Inactive No Internet. Infected 1 day after clean install of windows. Malwarebyes isn't cutting it.

lrwynn · Jan 25, 2014

Hi. I am on a Chromebook now, and am trying to clean my fiance's laptop. He just got it back from a local tech shop on 1/20 (windows 7 reinstall - he downloaded some nasty viruses, and I tried to reinstall windows on my own 6 times, but the acer discs would not complete the reinstall so we took it to the shop). By 1/21 he'd managed to get reinfected, but I don't know if it was residual from the previous infection.

Anyhow, we've been trying to clean it up in safe and regular modes at times with Malwarebyes, but the problems keep getting worse, and now he intermittently can't even access the internet as of this a.m. (when I do get a connection, it's slow and then I lose it), so I can't install DDS.

I tried downloading it via my chromebook to a usb stick but when I try to install the file off the stick it shows up as dds wallpaper and won't install - I suppose there is probably an easy solution but I'm just not thinking of it now.

Anyhow, I'm pasting the last 4 logs saved with Malwarebyes. I do note that 2 scans I did in safemode this a.m. did not save to the logs. One found like 20+ issues, and the other found none.

I could go on and on about the specific symptoms I'm seeing, but I trust that you'll take it from here and ask me what you need to know.

---
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.22.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Chris :: CHRIS-PC [administrator]

1/23/2014 8:24:36 PM
MBAM-log-2014-01-23 (22-40-40).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 391426
Time elapsed: 2 hour(s), 8 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 23
C:\Users\Chris\AppData\Local\oectfewa.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\sgtothgb.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_1f74b387.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_24c545d9.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_63fe329d.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_77a89ba9.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_d123d865.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_e1125c93.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_eb3788bb.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\Java_Update_ef48f69e.exe (Trojan.Agent.ED) -> No action taken.
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_43e5606e.exe (Trojan.Agent.ED) -> No action taken.
C:\Windows\Tasks\Security Center Update - 1175408667.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 1542720619.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 1639235720.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 1898547094.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 30664249.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 3081488242.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 3421509442.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 3877832810.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 4130065756.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 438897654.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 69139895.job (Trojan.Agent.RvGen) -> No action taken.
C:\Windows\Tasks\Security Center Update - 933129004.job (Trojan.Agent.RvGen) -> No action taken.

(end)

----------

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.22.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Chris :: CHRIS-PC [administrator]

1/23/2014 4:08:11 PM
mbam-log-2014-01-23 (16-08-11).txt

Scan type: Custom scan (C:\Users\Chris\Downloads\NetMeterEvo_200.zip|)
Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Memory | Startup | Registry | Heuristics/Extra | P2P
Objects scanned: 1
Time elapsed: 14 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
-------

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.22.08

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.16476
Chris :: CHRIS-PC [administrator]

1/22/2014 3:18:59 PM
mbam-log-2014-01-22 (15-18-59).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 388323
Time elapsed: 2 hour(s), 36 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

----

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.22.08

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.16476
Chris :: CHRIS-PC [administrator]

1/22/2014 10:57:57 AM
mbam-log-2014-01-22 (10-57-57).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 378163
Time elapsed: 2 hour(s), 41 minute(s), 25 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\Chris\AppData\Local\pderlgoc.exe (Trojan.Agent.ED) -> Quarantined and deleted successfully.
C:\Users\Chris\AppData\Local\Temp\Java_Update_222eaf92.exe (Trojan.Agent.ED) -> Quarantined and deleted successfully.
C:\Windows\Tasks\Security Center Update - 2169307829.job (Trojan.Agent.RvGen) -> Quarantined and deleted successfully.
C:\Windows\Tasks\Security Center Update - 489282179.job (Trojan.Agent.RvGen) -> Quarantined and deleted successfully.

(end)

Broni · Jan 25, 2014

Welcome aboard

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
If you're stuck, or you're not sure about certain step, always ask before doing anything else.
Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
Never run more than one scan at a time.
Keep updating me regarding your computer behavior, good, or bad.
The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

=======================================

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.

lrwynn · Jan 25, 2014

Thank you. I have followed your instructions for Farbar Recovery Scan Tool, but the FRST log is apparently too long and I get an error when trying to post the reply.

Should I post the results of both logs in multiple posts?

In the meantime, I will upload the FRST log to this reply, and copy paste the Additional log.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-01-2014 01
Ran by Chris at 2014-01-25 21:20:16
Running from C:\Users\Chris\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

7-Zip 9.20 (x32 Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
CCleaner (Version: 4.10 - Piriform)
Combined Community Codec Pack 2014-01-17 (x32 Version: 2014.01.17.0 - CCCP Project)
DriverPack Solution Updater (HKCU Version: 0.0.25 - DriverPack Solution)
Foxit Reader (x32 Version: 5.1.3.1201 - Foxit Corporation)
Google Chrome (x32 Version: 65.169.76 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Codec Pack 10.2.0 Full (x32 Version: 10.2.0 - )
LastPass (uninstall only) (x32 Version: - LastPass)
LibreOffice 4.1.4.2 (x32 Version: 4.1.4.2 - The Document Foundation)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
PRTG Network Monitor (x32 Version: 9 - Paessler AG)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SUPERAntiSpyware (Version: 5.7.1018 - SUPERAntiSpyware.com)
TeamViewer 9 (x32 Version: 9.0.24951 - TeamViewer)
VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN)
WhoCrashed 5.00 (Version: - Resplendence Software Projects Sp.)

==================== Restore Points =========================

21-01-2014 01:29:54 Windows Update
22-01-2014 23:48:35 Installed Microsoft Fix it 50848
23-01-2014 20:48:44 Removed Java 7 Update 51
23-01-2014 20:52:37 Removed Java 7 Update 51
23-01-2014 21:02:57 Removed Java 7 Update 51
23-01-2014 21:13:59 Removed Java 7 Update 51
23-01-2014 21:18:24 Removed Java 7 Update 51 (64-bit)
23-01-2014 22:13:44 Installed Java 7 Update 51
23-01-2014 22:20:18 Installed Java 7 Update 51 (64-bit)
23-01-2014 23:16:58 Microsoft Antimalware Checkpoint
25-01-2014 02:51:41 Microsoft Antimalware Checkpoint
25-01-2014 13:51:14 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {15B13909-3F0F-48C8-86BC-54CDDE485425} - System32\Tasks\Security Center Update - 3970536592 => C:\Users\Chris\AppData\Roaming\Umazmo\opodmeu.exe [2014-01-22] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {1DB6748F-EC39-41DB-B755-F58BE51A1178} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2208215195-2939906648-2948716865-1000
Task: {29914F85-076A-4BB8-A7C3-23DB4F475EFB} - System32\Tasks\Security Center Update - 489282179 => C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [2014-01-19] (IirDeramker S.R.L.) <==== ATTENTION
Task: {323D3182-4AC7-41A9-94BD-E5D64E5A7B71} - System32\Tasks\Security Center Update - 3415113818 => C:\Users\Chris\AppData\Roaming\Issaybug\cymidyv.exe [2014-01-23] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {39D43686-1203-4776-ABC4-C271A2362EFA} - System32\Tasks\Security Center Update - 3131807467 => C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {5000986D-4D75-4477-9296-EBE92728F556} - System32\Tasks\Security Center Update - 2072247522 => C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {539BD198-2273-4D1E-B07A-1875072D3857} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {58758648-5BB1-41C9-BC5A-B62909A2FD56} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {68D6046A-E048-455C-9BD9-D26C21B04808} - System32\Tasks\Security Center Update - 695623595 => C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [2014-01-23] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {6BED0299-CC6F-4A4B-A123-2007193DD906} - System32\Tasks\Security Center Update - 1885239943 => C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {8A54E48D-A162-423F-945E-CBE773C1BD91} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-17] (Google Inc.)
Task: {AF0B0CC6-21A4-48E0-8D88-C9C2CFA5F32E} - System32\Tasks\Security Center Update - 2169307829 => C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [2014-01-19] (IirDeramker S.R.L.) <==== ATTENTION
Task: {B5FBE98F-1512-486C-B95E-D4CC54536455} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-17] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-23 17:40 - 2013-04-17 15:25 - 00046352 _____ () C:\Program Files (x86)\PRTG Network Monitor\PaesslerTrafficControl.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (01/25/2014 00:44:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/25/2014 11:47:56 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 11:04:13 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 10:56:02 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 10:48:51 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 10:24:00 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 08:56:38 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/25/2014 08:46:13 AM) (Source: Application Error) (User: )
Description: Faulting application name: tukegeg.exe, version: 0.57344.29977.7649, time stamp: 0x52e16c47
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x003bd187
Faulting process id: 0x1340
Faulting application start time: 0xtukegeg.exe0
Faulting application path: tukegeg.exe1
Faulting module path: tukegeg.exe2
Report Id: tukegeg.exe3

Error: (01/25/2014 08:45:58 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000068494
Faulting process id: 0x95c
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (01/25/2014 08:37:01 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:
=============
Error: (01/25/2014 00:01:04 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.165.2504.0

Update Source: %NT AUTHORITY59

Update Stage: 4.4.0304.00

Source Path: 4.4.0304.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (01/25/2014 11:45:29 AM) (Source: Service Control Manager) (User: )
Description: The UPnP Device Host service failed to start due to the following error:
%%1069

