:29 - 2013-06-19 01:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2015-03-24 22:29 - 2013-06-12 02:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-03-24 22:29 - 2013-06-12 02:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-03-24 22:29 - 2013-06-10 22:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-03-24 22:29 - 2013-06-10 22:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-03-24 22:29 - 2013-06-10 22:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-03-24 22:29 - 2013-06-10 22:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-03-24 22:29 - 2013-06-06 11:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-03-24 22:29 - 2013-01-10 02:26 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmstormod.dll
2015-03-24 22:29 - 2013-01-10 02:23 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\srmstormod.dll
2015-03-24 22:29 - 2012-10-02 10:34 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-03-24 22:28 - 2012-10-24 07:54 - 00396008 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-03-24 22:28 - 2012-10-17 07:32 - 01172992 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2015-03-24 22:28 - 2012-10-17 07:32 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2015-03-24 22:28 - 2012-10-17 06:57 - 00929792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2015-03-24 22:28 - 2012-10-17 06:57 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2015-03-24 22:28 - 2012-10-12 09:14 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\srmshell.dll
2015-03-24 22:28 - 2012-10-12 09:14 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\srmtrace.dll
2015-03-24 22:28 - 2012-10-12 09:14 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\srm_ps.dll
2015-03-24 22:28 - 2012-10-12 09:13 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\dskquota.dll
2015-03-24 22:28 - 2012-10-12 08:41 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmshell.dll
2015-03-24 22:28 - 2012-10-12 08:41 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmtrace.dll
2015-03-24 22:28 - 2012-10-12 08:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm_ps.dll
2015-03-24 22:28 - 2012-10-12 08:39 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2015-03-24 22:27 - 2012-10-22 03:18 - 01361408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-03-24 22:27 - 2012-10-11 08:45 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2015-03-24 22:26 - 2012-10-11 10:47 - 00793200 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-24 22:26 - 2012-10-11 10:25 - 00056552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2015-03-24 22:26 - 2012-10-11 10:23 - 00441576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-03-24 22:26 - 2012-10-11 10:13 - 00033512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys
2015-03-24 22:26 - 2012-10-11 08:46 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2015-03-24 22:26 - 2012-10-11 08:46 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2015-03-24 22:26 - 2012-10-11 08:46 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2015-03-24 22:26 - 2012-10-11 08:45 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-03-24 22:26 - 2012-10-11 08:45 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-03-24 22:26 - 2012-10-11 08:45 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2015-03-24 22:26 - 2012-10-11 08:45 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2015-03-24 22:26 - 2012-10-11 08:44 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-03-24 22:26 - 2012-10-11 08:44 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-03-24 22:26 - 2012-10-11 08:44 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 01280000 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-03-24 22:26 - 2012-10-11 08:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-03-24 22:26 - 2012-10-11 08:42 - 00612416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-24 22:26 - 2012-10-11 08:23 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-pdc.dll
2015-03-24 22:26 - 2012-10-11 08:23 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\kbdhebl3.dll
2015-03-24 22:26 - 2012-10-11 08:07 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-03-24 22:26 - 2012-10-11 08:07 - 00414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2015-03-24 22:26 - 2012-10-11 08:07 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2015-03-24 22:26 - 2012-10-11 08:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-03-24 22:26 - 2012-10-11 08:06 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-03-24 22:26 - 2012-10-11 08:05 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2015-03-24 22:26 - 2012-10-11 07:42 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdhebl3.dll
2015-03-24 22:26 - 2012-10-11 03:45 - 00478424 _____ () C:\Windows\SysWOW64\locale.nls
2015-03-24 22:26 - 2012-10-11 03:44 - 00478424 _____ () C:\Windows\system32\locale.nls
2015-03-24 22:24 - 2013-03-02 13:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2015-03-24 22:24 - 2013-03-02 11:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-03-24 22:24 - 2013-03-02 11:23 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-03-24 22:24 - 2013-03-02 11:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-03-24 22:24 - 2013-03-02 11:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-03-24 22:24 - 2013-03-02 11:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2015-03-24 22:24 - 2013-03-02 11:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2015-03-24 22:24 - 2013-03-02 11:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-03-24 22:24 - 2013-03-02 05:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-03-24 22:24 - 2013-03-02 05:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-03-24 22:24 - 2013-03-02 05:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-03-24 22:24 - 2013-03-02 05:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-03-24 22:24 - 2013-03-02 05:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2015-03-24 22:24 - 2013-03-02 05:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2015-03-24 22:24 - 2013-03-02 05:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2015-03-24 22:24 - 2013-03-02 05:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-03-24 22:24 - 2013-03-02 05:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-03-24 22:24 - 2013-03-01 07:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-03-24 22:24 - 2013-03-01 07:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2015-03-24 22:24 - 2013-03-01 07:55 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-03-24 22:24 - 2013-01-09 06:59 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-03-24 22:24 - 2013-01-09 06:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-03-24 22:17 - 2015-01-29 11:45 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-24 22:16 - 2014-12-19 09:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-03-24 22:14 - 2014-07-07 08:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-03-24 22:14 - 2014-07-07 08:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-03-24 22:14 - 2014-07-07 08:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-03-24 22:14 - 2014-07-07 08:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-03-24 22:14 - 2014-07-07 07:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-03-24 22:14 - 2014-07-07 07:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-03-24 22:14 - 2014-07-07 07:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-03-24 22:14 - 2014-07-07 06:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-03-24 22:13 - 2014-06-03 01:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-03-24 22:12 - 2014-07-24 06:33 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-03-24 22:12 - 2014-07-24 06:33 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-03-24 22:11 - 2015-01-20 09:41 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-24 22:11 - 2015-01-20 08:10 - 00892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-24 22:11 - 2014-10-18 11:44 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-03-24 22:11 - 2014-10-18 10:05 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-03-24 22:10 - 2014-12-08 09:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-03-24 22:10 - 2014-12-08 08:04 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-03-24 22:10 - 2013-04-24 02:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-03-24 22:10 - 2013-04-24 02:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-24 22:10 - 2013-04-24 01:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-03-24 22:10 - 2013-04-24 01:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-24 22:08 - 2014-12-06 10:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-03-24 22:08 - 2014-12-06 10:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-03-24 22:08 - 2014-12-06 10:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-03-24 22:08 - 2014-12-06 09:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-03-24 22:08 - 2014-05-03 09:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-03-24 22:08 - 2014-05-03 07:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-03-24 22:08 - 2014-04-30 01:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-03-24 22:08 - 2014-04-30 01:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-03-24 22:08 - 2014-04-24 02:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-03-24 22:08 - 2014-04-24 02:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-24 22:08 - 2014-04-24 02:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-03-24 22:08 - 2014-04-24 02:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-24 22:08 - 2014-01-31 03:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-24 22:08 - 2013-08-16 08:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-03-24 22:08 - 2012-10-06 07:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-03-24 22:08 - 2012-10-06 07:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-03-24 22:06 - 2013-04-12 01:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-03-24 22:06 - 2013-04-12 01:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-03-24 22:06 - 2013-02-02 11:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2015-03-24 22:06 - 2013-02-02 11:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-03-24 22:06 - 2013-02-02 11:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-03-24 22:06 - 2013-02-02 11:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-03-24 22:06 - 2013-02-02 11:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-03-24 22:06 - 2013-02-02 11:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-03-24 22:06 - 2013-02-02 11:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-03-24 22:06 - 2013-02-02 11:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-03-24 22:06 - 2013-02-02 11:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-03-24 22:06 - 2013-02-02 11:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2015-03-24 22:06 - 2013-02-02 11:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-03-24 22:06 - 2013-02-02 11:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-03-24 22:06 - 2013-02-02 11:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-03-24 22:06 - 2013-02-02 11:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-03-24 22:06 - 2013-02-02 11:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-03-24 22:06 - 2013-02-02 10:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-03-24 22:06 - 2013-02-02 08:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-03-24 22:06 - 2013-02-02 08:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-03-24 22:05 - 2014-03-11 06:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-24 22:05 - 2014-03-11 03:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-03-24 22:05 - 2014-03-11 03:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-03-24 22:05 - 2014-03-11 03:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-24 22:05 - 2014-03-11 03:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-03-24 22:05 - 2014-03-11 03:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-03-24 22:05 - 2014-03-11 03:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-03-24 22:05 - 2014-03-11 03:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-24 22:05 - 2014-03-11 03:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-03-24 22:05 - 2014-03-11 03:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-24 22:05 - 2014-03-10 06:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-03-24 22:05 - 2014-03-10 04:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-24 22:05 - 2013-10-31 08:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-03-24 22:05 - 2013-10-31 08:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-03-24 22:05 - 2013-10-31 07:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2015-03-24 22:05 - 2013-10-31 06:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2015-03-24 22:05 - 2013-10-13 23:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2015-03-24 22:05 - 2013-08-27 08:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-03-24 22:05 - 2013-08-27 08:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-03-24 22:05 - 2013-08-27 01:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-03-24 22:05 - 2013-08-27 01:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-03-24 22:05 - 2012-10-11 08:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2015-03-24 22:05 - 2012-10-11 08:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2015-03-24 22:05 - 2012-10-11 08:07 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2015-03-24 22:03 - 2014-12-06 10:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-03-24 22:03 - 2014-12-06 10:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-03-24 22:03 - 2014-12-06 10:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-03-24 22:03 - 2014-12-06 10:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-24 22:03 - 2014-12-06 10:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-24 22:03 - 2014-12-06 09:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-03-24 22:03 - 2014-12-06 09:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-03-24 22:03 - 2014-12-06 09:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-03-24 22:03 - 2014-10-03 04:21 - 00522728 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-24 22:03 - 2014-10-03 01:29 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-03-24 22:03 - 2014-07-16 02:03 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-03-24 22:03 - 2014-07-12 05:36 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-03-24 22:03 - 2013-07-09 09:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-03-24 22:03 - 2013-07-09 07:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-03-24 22:03 - 2013-07-01 04:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-03-24 22:03 - 2013-07-01 04:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-03-24 22:03 - 2013-07-01 04:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-03-24 22:03 - 2013-07-01 04:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-03-24 22:03 - 2013-06-29 06:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-03-24 22:03 - 2013-06-29 06:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-03-24 22:03 - 2013-02-12 03:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-03-24 22:01 - 2012-11-27 09:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-03-24 22:01 - 2012-11-27 07:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-03-24 22:01 - 2012-11-27 07:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-03-24 22:01 - 2012-11-27 07:19 - 01536512 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-03-24 22:01 - 2012-11-27 07:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-03-24 22:01 - 2012-11-27 07:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2015-03-24 22:01 - 2012-11-27 07:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-03-24 22:00 - 2013-05-04 09:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-03-24 22:00 - 2013-05-04 09:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-03-24 22:00 - 2013-05-04 09:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-03-24 22:00 - 2013-05-04 09:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-03-24 22:00 - 2013-05-04 09:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-03-24 22:00 - 2013-05-04 09:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-03-24 22:00 - 2013-05-04 09:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00820736 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-03-24 22:00 - 2013-05-04 09:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-03-24 22:00 - 2013-05-04 09:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-03-24 22:00 - 2013-05-04 07:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-03-24 22:00 - 2013-05-04 07:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-03-24 22:00 - 2013-05-04 07:56 - 00582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2015-03-24 22:00 - 2013-05-04 07:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-03-24 22:00 - 2013-05-04 07:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-03-24 22:00 - 2013-05-04 07:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2015-03-24 22:00 - 2013-05-04 07:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-03-24 22:00 - 2013-05-04 07:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2015-03-24 22:00 - 2013-03-02 05:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-03-24 22:00 - 2012-11-27 07:20 - 01217536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-03-24 22:00 - 2012-11-27 07:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2015-03-24 22:00 - 2012-11-27 07:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-03-24 22:00 - 2012-11-27 07:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2015-03-24 22:00 - 2012-11-27 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2015-03-24 22:00 - 2012-11-27 06:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2015-03-24 22:00 - 2012-09-11 08:28 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2015-03-24 22:00 - 2012-09-11 08:27 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2015-03-24 21:59 - 2013-05-04 10:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-03-24 21:59 - 2013-05-04 09:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-03-24 21:59 - 2013-05-04 09:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-03-24 21:59 - 2013-05-04 07:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-03-24 21:59 - 2013-05-04 07:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-03-24 21:59 - 2013-05-04 07:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-03-24 21:59 - 2013-05-04 07:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-03-24 21:59 - 2013-05-04 07:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-03-24 21:59 - 2013-05-04 07:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-03-24 21:59 - 2013-05-04 07:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-03-24 21:59 - 2013-03-02 05:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-03-24 21:59 - 2013-02-02 11:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-03-24 21:59 - 2013-02-02 11:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-03-24 21:58 - 2013-05-15 05:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-03-24 21:58 - 2013-05-15 05:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-03-24 21:58 - 2013-05-15 05:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2015-03-24 21:58 - 2013-05-15 05:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-03-24 21:58 - 2012-11-20 08:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2015-03-24 21:58 - 2012-11-20 08:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-03-24 21:58 - 2012-11-20 08:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2015-03-24 21:58 - 2012-11-20 07:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL
2015-03-24 21:58 - 2012-11-20 07:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-03-24 21:58 - 2012-11-06 07:18 - 11459584 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-03-24 21:57 - 2012-11-06 10:33 - 01566432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-03-24 21:57 - 2012-11-06 08:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-24 21:57 - 2012-11-06 07:48 - 01150160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00883712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-03-24 21:57 - 2012-11-06 07:20 - 00516608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-03-24 21:57 - 2012-11-06 07:20 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-03-24 21:57 - 2012-11-06 07:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 08552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2015-03-24 21:57 - 2012-11-06 07:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2015-03-24 21:57 - 2012-11-06 07:18 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2015-03-24 21:57 - 2012-11-06 07:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-03-24 21:57 - 2012-11-06 07:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-03-24 21:57 - 2012-11-06 07:18 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-03-24 21:57 - 2012-11-06 07:17 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-03-24 21:57 - 2012-11-06 07:17 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-03-24 21:57 - 2012-11-06 07:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2015-03-24 21:57 - 2012-11-06 06:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-03-24 21:57 - 2012-11-06 06:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-03-24 21:57 - 2012-11-06 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2015-03-24 21:57 - 2012-11-06 06:55 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2015-03-24 21:57 - 2012-11-06 06:55 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2015-03-24 21:57 - 2012-11-06 06:55 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2015-03-24 21:57 - 2012-11-06 06:55 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fxppm.sys
2015-03-24 21:54 - 2013-08-10 08:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-03-24 21:54 - 2013-08-10 08:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2015-03-24 21:54 - 2013-08-10 06:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-03-24 21:54 - 2013-08-02 09:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-03-24 21:54 - 2013-08-02 08:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-03-24 21:54 - 2013-07-25 02:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-03-24 21:54 - 2013-07-25 02:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-03-24 21:54 - 2013-07-13 09:15 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2015-03-24 21:54 - 2013-07-13 07:23 - 00366592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2015-03-24 21:54 - 2013-03-02 11:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2015-03-24 21:53 - 2014-08-30 08:48 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-03-24 21:53 - 2014-08-30 08:47 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-24 21:53 - 2014-08-30 08:46 - 02306560 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-03-24 21:53 - 2014-08-30 07:05 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-03-24 21:53 - 2014-08-30 07:04 - 02416128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-24 21:53 - 2014-08-30 07:03 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-03-24 21:53 - 2014-06-13 02:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-03-24 21:53 - 2014-06-13 02:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-03-24 21:53 - 2013-08-03 09:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-03-24 21:53 - 2013-08-03 09:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-03-24 21:53 - 2013-08-03 09:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-03-24 21:53 - 2013-08-03 08:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2015-03-24 21:53 - 2013-08-03 08:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-03-24 21:53 - 2013-08-03 08:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-03-24 21:51 - 2014-07-24 16:50 - 00447296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-03-24 21:51 - 2014-07-17 02:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2015-03-24 21:51 - 2014-07-17 01:59 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-03-24 21:51 - 2014-07-17 01:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-03-24 21:51 - 2014-07-12 09:45 - 01549824 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-03-24 21:51 - 2014-07-12 07:36 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-03-24 21:51 - 2014-07-12 07:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-03-24 21:51 - 2014-07-12 07:34 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-03-24 21:51 - 2014-07-12 07:34 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-03-24 21:51 - 2014-06-28 09:57 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-03-24 21:51 - 2014-06-28 05:23 - 01126400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-03-24 21:46 - 2014-08-09 11:30 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-03-24 21:46 - 2014-08-09 11:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2015-03-24 21:46 - 2013-05-04 09:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-03-24 21:46 - 2013-05-04 07:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-03-24 21:45 - 2014-05-29 07:04 - 00094552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-24 21:45 - 2014-03-01 12:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-03-24 21:45 - 2014-03-01 12:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-03-24 21:45 - 2014-03-01 11:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-03-24 21:45 - 2014-03-01 09:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-03-24 21:45 - 2014-02-15 07:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-03-24 21:45 - 2013-11-26 02:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-03-24 21:45 - 2013-10-10 12:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-03-24 21:45 - 2013-10-10 12:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-03-24 21:45 - 2013-10-10 12:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-03-24 21:45 - 2013-10-10 12:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-03-24 21:45 - 2013-10-10 12:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-03-24 21:45 - 2013-10-10 12:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-03-24 21:45 - 2013-10-10 12:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-03-24 21:45 - 2013-07-13 07:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-24 21:45 - 2013-07-13 07:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll

 

[Bashar00]

2015-03-24 21:45 - 2013-07-13 07:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-03-24 21:45 - 2013-06-29 06:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-03-24 21:45 - 2013-05-04 07:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-03-24 21:45 - 2012-11-20 07:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2015-03-24 21:44 - 2014-01-13 02:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-03-24 21:44 - 2014-01-13 02:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-03-24 21:44 - 2013-11-20 03:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-03-24 21:44 - 2013-11-20 02:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-03-24 21:44 - 2013-07-13 09:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-24 21:44 - 2013-07-13 09:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-24 21:44 - 2013-07-13 09:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-03-24 21:44 - 2013-07-13 09:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-03-24 21:43 - 2015-03-24 21:43 - 00000117 _____ () C:\Windows\system32\netcfg-31562761.txt
2015-03-24 21:43 - 2015-03-24 21:43 - 00000117 _____ () C:\Windows\system32\netcfg-31557676.txt
2015-03-24 21:43 - 2015-03-24 21:43 - 00000117 _____ () C:\Windows\system32\netcfg-31551108.txt
2015-03-24 21:42 - 2015-03-24 21:42 - 00000117 _____ () C:\Windows\system32\netcfg-31479675.txt
2015-03-24 21:38 - 2015-03-24 21:38 - 00000117 _____ () C:\Windows\system32\netcfg-31250432.txt
2015-03-24 21:36 - 2015-03-24 21:36 - 00000117 _____ () C:\Windows\system32\netcfg-31140529.txt
2015-03-24 21:34 - 2013-04-09 00:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-03-24 21:34 - 2013-04-09 00:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-03-24 21:34 - 2013-04-09 00:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-03-24 21:34 - 2013-04-09 00:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-03-24 21:34 - 2013-04-09 00:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-03-24 21:34 - 2013-03-16 01:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-03-24 21:33 - 2013-04-09 02:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-03-24 21:33 - 2013-04-09 02:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-24 21:33 - 2013-04-09 02:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-24 21:33 - 2013-04-09 00:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-24 21:33 - 2013-04-09 00:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-03-24 21:33 - 2013-04-09 00:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-03-24 21:33 - 2013-04-09 00:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-03-24 21:33 - 2013-04-09 00:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-03-24 21:33 - 2013-04-09 00:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-03-24 21:33 - 2013-02-02 11:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-03-24 21:33 - 2012-12-13 06:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-03-24 21:33 - 2012-10-11 08:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2015-03-24 21:33 - 2012-10-11 08:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-03-24 21:33 - 2012-09-20 08:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2015-03-24 21:33 - 2012-09-20 08:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-03-24 21:33 - 2012-09-20 08:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-03-24 21:33 - 2012-09-20 08:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-03-24 21:33 - 2012-09-20 08:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-03-24 21:33 - 2012-09-20 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-03-24 21:33 - 2012-09-20 08:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-24 21:33 - 2012-09-20 08:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-24 21:33 - 2012-09-20 08:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-24 21:33 - 2012-09-20 08:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-24 21:32 - 2013-04-09 07:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-03-24 21:32 - 2013-04-09 07:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-03-24 21:32 - 2013-04-09 07:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-03-24 21:32 - 2013-04-09 07:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-03-24 21:32 - 2013-04-09 07:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-03-24 21:32 - 2012-10-11 08:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-03-24 21:32 - 2012-10-11 08:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2015-03-24 21:31 - 2013-04-09 08:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-24 21:31 - 2013-04-09 08:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-24 21:31 - 2013-04-09 08:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-24 21:31 - 2013-04-09 08:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2015-03-24 21:31 - 2013-04-09 08:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2015-03-24 21:31 - 2013-04-09 08:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2015-03-24 21:31 - 2013-04-09 07:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-03-24 21:31 - 2013-04-09 07:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-24 21:31 - 2013-04-09 07:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-03-24 21:31 - 2013-04-09 07:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-03-24 21:31 - 2013-04-09 07:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-03-24 21:31 - 2013-04-09 07:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-03-24 21:31 - 2013-04-09 07:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-03-24 21:31 - 2013-04-09 05:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-03-24 21:31 - 2013-04-09 05:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-24 21:31 - 2013-04-09 05:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-03-24 21:31 - 2013-04-05 02:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-03-24 21:31 - 2013-03-16 01:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-03-24 21:31 - 2013-02-02 11:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-03-24 21:31 - 2013-01-10 04:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-03-24 21:31 - 2012-12-13 07:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-03-24 21:31 - 2012-09-20 09:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2015-03-24 21:31 - 2012-09-20 09:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2015-03-24 21:31 - 2012-09-20 09:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-03-24 21:31 - 2012-09-20 09:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-03-24 21:31 - 2012-09-20 09:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-03-24 21:31 - 2012-09-20 09:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-03-24 21:31 - 2012-09-20 09:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-03-24 21:31 - 2012-09-20 09:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-24 21:31 - 2012-09-20 09:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-24 21:31 - 2012-09-20 09:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2015-03-24 21:31 - 2012-09-20 09:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2015-03-24 21:31 - 2012-09-20 09:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-24 21:31 - 2012-09-20 09:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-03-24 21:31 - 2012-07-26 06:37 - 00415232 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2015-03-24 21:30 - 2013-04-09 05:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-03-24 21:19 - 2015-03-24 21:19 - 00000117 _____ () C:\Windows\system32\netcfg-30099441.txt
2015-03-24 21:19 - 2015-03-24 21:19 - 00000117 _____ () C:\Windows\system32\netcfg-30099347.txt
2015-03-24 12:58 - 2015-03-24 12:58 - 00000117 _____ () C:\Windows\system32\netcfg-61932.txt
2015-03-24 12:57 - 2015-03-24 12:57 - 00000117 _____ () C:\Windows\system32\netcfg-91447.txt
2015-03-24 12:56 - 2015-03-24 12:56 - 00000117 _____ () C:\Windows\system32\netcfg-57876.txt