Error: (01/25/2014 11:45:29 AM) (Source: Service Control Manager) (User: )
Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
%%50

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/25/2014 11:45:29 AM) (Source: Service Control Manager) (User: )
Description: The UPnP Device Host service failed to start due to the following error:
%%1069

Error: (01/25/2014 11:45:29 AM) (Source: Service Control Manager) (User: )
Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
%%1352

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/25/2014 11:45:29 AM) (Source: DCOM) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (01/25/2014 11:45:22 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/25/2014 11:23:20 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.165.2504.0

Update Source: %NT AUTHORITY59

Update Stage: 4.4.0304.00

Source Path: 4.4.0304.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (01/25/2014 11:01:08 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/25/2014 10:53:27 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Microsoft Office Sessions:
=========================
Error: (01/25/2014 00:44:13 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"c:\program files (x86)\LastPass\LastPassBroker.exe

Error: (01/25/2014 11:47:56 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 11:04:13 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 10:56:02 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 10:48:51 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 10:24:00 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 08:56:38 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/25/2014 08:46:13 AM) (Source: Application Error)(User: )
Description: tukegeg.exe0.57344.29977.764952e16c47unknown0.0.0.000000000c0000005003bd187134001cf19d2a30ca2c3C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exeunknown0d7e6932-85c7-11e3-a3b4-90004e716633

Error: (01/25/2014 08:45:58 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4unknown0.0.0.000000000c0000005000000000006849495c01cf19d29286b580C:\Windows\Explorer.EXEunknown04d09aaa-85c7-11e3-a3b4-90004e716633

Error: (01/25/2014 08:37:01 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

==================== Memory info ===========================

Percentage of memory in use: 45%
Total physical RAM: 3818.9 MB
Available physical RAM: 2075.33 MB
Total Pagefile: 7637.8 MB
Available Pagefile: 5697.37 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:130.87 GB) NTFS
Drive f: () (Removable) (Total:0.93 GB) (Free:0.93 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 77E09D35)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 956 MB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=956 MB) - (Type=06)

==================== End Of Log ============================

Broni · Jan 25, 2014

Should I post the results of both logs in multiple posts?

Exactly.

lrwynn · Jan 25, 2014

FRST.txt part 1

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-01-2014 01
Ran by Chris (administrator) on CHRIS-PC on 25-01-2014 21:17:52
Running from C:\Users\Chris\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Enterprise Console.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(IirDeramker S.R.L.) C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(IirDeramkel S.R.L.) C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe
(IirDeramkel S.R.L.) C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKLM\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKLM\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKLM\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Upsoewicmyyn] - C:\Users\Chris\AppData\Roaming\Issaybug\cymidyv.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Itozlan] - C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Wyrykeleyw] - C:\Users\Chris\AppData\Roaming\Umazmo\opodmeu.exe [287926 2014-01-22] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Quuhakluzyac] - C:\Users\Chris\AppData\Roaming\Giexefb\etsas.exe [219855 2014-01-18] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Ewcymonomu] - C:\Users\Chris\AppData\Roaming\Kazoutir\emyxna.exe [219855 2014-01-20] (IirDeramker S.R.L.)
HKCU\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKCU\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKCU\...\Run: [lwsefqqb] - C:\Users\Chris\AppData\Local\jvkvcqmv.exe [139264 2014-01-23] ()
HKCU\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKCU\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKCU\...\Run: [Ewcymonomu] - C:\Users\Chris\AppData\Roaming\Kazoutir\emyxna.exe [219855 2014-01-20] (IirDeramker S.R.L.)
HKCU\...\Run: [Quuhakluzyac] - C:\Users\Chris\AppData\Roaming\Giexefb\etsas.exe [219855 2014-01-18] (IirDeramker S.R.L.)
HKCU\...\Run: [Zoizimarok] - C:\Users\Chris\AppData\Roaming\Uxawcei\eztiby.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKCU\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKCU\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKCU\...\Run: [fpriqkid] - C:\Users\Chris\AppData\Local\qdxnhxrk.exe [139264 2014-01-24] ()
HKCU\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKCU\...\Run: [Itozlan] - C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
Startup: C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\PRTG Enterprise Console.exe (Paessler AG)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6CC72339A313CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\4qiinc3e.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-20]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-20]
CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-20]
CHR Extension: (Google Search) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-20]
CHR Extension: (LastPass) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-01-20]
CHR Extension: (Speed Dial 2) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2014-01-20]
CHR Extension: (Google Wallet) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-20]
CHR Extension: (Gmail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-20]

lrwynn · Jan 25, 2014

FRST.txt part 2

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PRTGCoreService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe [7261408 2013-12-23] (Paessler AG)
R2 PRTGProbeService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe [8831200 2013-12-23] (Paessler AG)

==================== Drivers (Whitelisted) ====================

R3 AR5416; C:\Windows\System32\DRIVERS\athwx.sys [2716768 2010-11-05] (Atheros Communications, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [35344 2014-01-25] ()

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-26 02:15 - 2014-01-26 02:14 - 02078208 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-01-25 21:17 - 2014-01-25 21:18 - 00012640 _____ C:\Users\Chris\Desktop\FRST.txt
2014-01-25 21:17 - 2014-01-25 21:17 - 00000000 ____D C:\FRST
2014-01-25 21:15 - 2014-01-25 21:15 - 00035344 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-25 11:49 - 2014-01-25 21:15 - 00096784 _____ (CACE Technologies) C:\Windows\SysWOW64\WPRO_41_2001woem.tmp
2014-01-25 08:44 - 2014-01-25 08:44 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 3970536592
2014-01-25 08:44 - 2014-01-25 08:44 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Umazmo
2014-01-24 21:39 - 2014-01-24 21:39 - 00003820 _____ C:\Windows\System32\Tasks\Security Center Update - 1885239943
2014-01-24 21:38 - 2014-01-24 21:38 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Notanois
2014-01-24 17:43 - 2014-01-24 17:43 - 00003820 _____ C:\Windows\System32\Tasks\Security Center Update - 3415113818
2014-01-24 17:43 - 2014-01-24 17:43 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Issaybug
2014-01-24 13:57 - 2014-01-24 13:57 - 00014195 _____ C:\Users\Chris\Desktop\tscproof12414.odt
2014-01-24 13:48 - 2014-01-24 13:48 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 695623595
2014-01-24 13:48 - 2014-01-24 13:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Weevap
2014-01-24 12:02 - 2014-01-24 12:02 - 00139264 _____ C:\Users\Chris\AppData\Local\qdxnhxrk.exe
2014-01-24 10:58 - 2014-01-24 10:58 - 00003818 _____ C:\Windows\System32\Tasks\Security Center Update - 2072247522
2014-01-24 10:58 - 2014-01-24 10:58 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Xoxonyfy
2014-01-24 09:22 - 2014-01-24 09:23 - 18876757 _____ C:\Users\Chris\Downloads\Beelzebaal - Nachten bei Satan II.zip
2014-01-24 09:07 - 2014-01-24 09:07 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 3131807467
2014-01-24 09:07 - 2014-01-24 09:07 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ykwuyge
2014-01-23 18:09 - 2014-01-23 18:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 18:09 - 2014-01-23 18:09 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 18:05 - 2014-01-23 18:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2014-01-23 17:50 - 2014-01-23 17:50 - 00000000 ____D C:\Users\Chris\AppData\Local\Macromedia
2014-01-23 17:48 - 2014-01-23 17:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ugtorohy
2014-01-23 17:43 - 2014-01-23 17:43 - 00001170 _____ C:\Users\Public\Desktop\PRTG Enterprise Console.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00001135 _____ C:\Users\Public\Desktop\PRTG Network Monitor.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\usr
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Paessler
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-23 17:33 - 2014-01-25 16:51 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2014-01-23 17:28 - 2014-01-23 17:28 - 00000000 ____D C:\Users\Chris\Downloads\prtg
2014-01-23 17:23 - 2014-01-23 17:21 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 17:18 - 2014-01-23 17:18 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:18 - 2014-01-23 17:16 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 17:17 - 2014-01-23 17:24 - 128420023 _____ C:\Users\Chris\Downloads\prtg.zip
2014-01-23 16:45 - 2014-01-23 16:52 - 128420023 _____ C:\Users\Chris\Downloads\Unconfirmed 648852.crdownload
2014-01-23 16:30 - 2014-01-23 16:31 - 30796712 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-x64.exe
2014-01-23 16:30 - 2014-01-23 16:31 - 29141928 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-i586.exe
2014-01-23 16:06 - 2014-01-23 16:06 - 00503393 _____ C:\Users\Chris\Downloads\NetMeterEvo_200.zip
2014-01-23 15:58 - 2014-01-23 15:58 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 ____D C:\Program Files\CCleaner
2014-01-23 15:54 - 2014-01-23 15:56 - 04721920 _____ (Piriform Ltd) C:\Users\Chris\Downloads\ccsetup410.exe
2014-01-23 15:53 - 2014-01-23 15:53 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Uxawcei
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Urpookm
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Toytgey
2014-01-23 15:51 - 2014-01-23 15:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ybzecaz
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ysabday
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Tyasop
2014-01-23 15:49 - 2014-01-23 15:49 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Giexefb
2014-01-23 15:48 - 2014-01-23 15:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Kazoutir
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ymxuyhew
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Opsuehu
2014-01-23 15:46 - 2014-01-23 15:46 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Xeavwuvy
2014-01-23 15:43 - 2014-01-23 15:43 - 00139264 _____ C:\Users\Chris\AppData\Local\jvkvcqmv.exe
2014-01-23 12:21 - 2014-01-23 12:22 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-23 12:21 - 2014-01-23 12:21 - 00000000 ___HD C:\Windows\msdownld.tmp
2014-01-23 12:20 - 2014-01-23 12:22 - 24859352 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\Windows-KB890830-x64-V5.8.exe
2014-01-23 12:20 - 2014-01-23 12:20 - 00292184 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\dxwebsetup.exe
2014-01-23 12:07 - 2014-01-23 12:08 - 00000000 ____D C:\Program Files\WhoCrashed
2014-01-23 12:06 - 2014-01-23 12:07 - 02657280 _____ (Resplendence Software Projects Sp. ) C:\Users\Chris\Downloads\whocrashedSetup.exe
2014-01-22 19:12 - 2014-01-22 19:12 - 00373520 _____ C:\Windows\Minidump\012214-36441-01.dmp
2014-01-22 18:41 - 2014-01-22 18:42 - 01046528 _____ C:\Users\Chris\Downloads\MicrosoftFixit50848.msi
2014-01-22 18:37 - 2014-01-22 18:38 - 00372448 _____ C:\Windows\Minidump\012214-40887-01.dmp
2014-01-22 18:33 - 2014-01-22 18:33 - 01312312 _____ C:\Windows\Minidump\012214-35131-01.dmp
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Mozilla
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Mozilla
2014-01-22 10:56 - 2014-01-22 10:56 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2014-01-22 10:46 - 2014-01-22 10:47 - 00640544 _____ C:\Windows\Minidump\012214-48157-01.dmp
2014-01-22 10:41 - 2014-01-22 19:12 - 00000000 ____D C:\Windows\Minidump
2014-01-22 10:41 - 2014-01-22 19:11 - 427893522 _____ C:\Windows\MEMORY.DMP
2014-01-22 10:41 - 2014-01-22 10:41 - 01700912 _____ C:\Windows\Minidump\012214-35833-01.dmp
2014-01-22 10:22 - 2014-01-22 10:22 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Macromedia
2014-01-22 10:14 - 2014-01-22 10:14 - 00012326 _____ C:\Users\Chris\AppData\Local\ucvqgdfi
2014-01-22 10:14 - 2014-01-22 10:14 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 489282179
2014-01-22 10:14 - 2014-01-22 10:14 - 00003810 _____ C:\Windows\System32\Tasks\Security Center Update - 2169307829
2014-01-22 10:14 - 2014-01-22 10:14 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Yvcabiy
2014-01-22 10:14 - 2014-01-22 10:14 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ekesodq
2014-01-22 10:13 - 2014-01-22 10:13 - 00067992 _____ C:\Users\Chris\AppData\Local\ffbmehso
2014-01-22 10:12 - 2014-01-22 10:12 - 00000000 _____ C:\Users\Chris\AppData\Roaming\SharedSettings.ccs
2014-01-22 09:28 - 2014-01-22 09:28 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-21 22:45 - 2014-01-21 22:45 - 00000000 ____D C:\Users\Chris\AppData\Local\Microsoft Games
2014-01-21 22:44 - 2014-01-21 22:44 - 00000000 ____D C:\Windows\System32\Tasks\Games
2014-01-21 15:34 - 2014-01-21 15:34 - 00000000 ____D C:\Users\Chris\AppData\Roaming\LibreOffice
2014-01-21 15:28 - 2014-01-21 15:29 - 00000000 ____D C:\Users\Chris\Desktop\poetry
2014-01-20 20:26 - 2014-01-20 20:26 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2014-01-20 20:17 - 2014-01-20 20:18 - 13670584 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\mseinstall.exe
2014-01-20 18:16 - 2014-01-20 18:18 - 00000000 ____D C:\Program Files (x86)\LastPass
2014-01-20 18:16 - 2014-01-20 18:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2014-01-20 18:14 - 2014-01-20 18:15 - 13024768 _____ (LastPass) C:\Users\Chris\Downloads\lastpass_x64.exe
2014-01-20 17:35 - 2014-01-20 17:35 - 00071616 _____ C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 16:19 - 2014-01-20 16:19 - 00000000 ____D C:\Users\Chris\Desktop\chris
2014-01-18 11:22 - 2014-01-18 11:22 - 00015748 _____ C:\Users\Chris\Documents\cc_20140118_112217.reg
2014-01-18 11:22 - 2014-01-18 11:22 - 00004032 _____ C:\Users\Chris\Documents\cc_20140118_112239.reg
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-17 18:10 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-17 18:09 - 2014-01-17 18:09 - 00001500 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2014-01-17 18:08 - 2014-01-20 17:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Apple Computer
2014-01-17 18:08 - 2014-01-17 18:09 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2014-01-17 18:08 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple Computer
2014-01-17 18:07 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\Program Files\iTunes
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iPod
2014-01-17 18:05 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-17 18:04 - 2014-01-17 18:04 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2014-01-17 18:04 - 2013-12-01 08:10 - 00257624 _____ C:\Windows\system32\unrar64.dll
2014-01-17 18:04 - 2013-12-01 08:10 - 00218200 _____ C:\Windows\SysWOW64\unrar.dll
2014-01-17 18:03 - 2014-01-17 18:04 - 00000000 ____D C:\ProgramData\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 18:01 - 2014-01-17 18:01 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\ProgramData\Sun
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\Program Files\Java
2014-01-17 17:59 - 2014-01-17 17:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 17:55 - 2014-01-25 21:16 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-17 17:55 - 2014-01-25 21:15 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-17 17:55 - 2014-01-17 18:03 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-17 17:55 - 2014-01-17 18:03 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-17 17:54 - 2014-01-20 11:37 - 00000000 ____D C:\Users\Chris\AppData\Local\Google
2014-01-17 17:54 - 2014-01-17 17:55 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-17 17:31 - 2013-11-26 06:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-17 17:31 - 2013-11-26 05:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-17 17:31 - 2013-11-26 05:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-17 17:31 - 2013-11-26 05:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-17 17:31 - 2013-11-26 04:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-17 17:31 - 2013-11-26 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-17 17:31 - 2013-11-26 04:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-17 17:31 - 2013-11-26 04:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-17 17:31 - 2013-11-26 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-17 17:31 - 2013-11-26 04:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-17 17:31 - 2013-11-26 04:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-17 17:31 - 2013-11-26 04:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-17 17:31 - 2013-11-26 04:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-17 17:31 - 2013-11-26 04:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-17 17:31 - 2013-11-26 03:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-17 17:31 - 2013-11-26 03:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-17 17:31 - 2013-11-26 03:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-17 17:31 - 2013-11-26 03:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-17 17:31 - 2013-11-26 03:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-17 17:31 - 2013-11-26 03:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-17 17:31 - 2013-11-26 03:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-17 17:31 - 2013-11-26 03:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-17 17:31 - 2013-11-26 02:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-17 17:31 - 2013-11-26 02:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-17 17:31 - 2013-11-26 02:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-17 17:31 - 2013-11-26 02:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-17 17:31 - 2013-11-26 01:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-17 17:31 - 2013-11-26 01:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-17 17:31 - 2013-11-26 01:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-17 17:31 - 2013-11-26 01:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-17 17:31 - 2013-11-26 01:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-17 17:08 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-17 17:05 - 2014-01-17 17:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-17 17:03 - 2014-01-17 17:08 - 00007582 _____ C:\Windows\IE11_main.log
2014-01-17 17:01 - 2013-11-23 13:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-17 17:01 - 2013-11-23 12:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-17 17:01 - 2013-04-17 02:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-01-17 17:01 - 2013-04-17 01:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-01-17 17:01 - 2012-02-11 01:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-01-17 17:01 - 2012-02-11 01:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-01-17 17:01 - 2011-02-25 01:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-01-17 17:01 - 2011-02-25 00:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-01-17 16:54 - 2014-01-17 16:54 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Adobe
2014-01-17 16:35 - 2013-05-10 00:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-17 16:35 - 2013-05-10 00:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-17 16:35 - 2013-05-09 23:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-17 16:35 - 2013-05-09 23:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-17 15:19 - 2014-01-17 15:28 - 00008326 _____ C:\Windows\IE10_main.log
2014-01-17 14:45 - 2012-07-25 22:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-01-17 14:45 - 2012-07-25 22:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-01-17 14:45 - 2012-07-25 21:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-01-17 14:45 - 2012-07-25 21:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-01-17 14:45 - 2012-06-02 09:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-01-17 14:36 - 2013-01-13 14:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-01-17 14:36 - 2013-01-13 14:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-01-17 14:36 - 2013-01-04 01:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-01-17 14:36 - 2013-01-04 01:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-01-17 14:35 - 2013-01-13 16:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-01-17 14:35 - 2013-01-13 15:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-01-17 14:35 - 2013-01-13 15:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-01-17 14:35 - 2013-01-13 15:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-01-17 14:35 - 2013-01-13 14:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-01-17 14:35 - 2013-01-13 14:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-01-17 14:35 - 2013-01-13 14:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-01-17 14:35 - 2013-01-13 14:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-01-17 14:35 - 2013-01-13 14:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-01-17 14:35 - 2013-01-13 14:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-01-17 14:35 - 2013-01-13 14:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-01-17 14:35 - 2013-01-13 14:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-01-17 14:35 - 2013-01-13 14:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-01-17 14:35 - 2013-01-13 14:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-01-17 14:35 - 2013-01-13 14:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-17 14:35 - 2013-01-13 14:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-01-17 14:35 - 2013-01-13 14:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-01-17 14:35 - 2013-01-13 14:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-01-17 14:35 - 2013-01-13 14:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-01-17 14:35 - 2013-01-13 14:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-01-17 14:35 - 2013-01-13 13:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-01-17 14:35 - 2013-01-13 13:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-01-17 14:35 - 2013-01-13 12:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-01-17 14:35 - 2013-01-13 12:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