2015-03-24 12:54 - 2015-03-24 12:54 - 00000117 _____ () C:\Windows\system32\netcfg-231583.txt
2015-03-22 21:09 - 2015-03-22 21:09 - 00000117 _____ () C:\Windows\system32\netcfg-368862351.txt
2015-03-22 21:09 - 2015-03-22 21:09 - 00000117 _____ () C:\Windows\system32\netcfg-368858966.txt
2015-03-22 15:23 - 2015-03-22 15:23 - 00000117 _____ () C:\Windows\system32\netcfg-348091910.txt
2015-03-22 15:23 - 2015-03-22 15:23 - 00000117 _____ () C:\Windows\system32\netcfg-348089710.txt
2015-03-21 13:53 - 2015-03-21 13:54 - 00000000 ____D () C:\Users\Bashar9\Desktop\HGH
2015-03-21 13:53 - 2015-03-21 13:53 - 00000000 ____D () C:\Users\Bashar9\Desktop\New Folder
2015-03-21 13:46 - 2015-03-21 13:53 - 261596448 ____R () C:\Users\Bashar9\Downloads\[しまじ] いじめちゃらめっ ❤.zip
2015-03-21 13:46 - 2015-03-21 13:46 - 00020329 _____ () C:\Users\Bashar9\Downloads\{EHT PERSONALIZED TORRENT - DO NOT REDISTRIBUTE} [しまじ] いじめちゃらめっ ❤.zip.torrent
2015-03-21 13:45 - 2015-03-21 13:45 - 310618683 _____ () C:\Users\Bashar9\Downloads\(同人CG集) [桜桃] ロリロリ妹たちと夏休み！.zip
2015-03-21 13:44 - 2015-03-21 13:44 - 00012248 _____ () C:\Users\Bashar9\Downloads\{EHT PERSONALIZED TORRENT - DO NOT REDISTRIBUTE} (同人CG集) [桜桃] ロリロリ妹たちと夏休み！.zip (1).torrent
2015-03-21 13:44 - 2015-03-21 13:44 - 00012238 _____ () C:\Users\Bashar9\Downloads\{EHT PERSONALIZED TORRENT - DO NOT REDISTRIBUTE} (同人CG集) [桜桃] ロリロリ妹たちと夏休み！.zip.torrent
2015-03-20 11:33 - 2015-03-20 11:33 - 00000000 ____D () C:\Users\Bashar9\Tracing
2015-03-19 12:28 - 2013-07-20 01:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-03-19 12:28 - 2013-07-20 01:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-03-19 12:27 - 2012-11-03 08:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-03-19 12:27 - 2012-11-03 08:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-03-19 12:27 - 2012-11-03 08:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-03-19 12:27 - 2012-11-03 08:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-03-19 12:27 - 2012-11-03 08:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2015-03-19 12:27 - 2012-11-03 08:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-03-19 12:27 - 2012-11-03 08:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2015-03-19 12:27 - 2012-11-03 08:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2015-03-19 12:21 - 2014-09-25 02:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-03-19 12:21 - 2014-09-25 02:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-03-19 12:21 - 2014-05-30 01:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-03-19 12:20 - 2015-01-24 09:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-19 12:20 - 2015-01-24 08:00 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-19 12:20 - 2014-12-19 07:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-03-19 12:05 - 2015-03-19 12:05 - 00000117 _____ () C:\Windows\system32\netcfg-77017350.txt
2015-03-19 12:05 - 2015-03-19 12:05 - 00000117 _____ () C:\Windows\system32\netcfg-77017163.txt
2015-03-17 22:40 - 2014-06-20 02:35 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-03-17 22:40 - 2014-06-20 01:24 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-03-17 22:38 - 2015-02-17 09:54 - 19777536 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-17 22:38 - 2015-02-17 08:13 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-17 22:38 - 2014-10-23 15:47 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-03-17 22:38 - 2014-10-23 14:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-03-17 22:36 - 2014-10-11 08:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-17 22:35 - 2014-10-11 08:41 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-17 22:35 - 2014-08-22 02:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-03-17 22:35 - 2014-08-22 02:27 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-03-17 22:35 - 2012-11-01 07:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-03-17 22:35 - 2012-11-01 07:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-03-17 22:35 - 2012-11-01 07:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-03-17 22:35 - 2012-11-01 07:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-03-17 22:35 - 2012-11-01 07:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-03-17 22:35 - 2012-11-01 07:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-03-17 22:03 - 2015-03-17 22:15 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-17 22:03 - 2015-02-26 21:14 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-17 21:59 - 2014-06-11 01:44 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-03-17 21:59 - 2014-06-11 01:43 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-03-17 14:30 - 2015-03-03 16:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-03-16 14:50 - 2013-07-02 04:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-03-16 14:50 - 2013-07-02 04:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-03-16 14:44 - 2014-11-08 14:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-03-16 14:44 - 2014-11-08 14:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-16 14:44 - 2014-11-08 09:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-03-16 14:44 - 2014-11-08 09:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-16 14:44 - 2014-10-11 11:35 - 00171840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-16 14:44 - 2014-05-30 02:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-03-16 14:44 - 2014-04-12 12:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-03-16 14:44 - 2014-04-12 12:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-16 14:44 - 2014-04-12 12:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-16 14:44 - 2014-04-12 12:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-16 14:44 - 2014-04-12 12:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-16 14:44 - 2014-04-12 10:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-16 14:44 - 2014-04-12 10:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-16 14:44 - 2014-04-12 10:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-16 14:44 - 2014-04-12 10:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-16 14:44 - 2014-04-12 09:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-03-16 14:39 - 2014-06-05 20:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-03-16 14:39 - 2014-06-05 20:29 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-03-16 14:39 - 2014-06-05 16:11 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-03-16 14:39 - 2013-03-06 09:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-03-16 14:39 - 2013-03-02 13:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-03-16 14:38 - 2012-11-10 07:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-03-16 14:38 - 2012-11-10 07:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2015-03-16 14:38 - 2012-11-10 07:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2015-03-16 14:38 - 2012-11-10 07:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2015-03-16 14:37 - 2013-03-02 12:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-03-16 14:36 - 2014-06-06 17:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-03-16 14:36 - 2014-06-06 13:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-03-16 14:35 - 2015-01-24 07:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-16 14:35 - 2014-10-11 10:44 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-16 14:35 - 2013-09-28 06:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-03-16 14:35 - 2013-03-15 03:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-03-16 14:35 - 2012-10-12 11:08 - 00027880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-03-16 14:35 - 2012-10-12 09:14 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-03-16 14:35 - 2012-10-11 10:02 - 01636672 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2015-03-16 14:35 - 2012-10-11 08:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2015-03-16 14:35 - 2012-10-11 08:19 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-03-16 14:35 - 2012-10-11 08:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-03-16 13:10 - 2015-03-16 13:12 - 14713820 _____ () C:\Users\Bashar9\Downloads\ESEAClientInstall.exe