lrwynn · Jan 25, 2014

P3

2014-01-17 14:27 - 2014-01-17 14:29 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 14:27 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-17 14:25 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-17 14:25 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-01-17 14:25 - 2013-08-01 21:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-01-17 14:25 - 2013-08-01 21:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-01-17 14:25 - 2013-08-01 21:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-01-17 14:25 - 2013-08-01 20:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-01-17 14:25 - 2013-08-01 19:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-01-17 14:25 - 2013-08-01 19:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-01-17 14:25 - 2012-10-09 13:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-01-17 14:25 - 2012-10-09 13:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-01-17 14:25 - 2012-10-09 12:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-01-17 14:25 - 2012-10-09 12:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-01-17 14:24 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-17 14:24 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-01-17 14:24 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-17 14:24 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-17 14:24 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-17 14:24 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-17 14:24 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-17 14:24 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-17 14:24 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-01-17 14:24 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-01-17 14:24 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-01-17 14:24 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-01-17 14:24 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-01-17 14:24 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-01-17 14:24 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-01-17 14:24 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-01-17 14:24 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-01-17 14:24 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-01-17 14:24 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-01-17 14:24 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-01-17 14:24 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-01-17 14:24 - 2013-07-12 05:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-01-17 14:24 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-01-17 14:24 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-01-17 14:24 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-01-17 14:24 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-01-17 14:24 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-01-17 14:24 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-01-17 14:24 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-01-17 14:24 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-01-17 14:24 - 2013-04-25 18:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-01-17 14:24 - 2013-03-31 17:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-01-17 14:24 - 2013-02-27 01:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-01-17 14:24 - 2013-02-27 00:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-01-17 14:24 - 2012-01-04 05:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-01-17 14:24 - 2012-01-04 03:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-01-17 14:24 - 2011-05-04 00:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-01-17 14:24 - 2011-05-04 00:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-01-17 14:24 - 2011-05-04 00:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-01-17 14:24 - 2011-05-04 00:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-01-17 14:24 - 2011-05-03 23:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-01-17 14:24 - 2011-05-03 23:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-01-17 14:24 - 2011-05-03 23:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-01-17 14:24 - 2011-05-03 23:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-01-17 14:23 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-17 14:23 - 2013-11-11 21:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-17 14:23 - 2013-11-11 21:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-17 14:23 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-17 14:23 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-17 14:23 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-17 14:23 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-17 14:23 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-01-17 14:23 - 2013-08-04 21:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-01-17 14:23 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-01-17 14:23 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-01-17 14:23 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-01-17 14:23 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-01-17 14:23 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-01-17 14:23 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-01-17 14:23 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-01-17 14:23 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-01-17 14:23 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-01-17 14:23 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-01-17 14:23 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-01-17 14:23 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-01-17 14:23 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-01-17 14:23 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-01-17 14:23 - 2013-04-01 01:03 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_AuthenticAMD.dll
2014-01-17 14:23 - 2013-03-19 00:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-01-17 14:23 - 2013-03-19 00:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-01-17 14:23 - 2012-12-07 08:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-01-17 14:23 - 2012-12-07 08:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-01-17 14:23 - 2012-12-07 07:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-01-17 14:23 - 2012-12-07 07:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-01-17 14:23 - 2012-12-07 06:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs

lrwynn · Jan 25, 2014

P4

2014-01-17 14:23 - 2012-10-03 12:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-01-17 14:23 - 2012-10-03 12:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-01-17 14:23 - 2012-10-03 11:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-01-17 14:23 - 2012-08-22 13:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-01-17 14:23 - 2012-07-04 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-01-17 14:23 - 2012-05-04 06:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-01-17 14:23 - 2012-05-04 04:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-01-17 14:23 - 2012-01-13 02:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-01-17 14:23 - 2011-12-30 01:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-01-17 14:23 - 2011-12-30 00:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-01-17 14:23 - 2011-06-16 00:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-01-17 14:23 - 2011-06-15 23:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-01-17 14:23 - 2011-04-09 01:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-01-17 14:23 - 2011-04-09 00:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-01-17 14:22 - 2013-08-28 21:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-01-17 14:22 - 2013-08-28 21:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-01-17 14:22 - 2013-08-28 21:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-01-17 14:22 - 2013-08-28 21:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-01-17 14:22 - 2013-08-28 21:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-01-17 14:22 - 2013-08-28 20:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-01-17 14:22 - 2013-08-28 20:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-01-17 14:22 - 2013-08-28 20:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-01-17 14:22 - 2013-08-28 20:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-01-17 14:22 - 2013-08-28 20:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-01-17 14:22 - 2013-08-28 20:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-01-17 14:22 - 2013-08-28 19:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-01-17 14:22 - 2013-08-28 19:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-01-17 14:22 - 2013-08-28 19:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-01-17 14:22 - 2013-08-28 19:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-01-17 14:22 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-01-17 14:22 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-01-17 14:22 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-01-17 14:22 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-01-17 14:22 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-01-17 14:22 - 2012-11-28 17:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-01-17 14:22 - 2012-11-28 17:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-01-17 14:22 - 2012-11-28 17:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-01-17 14:22 - 2012-05-01 00:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-01-17 14:22 - 2011-04-22 17:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-01-17 14:22 - 2011-03-11 01:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-01-17 14:22 - 2011-03-11 01:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-01-17 14:22 - 2011-03-11 00:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-01-17 14:22 - 2011-03-11 00:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-01-17 14:22 - 2011-03-10 23:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-01-17 14:15 - 2012-11-30 00:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-01-17 14:15 - 2012-11-30 00:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-01-17 14:15 - 2012-11-30 00:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-01-17 14:15 - 2012-11-29 18:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2014-01-17 14:15 - 2012-11-29 18:15 - 00420064 _____ C:\Windows\system32\locale.nls
2014-01-17 14:14 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-01-17 14:14 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-01-17 14:14 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-17 14:14 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-17 14:14 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-17 14:14 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-17 14:14 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-17 14:13 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-17 14:13 - 2013-11-26 05:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-17 14:13 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-17 14:13 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-01-17 14:13 - 2013-09-07 21:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-17 14:13 - 2013-07-25 21:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-01-17 14:13 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-01-17 14:13 - 2013-07-25 20:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-01-17 14:13 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-01-17 14:13 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-17 14:13 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-17 14:13 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-01-17 14:13 - 2013-06-04 01:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-01-17 14:13 - 2013-06-03 23:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-01-17 14:13 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-01-17 14:13 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-01-17 14:13 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-01-17 14:13 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-01-17 14:13 - 2013-05-10 00:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-01-17 14:13 - 2013-05-09 22:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-01-17 14:13 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-01-17 14:13 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-01-17 14:13 - 2013-01-24 01:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-01-17 14:13 - 2012-11-22 22:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-01-17 14:13 - 2012-11-22 00:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-01-17 14:13 - 2012-11-21 23:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-01-17 14:13 - 2012-08-21 16:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-01-17 14:13 - 2012-04-07 07:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-01-17 14:13 - 2012-04-07 06:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-01-17 14:13 - 2011-02-18 05:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-01-17 14:13 - 2011-02-18 00:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-01-17 14:13 - 2011-02-05 12:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-01-17 14:13 - 2011-02-05 12:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-01-17 14:13 - 2011-02-05 12:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-01-17 14:13 - 2011-02-05 12:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-01-17 14:13 - 2011-02-05 12:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-17 14:13 - 2011-02-05 12:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-01-17 14:13 - 2011-02-05 12:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-17 14:11 - 2012-05-05 03:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-01-17 14:11 - 2012-05-05 02:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-01-17 14:04 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-01-17 14:04 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-17 14:04 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-01-17 14:04 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-01-17 14:04 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-01-17 14:04 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-17 14:03 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-17 14:03 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-17 14:03 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-17 14:03 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-17 14:03 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-17 14:03 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-17 14:03 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-17 14:03 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-17 14:03 - 2013-08-01 07:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-01-17 13:28 - 2014-01-17 13:28 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-01-17 13:24 - 2014-01-17 13:24 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-01-17 13:20 - 2014-01-17 13:20 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-17 13:06 - 2014-01-17 13:06 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-01-17 12:52 - 2014-01-17 12:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-01-17 12:51 - 2014-01-17 12:51 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-01-17 12:42 - 2014-01-17 12:42 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-01-17 12:41 - 2014-01-17 12:41 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-01-17 12:40 - 2014-01-17 12:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-17 12:39 - 2014-01-17 12:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-17 12:37 - 2014-01-17 12:37 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-17 12:37 - 2014-01-17 12:37 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-17 12:25 - 2012-08-23 09:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-01-17 12:25 - 2012-08-23 09:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-01-17 12:25 - 2012-08-23 09:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-01-17 12:25 - 2012-08-23 09:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-01-17 12:25 - 2012-08-23 08:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-01-17 12:25 - 2012-08-23 08:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-01-17 12:25 - 2012-08-23 08:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-17 12:25 - 2012-08-23 08:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-17 12:25 - 2012-08-23 08:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-17 12:25 - 2012-08-23 08:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-01-17 12:25 - 2012-08-23 08:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-01-17 12:25 - 2012-08-23 08:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll

lrwynn · Jan 25, 2014

P5

2014-01-17 12:25 - 2012-08-23 08:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-17 12:25 - 2012-08-23 07:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-17 12:25 - 2012-08-23 06:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-17 12:25 - 2012-08-23 06:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-01-17 12:25 - 2012-08-23 06:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-01-17 12:25 - 2012-08-23 06:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-01-17 12:25 - 2012-08-23 05:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-17 12:25 - 2012-08-23 05:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-01-17 12:25 - 2012-08-23 05:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-01-17 12:25 - 2012-08-23 05:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-01-17 12:25 - 2012-08-23 04:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-01-17 12:25 - 2012-08-23 03:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-17 12:25 - 2012-08-23 03:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-17 12:11 - 2012-08-21 09:59 - 00001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrsmgr.dll
2014-01-17 12:11 - 2012-08-21 09:20 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2014-01-17 12:11 - 2012-08-21 09:20 - 00001536 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2014-01-17 12:11 - 2012-08-21 09:14 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2014-01-17 12:11 - 2012-08-21 09:08 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2014-01-17 12:11 - 2012-08-21 09:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2014-01-17 12:11 - 2012-08-21 08:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2014-01-17 12:11 - 2012-08-21 08:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2014-01-17 12:11 - 2012-08-21 08:56 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2014-01-17 12:11 - 2012-08-21 08:49 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2014-01-17 12:11 - 2012-08-21 08:45 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2014-01-17 12:11 - 2012-08-21 08:40 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2014-01-17 12:11 - 2012-08-21 08:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2014-01-17 12:11 - 2012-08-21 08:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2014-01-17 12:11 - 2012-08-21 08:26 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2014-01-17 12:11 - 2012-08-21 08:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2014-01-17 12:11 - 2012-08-21 08:04 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2014-01-17 12:11 - 2012-08-21 07:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2014-01-17 12:11 - 2012-08-21 07:37 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2014-01-17 12:11 - 2012-08-21 07:35 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2014-01-17 12:11 - 2012-07-23 13:17 - 00004675 _____ C:\Windows\system32\wsmanconfig_schema.xml
2014-01-17 12:11 - 2012-07-23 13:16 - 00204105 _____ C:\Windows\SysWOW64\winrm.vbs
2014-01-17 12:11 - 2012-07-23 13:16 - 00004675 _____ C:\Windows\SysWOW64\wsmanconfig_schema.xml
2014-01-17 12:10 - 2012-08-21 09:56 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2014-01-17 12:10 - 2012-08-21 09:29 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2014-01-17 12:10 - 2012-08-21 09:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2014-01-17 12:10 - 2012-08-21 09:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2014-01-17 12:10 - 2012-08-21 09:18 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2014-01-17 12:10 - 2012-08-21 08:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2014-01-17 12:10 - 2012-08-21 08:44 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2014-01-17 12:10 - 2012-08-21 08:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2014-01-17 12:10 - 2012-08-21 08:36 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2014-01-17 12:10 - 2012-08-21 08:34 - 00382464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn2.dll
2014-01-17 12:10 - 2012-08-21 08:33 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2014-01-17 12:10 - 2012-08-21 08:32 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2014-01-17 12:10 - 2012-08-21 08:29 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2014-01-17 12:10 - 2012-08-21 08:27 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2014-01-17 12:10 - 2012-08-21 08:17 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2014-01-17 12:10 - 2012-08-21 08:16 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2014-01-17 12:10 - 2012-08-21 08:09 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2014-01-17 12:10 - 2012-08-21 08:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn2.dll
2014-01-17 12:10 - 2012-08-21 08:07 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2014-01-17 12:10 - 2012-08-21 08:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2014-01-17 12:10 - 2012-08-21 08:03 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2014-01-17 12:10 - 2012-08-21 08:03 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2014-01-17 12:10 - 2012-08-21 08:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2014-01-17 12:10 - 2012-08-21 07:56 - 00526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmGCDeps.dll
2014-01-17 12:10 - 2012-08-21 07:52 - 02039296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-01-17 12:10 - 2012-08-21 07:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2014-01-17 12:10 - 2012-08-21 07:50 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-01-17 12:10 - 2012-08-21 07:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2014-01-17 12:10 - 2012-08-21 07:35 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-01-17 12:10 - 2012-08-21 07:34 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-01-17 12:10 - 2012-08-21 07:30 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2014-01-17 12:10 - 2012-08-21 07:26 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\WsmGCDeps.dll
2014-01-17 12:10 - 2012-08-21 07:24 - 02832384 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-01-17 12:10 - 2012-08-21 07:22 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2014-01-17 12:10 - 2012-08-21 07:22 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-01-17 12:10 - 2012-08-21 07:04 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2014-01-17 12:10 - 2012-08-21 06:26 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-01-17 12:10 - 2012-08-21 06:05 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-01-17 12:10 - 2012-07-23 13:17 - 00204105 _____ C:\Windows\system32\winrm.vbs
2014-01-17 12:10 - 2012-07-23 13:17 - 00004148 _____ C:\Windows\system32\psmodulediscoveryprovider.mof
2014-01-17 12:02 - 2014-01-17 16:24 - 00774028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-17 11:57 - 2014-01-20 11:35 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-17 11:57 - 2014-01-20 11:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-17 11:56 - 2014-01-17 11:56 - 00010009 _____ C:\Windows\DirectX.log
2014-01-17 11:56 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-01-17 11:56 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-01-17 11:56 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-01-17 11:56 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-01-17 11:56 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-01-17 11:56 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-01-17 11:56 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-01-17 11:56 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-01-17 11:56 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-01-17 11:56 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-01-17 11:56 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-01-17 11:56 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-01-17 11:56 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-01-17 11:56 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-01-17 11:56 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-01-17 11:56 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-01-17 11:56 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-01-17 11:56 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-01-17 11:56 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-01-17 11:56 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-01-17 11:56 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-01-17 11:56 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-01-17 11:56 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-01-17 11:56 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-01-17 11:56 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-01-17 11:56 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-01-17 11:56 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-01-17 11:56 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-01-17 11:56 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-01-17 11:56 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-01-17 11:56 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-01-17 11:56 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-01-17 11:56 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-01-17 11:56 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-01-17 11:56 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-01-17 11:56 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-01-17 11:56 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-01-17 11:56 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-01-17 11:56 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-01-17 11:56 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-01-17 11:56 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-01-17 11:56 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll

lrwynn · Jan 25, 2014

P6

2014-01-17 11:56 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-01-17 11:56 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-01-17 11:56 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-01-17 11:56 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-01-17 11:56 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-01-17 11:56 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-01-17 11:56 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-01-17 11:56 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-01-17 11:56 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-01-17 11:56 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-01-17 11:56 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-01-17 11:56 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-01-17 11:56 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-01-17 11:56 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-01-17 11:56 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-01-17 11:56 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-01-17 11:56 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-01-17 11:52 - 2014-01-17 11:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-17 11:46 - 2012-02-17 01:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-01-17 11:46 - 2012-02-17 00:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-01-17 11:46 - 2012-02-16 23:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-01-17 11:39 - 2014-01-17 11:43 - 00003573 _____ C:\Windows\IE9_main.log
2014-01-17 11:38 - 2014-01-17 13:55 - 00022679 _____ C:\Windows\wsusofflineupdate.log
2014-01-17 11:38 - 2012-06-02 17:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-01-17 11:38 - 2012-06-02 17:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-01-17 11:38 - 2012-06-02 17:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-01-17 11:38 - 2012-06-02 17:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-01-17 11:37 - 2012-06-02 17:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-01-17 11:37 - 2012-06-02 17:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-01-17 11:37 - 2012-06-02 17:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-01-17 11:37 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-01-17 11:37 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-01-17 11:36 - 2014-01-17 11:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\DRPSu
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\7-Zip
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-17 11:33 - 2012-07-28 17:33 - 00039656 _____ C:\Windows\system32\OEMLOGO.bmp
2014-01-17 11:33 - 2011-03-23 09:20 - 00077936 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\L1C62x64.sys
2014-01-17 11:32 - 2010-11-05 11:50 - 02716768 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwx.sys
2014-01-17 11:03 - 2014-01-23 18:12 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-17 11:03 - 2014-01-17 17:12 - 00001417 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-17 11:03 - 2014-01-17 16:54 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-17 11:03 - 2014-01-17 11:03 - 00000020 ___SH C:\Users\Chris\ntuser.ini
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris\AppData\Local\VirtualStore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris
2014-01-17 11:03 - 2009-07-13 23:54 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-17 11:03 - 2009-07-13 23:49 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-17 11:02 - 2014-01-17 11:02 - 00000000 __SHD C:\Recovery
2014-01-16 21:14 - 2014-01-25 21:15 - 01747444 _____ C:\Windows\WindowsUpdate.log
2014-01-16 21:14 - 2014-01-16 21:14 - 00001355 _____ C:\Windows\TSSysprep.log
2014-01-16 21:13 - 2014-01-16 21:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-16 21:11 - 2014-01-17 11:02 - 00000000 ____D C:\Windows\Panther

==================== One Month Modified Files and Folders =======

2014-01-26 02:14 - 2014-01-26 02:15 - 02078208 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-01-25 21:18 - 2014-01-25 21:17 - 00012640 _____ C:\Users\Chris\Desktop\FRST.txt
2014-01-25 21:18 - 2009-07-14 00:13 - 00781782 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-25 21:17 - 2014-01-25 21:17 - 00000000 ____D C:\FRST
2014-01-25 21:16 - 2014-01-17 17:55 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-25 21:15 - 2014-01-25 21:15 - 00035344 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-25 21:15 - 2014-01-25 11:49 - 00096784 _____ (CACE Technologies) C:\Windows\SysWOW64\WPRO_41_2001woem.tmp
2014-01-25 21:15 - 2014-01-17 17:55 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-25 21:15 - 2014-01-16 21:14 - 01747444 _____ C:\Windows\WindowsUpdate.log
2014-01-25 16:51 - 2014-01-23 17:33 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2014-01-25 11:57 - 2009-07-13 23:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-25 11:57 - 2009-07-13 23:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-25 11:46 - 2010-11-20 22:47 - 00018968 _____ C:\Windows\PFRO.log
2014-01-25 11:46 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 11:46 - 2009-07-13 23:51 - 00028138 _____ C:\Windows\setupact.log
2014-01-25 11:00 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-25 08:44 - 2014-01-25 08:44 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 3970536592
2014-01-25 08:44 - 2014-01-25 08:44 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Umazmo
2014-01-24 21:39 - 2014-01-24 21:39 - 00003820 _____ C:\Windows\System32\Tasks\Security Center Update - 1885239943
2014-01-24 21:38 - 2014-01-24 21:38 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Notanois
2014-01-24 17:43 - 2014-01-24 17:43 - 00003820 _____ C:\Windows\System32\Tasks\Security Center Update - 3415113818
2014-01-24 17:43 - 2014-01-24 17:43 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Issaybug
2014-01-24 13:57 - 2014-01-24 13:57 - 00014195 _____ C:\Users\Chris\Desktop\tscproof12414.odt
2014-01-24 13:48 - 2014-01-24 13:48 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 695623595
2014-01-24 13:48 - 2014-01-24 13:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Weevap
2014-01-24 12:02 - 2014-01-24 12:02 - 00139264 _____ C:\Users\Chris\AppData\Local\qdxnhxrk.exe
2014-01-24 10:58 - 2014-01-24 10:58 - 00003818 _____ C:\Windows\System32\Tasks\Security Center Update - 2072247522
2014-01-24 10:58 - 2014-01-24 10:58 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Xoxonyfy
2014-01-24 09:23 - 2014-01-24 09:22 - 18876757 _____ C:\Users\Chris\Downloads\Beelzebaal - Nachten bei Satan II.zip
2014-01-24 09:07 - 2014-01-24 09:07 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 3131807467
2014-01-24 09:07 - 2014-01-24 09:07 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ykwuyge
2014-01-23 18:12 - 2014-01-17 11:03 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-23 18:11 - 2014-01-23 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2014-01-23 18:09 - 2014-01-23 18:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 18:09 - 2014-01-23 18:09 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 17:50 - 2014-01-23 17:50 - 00000000 ____D C:\Users\Chris\AppData\Local\Macromedia
2014-01-23 17:48 - 2014-01-23 17:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ugtorohy
2014-01-23 17:43 - 2014-01-23 17:43 - 00001170 _____ C:\Users\Public\Desktop\PRTG Enterprise Console.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00001135 _____ C:\Users\Public\Desktop\PRTG Network Monitor.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\usr
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Paessler
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-23 17:28 - 2014-01-23 17:28 - 00000000 ____D C:\Users\Chris\Downloads\prtg
2014-01-23 17:24 - 2014-01-23 17:17 - 128420023 _____ C:\Users\Chris\Downloads\prtg.zip
2014-01-23 17:21 - 2014-01-23 17:23 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 17:18 - 2014-01-23 17:18 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:16 - 2014-01-23 17:18 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 16:52 - 2014-01-23 16:45 - 128420023 _____ C:\Users\Chris\Downloads\Unconfirmed 648852.crdownload
2014-01-23 16:31 - 2014-01-23 16:30 - 30796712 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-x64.exe
2014-01-23 16:31 - 2014-01-23 16:30 - 29141928 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-i586.exe
2014-01-23 16:06 - 2014-01-23 16:06 - 00503393 _____ C:\Users\Chris\Downloads\NetMeterEvo_200.zip
2014-01-23 15:58 - 2014-01-23 15:58 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 ____D C:\Program Files\CCleaner
2014-01-23 15:56 - 2014-01-23 15:54 - 04721920 _____ (Piriform Ltd) C:\Users\Chris\Downloads\ccsetup410.exe
2014-01-23 15:53 - 2014-01-23 15:53 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Uxawcei
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Urpookm
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Toytgey
2014-01-23 15:51 - 2014-01-23 15:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ybzecaz
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ysabday
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Tyasop
2014-01-23 15:49 - 2014-01-23 15:49 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Giexefb
2014-01-23 15:48 - 2014-01-23 15:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Kazoutir
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ymxuyhew
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Opsuehu
2014-01-23 15:46 - 2014-01-23 15:46 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Xeavwuvy
2014-01-23 15:43 - 2014-01-23 15:43 - 00139264 _____ C:\Users\Chris\AppData\Local\jvkvcqmv.exe
2014-01-23 12:22 - 2014-01-23 12:21 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-23 12:22 - 2014-01-23 12:20 - 24859352 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\Windows-KB890830-x64-V5.8.exe
2014-01-23 12:21 - 2014-01-23 12:21 - 00000000 ___HD C:\Windows\msdownld.tmp
2014-01-23 12:20 - 2014-01-23 12:20 - 00292184 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\dxwebsetup.exe
2014-01-23 12:08 - 2014-01-23 12:07 - 00000000 ____D C:\Program Files\WhoCrashed
2014-01-23 12:07 - 2014-01-23 12:06 - 02657280 _____ (Resplendence Software Projects Sp. ) C:\Users\Chris\Downloads\whocrashedSetup.exe
2014-01-22 19:12 - 2014-01-22 19:12 - 00373520 _____ C:\Windows\Minidump\012214-36441-01.dmp
2014-01-22 19:12 - 2014-01-22 10:41 - 00000000 ____D C:\Windows\Minidump
2014-01-22 19:11 - 2014-01-22 10:41 - 427893522 _____ C:\Windows\MEMORY.DMP
2014-01-22 18:42 - 2014-01-22 18:41 - 01046528 _____ C:\Users\Chris\Downloads\MicrosoftFixit50848.msi
2014-01-22 18:38 - 2014-01-22 18:37 - 00372448 _____ C:\Windows\Minidump\012214-40887-01.dmp
2014-01-22 18:33 - 2014-01-22 18:33 - 01312312 _____ C:\Windows\Minidump\012214-35131-01.dmp
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Mozilla
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Mozilla
2014-01-22 10:56 - 2014-01-22 10:56 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2014-01-22 10:47 - 2014-01-22 10:46 - 00640544 _____ C:\Windows\Minidump\012214-48157-01.dmp
2014-01-22 10:41 - 2014-01-22 10:41 - 01700912 _____ C:\Windows\Minidump\012214-35833-01.dmp
2014-01-22 10:39 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\LiveKernelReports
2014-01-22 10:22 - 2014-01-22 10:22 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Macromedia
2014-01-22 10:14 - 2014-01-22 10:14 - 00012326 _____ C:\Users\Chris\AppData\Local\ucvqgdfi
2014-01-22 10:14 - 2014-01-22 10:14 - 00003812 _____ C:\Windows\System32\Tasks\Security Center Update - 489282179
2014-01-22 10:14 - 2014-01-22 10:14 - 00003810 _____ C:\Windows\System32\Tasks\Security Center Update - 2169307829
2014-01-22 10:14 - 2014-01-22 10:14 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Yvcabiy
2014-01-22 10:14 - 2014-01-22 10:14 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ekesodq
2014-01-22 10:13 - 2014-01-22 10:13 - 00067992 _____ C:\Users\Chris\AppData\Local\ffbmehso
2014-01-22 10:12 - 2014-01-22 10:12 - 00000000 _____ C:\Users\Chris\AppData\Roaming\SharedSettings.ccs
2014-01-22 09:28 - 2014-01-22 09:28 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-21 22:45 - 2014-01-21 22:45 - 00000000 ____D C:\Users\Chris\AppData\Local\Microsoft Games
2014-01-21 22:44 - 2014-01-21 22:44 - 00000000 ____D C:\Windows\System32\Tasks\Games
2014-01-21 15:34 - 2014-01-21 15:34 - 00000000 ____D C:\Users\Chris\AppData\Roaming\LibreOffice
2014-01-21 15:29 - 2014-01-21 15:28 - 00000000 ____D C:\Users\Chris\Desktop\poetry
2014-01-20 20:26 - 2014-01-20 20:26 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2014-01-20 20:18 - 2014-01-20 20:17 - 13670584 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\mseinstall.exe
2014-01-20 18:18 - 2014-01-20 18:16 - 00000000 ____D C:\Program Files (x86)\LastPass
2014-01-20 18:16 - 2014-01-20 18:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2014-01-20 18:15 - 2014-01-20 18:14 - 13024768 _____ (LastPass) C:\Users\Chris\Downloads\lastpass_x64.exe
2014-01-20 17:36 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Apple Computer
2014-01-20 17:35 - 2014-01-20 17:35 - 00071616 _____ C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 16:19 - 2014-01-20 16:19 - 00000000 ____D C:\Users\Chris\Desktop\chris
2014-01-20 11:37 - 2014-01-17 17:54 - 00000000 ____D C:\Users\Chris\AppData\Local\Google
2014-01-20 11:36 - 2009-07-13 23:45 - 00330824 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-20 11:35 - 2014-01-17 11:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-20 11:35 - 2014-01-17 11:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-19 02:33 - 2010-11-20 22:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 11:48 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2014-01-18 11:22 - 2014-01-18 11:22 - 00015748 _____ C:\Users\Chris\Documents\cc_20140118_112217.reg
2014-01-18 11:22 - 2014-01-18 11:22 - 00004032 _____ C:\Users\Chris\Documents\cc_20140118_112239.reg
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-17 18:09 - 2014-01-17 18:09 - 00001500 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2014-01-17 18:09 - 2014-01-17 18:08 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2014-01-17 18:08 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple Computer
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iTunes
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iPod
2014-01-17 18:06 - 2014-01-17 18:05 - 00000000 ____D C:\ProgramData\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-17 18:04 - 2014-01-17 18:04 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2014-01-17 18:04 - 2014-01-17 18:03 - 00000000 ____D C:\ProgramData\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 18:03 - 2014-01-17 17:55 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-17 18:03 - 2014-01-17 17:55 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-17 18:01 - 2014-01-17 18:01 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\ProgramData\Sun
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\Program Files\Java
2014-01-17 17:59 - 2014-01-17 17:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 17:55 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-17 17:12 - 2014-01-17 11:03 - 00001417 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-17 17:10 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-17 17:08 - 2014-01-17 17:03 - 00007582 _____ C:\Windows\IE11_main.log
2014-01-17 17:05 - 2014-01-17 17:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