2015-03-16 11:11 - 2015-03-16 11:11 - 00000117 _____ () C:\Windows\system32\netcfg-148571155.txt
2015-03-16 11:11 - 2015-03-16 11:11 - 00000117 _____ () C:\Windows\system32\netcfg-148570266.txt
2015-03-13 04:35 - 2015-03-13 04:35 - 00000000 ____D () C:\Users\Bashar9\Documents\Adobe
2015-03-10 22:47 - 2015-03-10 22:47 - 00000117 _____ () C:\Windows\system32\netcfg-1378240285.txt
2015-03-10 22:47 - 2015-03-10 22:47 - 00000117 _____ () C:\Windows\system32\netcfg-1378237898.txt
2015-03-10 22:47 - 2015-03-10 22:47 - 00000117 _____ () C:\Windows\system32\netcfg-1378226775.txt
2015-03-10 18:20 - 2015-03-10 18:20 - 00000117 _____ () C:\Windows\system32\netcfg-1362227780.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-09 11:36 - 2014-07-22 11:49 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Battle.net
2015-04-09 11:10 - 2014-07-14 01:41 - 00003592 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-961954038-57401663-2942830366-1001
2015-04-09 11:00 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\sru
2015-04-09 10:58 - 2014-07-14 01:35 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-09 10:57 - 2015-02-10 23:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5 ME
2015-04-09 10:57 - 2015-02-01 21:39 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack Client
2015-04-09 10:57 - 2015-01-28 06:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test
2015-04-09 10:57 - 2014-11-16 22:37 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LFROBOT
2015-04-09 10:57 - 2014-11-13 02:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-04-09 10:55 - 2014-07-15 06:24 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-09 10:51 - 2015-01-09 22:44 - 00003888 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-04-09 10:50 - 2014-10-22 22:03 - 00003108 _____ () C:\Windows\System32\Tasks\{FE433132-28E3-4C5A-91FC-51F2E9575834}
2015-04-09 10:50 - 2014-09-09 22:36 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-09 10:42 - 2014-11-18 14:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-09 10:40 - 2014-07-14 01:35 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-09 10:40 - 2012-07-26 10:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-09 10:35 - 2014-07-16 13:51 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\DMCache
2015-04-09 10:33 - 2014-07-16 13:51 - 00000000 ____D () C:\Users\Bashar9\Downloads\Compressed
2015-04-09 01:29 - 2014-07-14 15:59 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-09 00:19 - 2014-07-16 13:51 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\IDM
2015-04-08 23:48 - 2014-07-29 12:26 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Skype
2015-04-08 23:24 - 2014-09-13 01:19 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\uTorrent
2015-04-08 23:24 - 2014-07-15 06:22 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\TeamViewer
2015-04-08 23:05 - 2014-08-06 07:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-08 23:04 - 2012-07-26 08:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-04-08 22:54 - 2014-08-21 05:47 - 00000000 ____D () C:\ProgramData\Nimoru
2015-04-08 22:42 - 2014-07-14 01:34 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Google
2015-04-08 22:41 - 2014-07-14 01:34 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-08 22:37 - 2014-11-11 00:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-08 21:56 - 2014-08-16 08:47 - 00000000 ____D () C:\ProgramData\TamoSoft
2015-04-07 23:53 - 2014-07-19 08:59 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-04-07 16:53 - 2014-07-16 13:51 - 00000000 ____D () C:\Users\Bashar9\Downloads\Video
2015-04-05 22:17 - 2014-07-14 05:39 - 00000000 ____D () C:\swsetup
2015-04-05 13:51 - 2012-07-26 10:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\zh-HK
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\tr-TR
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\th-TH
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\sl-SI
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\sk-SK
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\ro-RO
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\lv-LV
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\lt-LT
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\hr-HR
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\he-IL
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\et-EE
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\bg-BG
2015-04-05 13:47 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\system32\ar-SA
2015-04-05 13:46 - 2014-07-19 09:15 - 03891200 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2015-04-05 13:46 - 2014-07-19 09:15 - 03555840 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2015-04-05 13:46 - 2014-07-19 09:15 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2015-04-04 22:08 - 2014-08-15 20:54 - 00000000 ____D () C:\Users\Bashar9\Desktop\Folders
2015-04-04 14:56 - 2015-02-24 01:36 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-03-31 02:24 - 2015-02-12 07:01 - 00001456 _____ () C:\Users\Bashar9\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-03-31 02:17 - 2015-01-20 04:24 - 00001082 _____ () C:\Users\Bashar9\Desktop\WOTLauncher.exe - Shortcut.lnk
2015-03-29 13:14 - 2014-08-15 20:51 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-29 13:11 - 2014-08-15 20:51 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-03-29 13:10 - 2014-07-19 08:58 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-29 01:44 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\rescache
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Windows\ToastData
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\WinStore
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-28 18:25 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-28 18:25 - 2012-07-26 08:38 - 00000000 ____D () C:\Windows\system32\oobe
2015-03-28 18:24 - 2012-07-26 11:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-28 18:24 - 2012-07-26 10:52 - 00000000 ____D () C:\Program Files\Windows Journal
2015-03-28 18:23 - 2012-07-26 11:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-28 18:23 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-03-28 18:23 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-03-28 18:23 - 2012-07-26 08:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-28 18:23 - 2012-07-26 08:38 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-28 18:18 - 2012-07-26 10:59 - 00000000 ____D () C:\Windows\CbsTemp
2015-03-24 12:56 - 2012-07-26 08:37 - 00000000 ____D () C:\Windows\servicing
2015-03-21 23:03 - 2014-12-20 22:24 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\vlc
2015-03-21 03:05 - 2014-11-23 20:49 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Spotify
2015-03-21 03:05 - 2014-11-23 20:44 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Spotify
2015-03-20 11:33 - 2014-07-29 12:26 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-20 11:33 - 2014-07-13 16:20 - 00000000 ____D () C:\Users\Bashar9
2015-03-20 11:32 - 2014-07-29 12:25 - 00000000 ____D () C:\ProgramData\Skype
2015-03-19 22:01 - 2014-11-23 20:49 - 00001777 _____ () C:\Users\Bashar9\Desktop\Spotify.lnk
2015-03-19 22:01 - 2014-11-23 20:49 - 00001763 _____ () C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-03-18 14:53 - 2014-10-26 21:09 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\Adobe
2015-03-18 14:52 - 2014-07-15 06:24 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-17 22:15 - 2014-08-23 10:05 - 00000000 ____D () C:\Users\Bashar9\AppData\Local\join.me
2015-03-17 21:59 - 2012-07-26 11:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2015-03-17 14:32 - 2012-07-26 08:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-03-13 04:35 - 2014-07-13 16:21 - 00000000 ____D () C:\Users\Bashar9\AppData\Roaming\Adobe