lrwynn · Jan 25, 2014

P7

2014-01-17 16:54 - 2014-01-17 16:54 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Adobe
2014-01-17 16:54 - 2014-01-17 11:03 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-17 16:44 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-17 16:44 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-17 16:43 - 2010-11-21 02:17 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\zh-HK
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\tr-TR
2014-01-17 16:24 - 2014-01-17 12:02 - 00774028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-17 15:28 - 2014-01-17 15:19 - 00008326 _____ C:\Windows\IE10_main.log
2014-01-17 14:29 - 2014-01-17 14:27 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 13:55 - 2014-01-17 11:38 - 00022679 _____ C:\Windows\wsusofflineupdate.log
2014-01-17 13:43 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-17 13:35 - 2014-01-17 13:35 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-01-17 13:28 - 2014-01-17 13:28 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-01-17 13:24 - 2014-01-17 13:24 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-01-17 13:20 - 2014-01-17 13:20 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-17 13:06 - 2014-01-17 13:06 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-01-17 12:52 - 2014-01-17 12:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-01-17 12:51 - 2014-01-17 12:51 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-01-17 12:42 - 2014-01-17 12:42 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-01-17 12:41 - 2014-01-17 12:41 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-01-17 12:40 - 2014-01-17 12:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-17 12:39 - 2014-01-17 12:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-17 12:37 - 2014-01-17 12:37 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-17 12:37 - 2014-01-17 12:37 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-17 11:56 - 2014-01-17 11:56 - 00010009 _____ C:\Windows\DirectX.log
2014-01-17 11:52 - 2014-01-17 11:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-17 11:43 - 2014-01-17 11:39 - 00003573 _____ C:\Windows\IE9_main.log
2014-01-17 11:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\servicing
2014-01-17 11:36 - 2014-01-17 11:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\DRPSu
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\7-Zip
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-17 11:32 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\restore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000020 ___SH C:\Users\Chris\ntuser.ini
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris\AppData\Local\VirtualStore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris
2014-01-17 11:02 - 2014-01-17 11:02 - 00000000 __SHD C:\Recovery
2014-01-17 11:02 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\Panther
2014-01-17 11:02 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Recovery
2014-01-16 21:14 - 2014-01-16 21:14 - 00001355 _____ C:\Windows\TSSysprep.log
2014-01-16 21:14 - 2009-07-13 23:46 - 00002790 _____ C:\Windows\DtcInstall.log
2014-01-16 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep
2014-01-16 21:13 - 2014-01-16 21:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-16 21:11 - 2009-07-14 00:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2014-01-16 21:11 - 2009-07-14 00:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2014-01-06 16:20 - 2014-01-17 14:27 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Chris\AppData\Local\Temp\SHSetup.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_0e74476b.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_a8cacba8.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_b10d7362.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-20 09:05

==================== End Of Log ============================

Broni · Jan 25, 2014

OK. Give me a minute to write the fix.

Broni · Jan 25, 2014

You got really whacked.
Let see if we can make things better...

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

IMPORTANT! Restart computer.

Re-run FRST "Scan" one more time and post fresh log.

lrwynn · Jan 25, 2014

"You got really whacked."

Tell me about it. The fiance is on "probation" and I'm going to be working on seriously educating him about the dangers of the inner-nets. He's a bit too click-happy when it comes to mystery emails.