==================== Files in the root of some directories =======

2015-02-12 06:58 - 2015-02-12 06:58 - 0000132 _____ () C:\Users\Bashar9\AppData\Roaming\Adobe GIF Format CS6 Prefs
2015-02-14 03:54 - 2015-02-14 03:54 - 0000132 _____ () C:\Users\Bashar9\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-09-13 10:58 - 2014-09-13 12:17 - 1177208 _____ () C:\Users\Bashar9\AppData\Roaming\AndyCleanupTool.exe
2014-09-13 10:58 - 2014-09-13 12:17 - 1176696 _____ () C:\Users\Bashar9\AppData\Roaming\AndyCleanVM.exe
2014-10-31 20:07 - 2015-03-25 16:51 - 0001436 _____ () C:\Users\Bashar9\AppData\Roaming\SpeedRunnersLog.txt
2014-10-31 20:07 - 2014-12-14 00:13 - 0002896 _____ () C:\Users\Bashar9\AppData\Roaming\TargetInvocationLog.txt
2015-02-12 07:01 - 2015-03-31 02:24 - 0001456 _____ () C:\Users\Bashar9\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-08-28 17:25 - 2014-08-28 17:25 - 0000600 _____ () C:\Users\Bashar9\AppData\Local\PUTTY.RND
2015-04-08 23:09 - 2015-04-08 23:09 - 0000000 _____ () C:\Users\Bashar9\AppData\Local\{717D9B77-8AF3-45A9-9CFC-D4E88C130685}

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-07 20:31

==================== End Of Log ============================

 

[Bashar00]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Bashar9 at 2015-04-09 11:36:35
Running from C:\Users\Bashar9\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\uTorrent) (Version: 3.4.2.34944 - BitTorrent Inc.)
12.0.0.0 (HKLM-x32\...\{FECB3E96-76A8-45A9-B73C-D7304DE02190}_is1) (Version: - Adobe Photoshop CS5 ME by Magic-M)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{A70B905D-2E57-66A0-3BFE-66B8E71E0C70}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 5.3.0.0 - Auslogics Labs Pty Ltd)
BLACKHOLE (HKLM-x32\...\Steam App 322680) (Version: - FiolaSoft Studio)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.1.4057 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{981B38A6-E4D0-4D94-98C2-75AC645755F5}) (Version: 0.9.1.4057 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.350.6 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Video Cutter Joiner 10.4 (HKLM-x32\...\{8C5A4758-C782-4200-B337-DB3466D33ADD}}_is1) (Version: 10.4 - DVDVideoMedia, Inc.)
Glary Utilities PRO 5.22 (HKLM-x32\...\Glary Utilities 5) (Version: 5.22.0.41 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
In Verbis Virtus (HKLM-x32\...\Steam App 242840) (Version: - Indomitus Games)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
join.me (HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\JoinMe) (Version: 1.20.0.125 - LogMeIn, Inc.)
Jove's Mod Pack Extended 0.9.5 version 16.6 (1/16/2015) (HKLM-x32\...\{B0F4B9B2-D252-44B6-B6C4-464809AA675B}_is1) (Version: 16.6 (1/16/2015) - )
jovesmodpack_0.9.5_v16.6_extended.exe 16.6 (HKLM-x32\...\jovesmodpack_0.9.5_v16.6_extended.exe 16.6) (Version: 16.6 - wotsite.net)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LFROBOT (HKLM-x32\...\LFROBOT6.6.1) (Version: 6.6.1 - LFROBOT)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.319 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.319 - LogMeIn, Inc.) Hidden
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.11 - www.leaguereplays.com)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
modpackmarakasi_0.9.5_v11.4.exe 1.4 (HKLM-x32\...\modpackmarakasi_0.9.5_v11.4.exe 1.4) (Version: 1.4 - wotsite.net)
Mozilla Firefox 36.0.4 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 en-US)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\MyFreeCodec) (Version: - )
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.8 - Google)
NirSoft SmartSniff (HKLM-x32\...\NirSoft SmartSniff) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{9530AE42-DAE1-4619-9594-B23487285D17}) (Version: 9.11.1107 - NVIDIA Corporation)
OMC ModPack Client version 1.2.0.21 (HKLM-x32\...\{E2F3187C-2B94-486F-8914-E69211487FB6}_is1) (Version: 1.2.0.21 - Odem Mortis)
OnLive (HKLM-x32\...\OnLive) (Version: - OnLive)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
ophcrack 3.6.0 (HKLM\...\ophcrack) (Version: 3.6.0 - OS Objectif Sécurité SA)
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{9ee7b83a-69e7-4f23-8597-d47b591b4dd1}) (Version: latest - ppy Pty Ltd)
osu! (HKLM-x32\...\{e62a393f-e8e8-4593-815b-f69f4e29cdcf}) (Version: latest - ppy Pty Ltd)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 2.0.5 - Portforward, LLC)
Port Forward Network Utilities 2.0.1 (HKLM-x32\...\Port Forward Network Utilities) (Version: 2.0.1 - Portforward.com)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12952.91 - raidcall.com)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.3.25.0 - Razer Inc.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14072.12 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.14072.12 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
Spintires (HKLM-x32\...\Spintires_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Spotify (HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\Spotify) (Version: 1.0.2.6.g9977a14b - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.38843 - TeamViewer)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7500970-FE98-11E1-B560-F04DA23A5C58}) (Version: 12.0.367 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WarPack 0.8.9 (HKLM-x32\...\{9C076DD8-F898-4CE0-B869-AD4D664378CC}_is1) (Version: 0.8.9 - WarPack Team)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Tanks - Common Test (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812CT}_is1) (Version: - Wargaming.net)
Zello 1.43.0.0 (HKLM-x32\...\Zello) (Version: 1.43.0.0 - Zello Inc)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

03-04-2015 03:33:10 Installed HP Support Solutions Framework
04-04-2015 20:10:12 Installed puush

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 08:26 - 2015-02-12 06:06 - 00002810 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-2.adobe.com

There are 35 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0C76F68A-ABF5-405F-A16D-DFBE5E94182E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-18] (Adobe Systems Incorporated)
Task: {1F98555B-5C62-4C3F-B49F-504A6456163F} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-30] (Glarysoft Ltd)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask
Task: {307D8C75-FDA3-49D3-AA9F-DB79F405FB59} - System32\Tasks\Microsoft\Windows\Autochk\Proxy
Task: {3AA90F8A-D551-4F17-BCC1-672468A5F1C6} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-30] (Glarysoft Ltd)
Task: {67229DF8-B971-4F31-933D-0FD466D45DE1} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater
Task: {824EAFF6-8866-4B1C-ADA6-F9CC77330074} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] ()
Task: {8AF91D80-0248-43F1-965D-0B857EF0112F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-14] (Google Inc.)
Task: {8EFA0A46-D3FD-41CF-B864-CEE3006F8D6B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {91A183C4-C923-4B89-A72D-02F423836EFB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-14] (Google Inc.)
Task: {9A91BB80-8FBB-4E4A-9E65-B81E527439FD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {9D204989-C5FE-4C4F-ADFF-D6178F1FF5AD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation
Task: {B3F09249-F5EF-4D95-BBF9-CD977D7F462D} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver
Task: {C84F8A44-9FD3-4273-930B-E488674D2812} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent
Task: {CF6413F0-CBF2-41C8-BC70-132A977A96AD} - System32\Tasks\{FE433132-28E3-4C5A-91FC-51F2E9575834} => Chrome.exe http://ui.skype.com/ui/0/6.21.0.104/en/abandoninstall?page=tsProgressBar
Task: {DE366315-0909-4CA8-989D-D74D0D1A2671} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask
Task: {F6EEB348-4FCE-484C-B5EE-7FDB5F66360C} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2012-11-16 16:27 - 2012-11-16 16:27 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-01-31 03:10 - 2015-01-31 03:10 - 00186560 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2012-01-10 14:41 - 2015-04-04 20:15 - 00568904 _____ () G:\Program Files (x86)\puush\puush.exe
2014-03-30 13:41 - 2014-03-30 13:41 - 00173568 _____ () G:\TeamSpeak 3 Client\quazip.dll
2014-03-30 13:41 - 2014-03-30 13:41 - 01080832 _____ () G:\TeamSpeak 3 Client\platforms\qwindows.dll
2014-08-15 19:12 - 2014-08-15 19:12 - 00833024 _____ () G:\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2013-09-27 15:15 - 2014-08-15 19:12 - 00102344 _____ () G:\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2013-09-27 15:15 - 2014-08-15 19:12 - 00108488 _____ () G:\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-08-15 19:12 - 2014-08-15 19:12 - 00030208 _____ () G:\TeamSpeak 3 Client\imageformats\qgif.dll
2014-08-15 19:12 - 2014-08-15 19:12 - 00233984 _____ () G:\TeamSpeak 3 Client\imageformats\qjpeg.dll
2013-09-27 15:15 - 2014-08-15 19:12 - 00563656 _____ () G:\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-27 15:15 - 2014-08-15 19:12 - 00265160 _____ () G:\TeamSpeak 3 Client\plugins\lua_plugin.dll
2014-11-25 13:38 - 2014-11-25 13:38 - 00123392 _____ () G:\TeamSpeak 3 Client\plugins\now_playing_x64.dll
2014-04-24 14:57 - 2014-10-02 16:07 - 00473600 _____ () G:\TeamSpeak 3 Client\plugins\soundboard.dll
2013-09-27 15:15 - 2014-08-15 19:12 - 00579016 _____ () G:\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-08-15 19:12 - 2014-08-15 19:12 - 00159232 _____ () G:\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2012-07-26 02:29 - 2012-07-26 06:06 - 00924672 _____ () C:\Windows\System32\speech\engines\tts\MSTTSEngine.dll
2012-07-26 02:26 - 2012-07-26 06:06 - 00720384 _____ () C:\Windows\System32\speech\engines\tts\MSTTSLoc.DLL
2012-11-16 16:27 - 2012-11-16 16:27 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-11-16 16:12 - 2012-11-16 16:12 - 00369664 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-02-24 01:36 - 2015-04-04 14:54 - 11632176 _____ () C:\Program Files (x86)\Hearthstone\Hearthstone.exe
2013-07-24 11:25 - 2015-03-10 09:37 - 00775680 _____ () G:\steam\SDL2.dll
2014-12-03 04:21 - 2014-12-02 03:29 - 05002752 _____ () G:\steam\v8.dll
2014-05-24 22:51 - 2015-03-24 07:22 - 02371776 _____ () G:\steam\video.dll
2014-12-03 04:21 - 2014-12-02 03:29 - 01612800 _____ () G:\steam\icui18n.dll
2014-12-03 04:21 - 2014-12-02 03:29 - 01210368 _____ () G:\steam\icuuc.dll
2014-08-29 11:07 - 2014-12-02 00:31 - 02396672 _____ () G:\steam\libavcodec-56.dll
2014-08-29 11:07 - 2014-12-02 00:31 - 00479744 _____ () G:\steam\libavformat-56.dll
2014-08-29 11:07 - 2014-12-02 00:31 - 00332800 _____ () G:\steam\libavresample-2.dll
2014-08-29 11:07 - 2014-12-02 00:31 - 00442880 _____ () G:\steam\libavutil-54.dll
2014-08-29 11:07 - 2014-12-02 00:31 - 00485888 _____ () G:\steam\libswscale-3.dll
2013-07-24 11:25 - 2015-03-24 07:22 - 00702656 _____ () G:\steam\bin\chromehtml.DLL
2013-07-24 11:25 - 2015-02-25 04:58 - 34641288 _____ () G:\steam\bin\libcef.dll
2014-06-01 12:08 - 2014-06-01 12:08 - 00035328 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-05-24 19:41 - 2014-05-24 19:41 - 00091648 _____ () C:\Program Files (x86)\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-24 19:41 - 2014-05-24 19:41 - 00892416 _____ () C:\Program Files (x86)\FileZilla FTP Client\libstdc++-6.dll
2015-04-08 22:41 - 2015-03-31 00:07 - 01174856 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libglesv2.dll
2015-04-08 22:41 - 2015-03-31 00:07 - 00080200 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libegl.dll
2015-04-08 22:41 - 2015-03-31 00:07 - 09279304 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\pdf.dll
2015-04-08 22:41 - 2015-03-31 00:07 - 14974280 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\PepperFlash\pepflashplayer.dll
2014-07-24 17:23 - 2015-02-25 04:58 - 01709960 _____ () G:\steam\bin\ffmpegsumo.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 26065408 _____ () G:\battlenet\Battle.net\Battle.net.5669\libcef.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00739840 _____ () G:\battlenet\Battle.net\Battle.net.5669\libGLESv2.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00908288 _____ () G:\battlenet\Battle.net\Battle.net.5669\platforms\qwindows.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00130048 _____ () G:\battlenet\Battle.net\Battle.net.5669\libEGL.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00020992 _____ () G:\battlenet\Battle.net\Battle.net.5669\imageformats\qgif.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00021504 _____ () G:\battlenet\Battle.net\Battle.net.5669\imageformats\qico.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00205312 _____ () G:\battlenet\Battle.net\Battle.net.5669\imageformats\qjpeg.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00225792 _____ () G:\battlenet\Battle.net\Battle.net.5669\imageformats\qmng.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00015872 _____ () G:\battlenet\Battle.net\Battle.net.5669\imageformats\qsvg.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00312832 _____ ()

 

[Bashar00]

G:\battlenet\Battle.net\Battle.net.5669\imageformats\qtiff.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00010240 _____ () G:\battlenet\Battle.net\Battle.net.5669\qml\QtQuick.2\qtquick2plugin.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00054272 _____ () G:\battlenet\Battle.net\Battle.net.5669\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-04-07 15:54 - 2015-04-07 15:54 - 00010240 _____ () G:\battlenet\Battle.net\Battle.net.5669\qml\QtQml\Models.2\modelsplugin.dll
2015-04-04 14:54 - 2015-04-04 14:54 - 02102784 _____ () C:\Program Files (x86)\Hearthstone\Hearthstone_Data\Mono\mono.dll
2015-04-04 14:54 - 2015-04-04 14:54 - 02122752 _____ () C:\Program Files (x86)\Hearthstone\Hearthstone_Data\Plugins\Connect.DLL
2015-04-04 14:55 - 2015-04-04 14:55 - 00029184 _____ () C:\Program Files (x86)\Hearthstone\Hearthstone_Data\Plugins\PlayErrors32.DLL
2015-04-04 14:39 - 2015-04-04 14:39 - 00014336 _____ () C:\Program Files (x86)\Hearthstone\Hearthstone_Data\Plugins\W8TouchDLL.DLL

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:{DA6227CB-326B-4B4D-9A81-04B61F1538DD}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-961954038-57401663-2942830366-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Bashar9\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: CGVPNCliService => 2
MSCONFIG\Services: CLPSLauncher => 2
MSCONFIG\Services: GeekBuddyRSP => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: hshld => 2
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: HssWd => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: OverwolfUpdater => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: TorchCrashHandler => 2
MSCONFIG\Services: TunngleService => 3
HKLM\...\StartupApproved\StartupFolder: => "LOLRecorder.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Start GeekBuddy.lnk"
HKLM\...\StartupApproved\Run: => "Andy"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\StartupFolder: => "Psi.lnk"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\StartupFolder: => "Revo Uninstaller Pro 3.1.2 Crack is Here ! [Latest].lnk"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "WTFast Tray"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "WarThunderLauncher"
HKU\S-1-5-21-961954038-57401663-2942830366-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== Accounts: =============================

Administrator (S-1-5-21-961954038-57401663-2942830366-500 - Administrator - Disabled)
Bashar9 (S-1-5-21-961954038-57401663-2942830366-1001 - Administrator - Enabled) => C:\Users\Bashar9
Guest (S-1-5-21-961954038-57401663-2942830366-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: WAN Miniport (Network Monitor) #2
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8168
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/09/2015 11:37:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:36:24Z. Error Code: 0x80070005.

Error: (04/09/2015 11:36:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:35:54Z. Error Code: 0x80070005.

Error: (04/09/2015 11:36:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:36:24Z. Error Code: 0x80070005.

Error: (04/09/2015 11:35:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:35:54Z. Error Code: 0x80070005.

Error: (04/09/2015 11:35:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:36:24Z. Error Code: 0x80070005.

Error: (04/09/2015 11:34:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:35:54Z. Error Code: 0x80070005.

Error: (04/09/2015 11:34:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:36:24Z. Error Code: 0x80070005.

Error: (04/09/2015 11:33:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:35:54Z. Error Code: 0x80070005.

Error: (04/09/2015 11:33:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:36:24Z. Error Code: 0x80070005.

Error: (04/09/2015 11:32:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2015-04-09T20:35:54Z. Error Code: 0x80070005.


System errors:
=============
Error: (04/09/2015 00:38:21 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056

Error: (04/09/2015 00:37:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/09/2015 00:37:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The RadeonPro Support Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (04/09/2015 00:37:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (04/09/2015 00:37:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/09/2015 00:37:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The HP Support Solutions Framework Service service terminated unexpectedly. It has done this 1 time(s).

Error: (04/09/2015 00:37:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Skype Click to Call PNR Service service terminated unexpectedly. It has done this 1 time(s).

Error: (04/09/2015 00:37:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Skype Click to Call Updater service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (04/09/2015 11:37:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:36:24Z

Error: (04/09/2015 11:36:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:35:54Z

Error: (04/09/2015 11:36:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:36:24Z

Error: (04/09/2015 11:35:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:35:54Z

Error: (04/09/2015 11:35:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:36:24Z

Error: (04/09/2015 11:34:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:35:54Z

Error: (04/09/2015 11:34:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:36:24Z

Error: (04/09/2015 11:33:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:35:54Z

Error: (04/09/2015 11:33:24 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:36:24Z

Error: (04/09/2015 11:32:54 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052015-04-09T20:35:54Z


==================== Memory info ===========================

Processor: AMD Turion(tm) II P520 Dual-Core Processor
Percentage of memory in use: 75%
Total physical RAM: 3834.9 MB
Available physical RAM: 928.13 MB
Total Pagefile: 7034.9 MB
Available Pagefile: 3012.46 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:152.12 GB) (Free:75.21 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:20.98 GB) (Free:2.85 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
Drive g: (New Volume) (Fixed) (Total:124.7 GB) (Free:28.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 5C740717)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=199 MB) - (Type=42)
Partition 3: (Not Active) - (Size=152.1 GB) - (Type=42)
Partition 4: (Not Active) - (Size=145.8 GB) - (Type=42)

==================== End Of Log ============================

 

[Bashar00]

This is 2 logs from the program u wanted
am I missing something?

 

[Broni]

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

• Close all the running programs
• Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

• Double-click mbam-setup-2.0.0.1000.exe and follow the prompts to install the program.
  
• At the end, be sure a checkmark is placed next to the following:
  
  • Launch Malwarebytes Anti-Malware
  • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
• Click Finish.
• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

If you already have MBAM 2.0 installed:

• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

How to get logs:
(Export log to save as txt)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Export'.
• Click 'Text file (*.txt)'
• In the Save File dialog box which appears, click on Desktop.
• In the File name: box type a name for your scan log.
• A message box named 'File Saved' should appear stating "Your file has been successfully exported".
• Click Ok
• Attach that saved log to your next reply.

(Copy to clipboard for pasting into forum replies or tickets)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Copy to Clipboard'
• Paste the contents of the clipboard into your reply.

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on adwcleaner.exe to run the tool.
• Click on Scan button.
• When the scan has finished click on Clean button.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the contents of that logfile with your next reply.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.