FIXLOG

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-01-2014 01
Ran by Chris at 2014-01-25 23:05:39 Run:1
Running from C:\Users\Chris\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Task: {15B13909-3F0F-48C8-86BC-54CDDE485425} - System32\Tasks\Security Center Update - 3970536592 => C:\Users\Chris\AppData\Roaming\Umazmo\opodmeu.exe [2014-01-22] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {29914F85-076A-4BB8-A7C3-23DB4F475EFB} - System32\Tasks\Security Center Update - 489282179 => C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [2014-01-19] (IirDeramker S.R.L.) <==== ATTENTION
Task: {323D3182-4AC7-41A9-94BD-E5D64E5A7B71} - System32\Tasks\Security Center Update - 3415113818 => C:\Users\Chris\AppData\Roaming\Issaybug\cymidyv.exe [2014-01-23] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {39D43686-1203-4776-ABC4-C271A2362EFA} - System32\Tasks\Security Center Update - 3131807467 => C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {5000986D-4D75-4477-9296-EBE92728F556} - System32\Tasks\Security Center Update - 2072247522 => C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {68D6046A-E048-455C-9BD9-D26C21B04808} - System32\Tasks\Security Center Update - 695623595 => C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [2014-01-23] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {6BED0299-CC6F-4A4B-A123-2007193DD906} - System32\Tasks\Security Center Update - 1885239943 => C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [2014-01-21] (IirDeramkel S.R.L.) <==== ATTENTION
Task: {AF0B0CC6-21A4-48E0-8D88-C9C2CFA5F32E} - System32\Tasks\Security Center Update - 2169307829 => C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [2014-01-19] (IirDeramker S.R.L.) <==== ATTENTION
C:\Users\Chris\AppData\Roaming\Umazmo
C:\Users\Chris\AppData\Roaming\Yvcabiy
C:\Users\Chris\AppData\Roaming\Issaybug
C:\Users\Chris\AppData\Roaming\Ykwuyge
C:\Users\Chris\AppData\Roaming\Xoxonyfy
C:\Users\Chris\AppData\Roaming\Weevap
C:\Users\Chris\AppData\Roaming\Notanois
C:\Users\Chris\AppData\Roaming\Ekesodq
AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B
(IirDeramker S.R.L.) C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe
(IirDeramkel S.R.L.) C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe
(IirDeramkel S.R.L.) C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe
HKLM\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKLM\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKLM\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKLM\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
C:\Users\Chris\AppData\Roaming\Xeavwuvy
C:\Users\Chris\AppData\Roaming\Ymxuyhew
HKLM-x32\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Upsoewicmyyn] - C:\Users\Chris\AppData\Roaming\Issaybug\cymidyv.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Itozlan] - C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Wyrykeleyw] - C:\Users\Chris\AppData\Roaming\Umazmo\opodmeu.exe [287926 2014-01-22] (IirDeramkel S.R.L.)
HKLM-x32\...\Run: [Quuhakluzyac] - C:\Users\Chris\AppData\Roaming\Giexefb\etsas.exe [219855 2014-01-18] (IirDeramker S.R.L.)
HKLM-x32\...\Run: [Ewcymonomu] - C:\Users\Chris\AppData\Roaming\Kazoutir\emyxna.exe [219855 2014-01-20] (IirDeramker S.R.L.)
HKCU\...\Run: [Boezoguwhimu] - C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe [219699 2014-01-19] (IirDeramker S.R.L.)
HKCU\...\Run: [Oripubsofykiat] - C:\Users\Chris\AppData\Roaming\Yvcabiy\qelopai.exe [219699 2014-01-19] (IirDeramker S.R.L.)
C:\Users\Chris\AppData\Roaming\Giexefb
C:\Users\Chris\AppData\Roaming\Kazoutir
HKCU\...\Run: [lwsefqqb] - C:\Users\Chris\AppData\Local\jvkvcqmv.exe [139264 2014-01-23] ()
C:\Users\Chris\AppData\Local\jvkvcqmv.exe
HKCU\...\Run: [Emqedee] - C:\Users\Chris\AppData\Roaming\Xeavwuvy\ifdair.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKCU\...\Run: [Piexsikoi] - C:\Users\Chris\AppData\Roaming\Ymxuyhew\oroto.exe [219855 2014-01-21] (IirDeramker S.R.L.)
HKCU\...\Run: [Ewcymonomu] - C:\Users\Chris\AppData\Roaming\Kazoutir\emyxna.exe [219855 2014-01-20] (IirDeramker S.R.L.)
HKCU\...\Run: [Quuhakluzyac] - C:\Users\Chris\AppData\Roaming\Giexefb\etsas.exe [219855 2014-01-18] (IirDeramker S.R.L.)
HKCU\...\Run: [Zoizimarok] - C:\Users\Chris\AppData\Roaming\Uxawcei\eztiby.exe [219855 2014-01-22] (IirDeramker S.R.L.)
HKCU\...\Run: [Inyxpiixcaz] - C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe [220404 2014-01-21] (IirDeramkel S.R.L.)
HKCU\...\Run: [Nememoatev] - C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
C:\Users\Chris\AppData\Roaming\Uxawcei
HKCU\...\Run: [fpriqkid] - C:\Users\Chris\AppData\Local\qdxnhxrk.exe [139264 2014-01-24] ()
C:\Users\Chris\AppData\Local\qdxnhxrk.exe
HKCU\...\Run: [Taepu] - C:\Users\Chris\AppData\Roaming\Weevap\tukegeg.exe [284321 2014-01-23] (IirDeramkel S.R.L.)
HKCU\...\Run: [Itozlan] - C:\Users\Chris\AppData\Roaming\Notanois\luoqedg.exe [284321 2014-01-21] (IirDeramkel S.R.L.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
C:\Users\Chris\AppData\Local\Temp\SHSetup.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_0e74476b.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_a8cacba8.exe
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_b10d7362.exe
*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15B13909-3F0F-48C8-86BC-54CDDE485425} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15B13909-3F0F-48C8-86BC-54CDDE485425} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 3970536592 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 3970536592 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29914F85-076A-4BB8-A7C3-23DB4F475EFB} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29914F85-076A-4BB8-A7C3-23DB4F475EFB} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 489282179 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 489282179 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{323D3182-4AC7-41A9-94BD-E5D64E5A7B71} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{323D3182-4AC7-41A9-94BD-E5D64E5A7B71} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 3415113818 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 3415113818 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{39D43686-1203-4776-ABC4-C271A2362EFA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39D43686-1203-4776-ABC4-C271A2362EFA} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 3131807467 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 3131807467 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5000986D-4D75-4477-9296-EBE92728F556} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5000986D-4D75-4477-9296-EBE92728F556} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 2072247522 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 2072247522 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{68D6046A-E048-455C-9BD9-D26C21B04808} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68D6046A-E048-455C-9BD9-D26C21B04808} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 695623595 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 695623595 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6BED0299-CC6F-4A4B-A123-2007193DD906} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BED0299-CC6F-4A4B-A123-2007193DD906} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 1885239943 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 1885239943 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF0B0CC6-21A4-48E0-8D88-C9C2CFA5F32E} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF0B0CC6-21A4-48E0-8D88-C9C2CFA5F32E} => Key deleted successfully.
C:\Windows\System32\Tasks\Security Center Update - 2169307829 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 2169307829 => Key deleted successfully.
C:\Users\Chris\AppData\Roaming\Umazmo => Moved successfully.
C:\Users\Chris\AppData\Roaming\Yvcabiy => Moved successfully.
C:\Users\Chris\AppData\Roaming\Issaybug => Moved successfully.

"C:\Users\Chris\AppData\Roaming\Ykwuyge" directory move:

C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe => Moved successfully.
Could not move "C:\Users\Chris\AppData\Roaming\Ykwuyge" directory. => Scheduled to move on reboot.

C:\Users\Chris\AppData\Roaming\Xoxonyfy => Moved successfully.
C:\Users\Chris\AppData\Roaming\Weevap => Moved successfully.
C:\Users\Chris\AppData\Roaming\Notanois => Moved successfully.
C:\Users\Chris\AppData\Roaming\Ekesodq => Moved successfully.
C:\ProgramData\TEMP => ":9A870F8B" ADS removed successfully.
[5736] C:\Users\Chris\AppData\Roaming\Ekesodq\omkanu.exe => Process closed successfully.
[6248] C:\Users\Chris\AppData\Roaming\Xoxonyfy\didoym.exe => Process closed successfully.
[6204] C:\Users\Chris\AppData\Roaming\Ykwuyge\uvgadua.exe => Process closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Boezoguwhimu => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Emqedee => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Inyxpiixcaz => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Piexsikoi => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Oripubsofykiat => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nememoatev => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Taepu => Value deleted successfully.
C:\Users\Chris\AppData\Roaming\Xeavwuvy => Moved successfully.
C:\Users\Chris\AppData\Roaming\Ymxuyhew => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Boezoguwhimu => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Piexsikoi => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Inyxpiixcaz => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Emqedee => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Oripubsofykiat => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Nememoatev => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Taepu => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Upsoewicmyyn => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Itozlan => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Wyrykeleyw => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Quuhakluzyac => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Ewcymonomu => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Boezoguwhimu => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Oripubsofykiat => Value deleted successfully.
C:\Users\Chris\AppData\Roaming\Giexefb => Moved successfully.
C:\Users\Chris\AppData\Roaming\Kazoutir => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\lwsefqqb => Value deleted successfully.
C:\Users\Chris\AppData\Local\jvkvcqmv.exe => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Emqedee => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Piexsikoi => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Ewcymonomu => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Quuhakluzyac => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Zoizimarok => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Inyxpiixcaz => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Nememoatev => Value deleted successfully.
C:\Users\Chris\AppData\Roaming\Uxawcei => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\fpriqkid => Value deleted successfully.
C:\Users\Chris\AppData\Local\qdxnhxrk.exe => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Taepu => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Itozlan => Value deleted successfully.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
C:\Users\Chris\AppData\Local\Temp\SHSetup.exe => Moved successfully.
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_0e74476b.exe => Moved successfully.
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_a8cacba8.exe => Moved successfully.
C:\Users\Chris\AppData\Local\Temp\UpdateFlashPlayer_b10d7362.exe => Moved successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-01-25 23:09:28)<=

C:\Users\Chris\AppData\Roaming\Ykwuyge => Is moved successfully.

==== End of Fixlog ====

lrwynn · Jan 25, 2014

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-01-2014 01
Ran by Chris (administrator) on CHRIS-PC on 25-01-2014 23:09:51
Running from C:\Users\Chris\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Enterprise Console.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\PRTG Enterprise Console.exe (Paessler AG)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6CC72339A313CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\4qiinc3e.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-20]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-20]
CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-20]
CHR Extension: (Google Search) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-20]
CHR Extension: (LastPass) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-01-20]
CHR Extension: (Speed Dial 2) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2014-01-20]
CHR Extension: (Google Wallet) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-20]
CHR Extension: (Gmail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-20]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S2 PRTGCoreService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Server.exe [7261408 2013-12-23] (Paessler AG)
R2 PRTGProbeService; C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe [8831200 2013-12-23] (Paessler AG)

==================== Drivers (Whitelisted) ====================

R3 AR5416; C:\Windows\System32\DRIVERS\athwx.sys [2716768 2010-11-05] (Atheros Communications, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
S3 WPRO_41_2001; system32\drivers\WPRO_41_2001.sys [x]

==================== NetSvcs (Whitelisted) ===================

lrwynn · Jan 25, 2014

==================== One Month Created Files and Folders ========

2014-01-26 02:15 - 2014-01-26 02:14 - 02078208 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-01-25 23:11 - 2014-01-25 23:11 - 00096784 _____ (CACE Technologies) C:\Windows\SysWOW64\WPRO_41_2001woem.tmp
2014-01-25 23:11 - 2014-01-25 23:11 - 00035344 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-25 21:20 - 2014-01-25 21:20 - 00017959 _____ C:\Users\Chris\Desktop\Addition.txt
2014-01-25 21:17 - 2014-01-25 23:11 - 00008260 _____ C:\Users\Chris\Desktop\FRST.txt
2014-01-25 21:17 - 2014-01-25 23:09 - 00000000 ____D C:\FRST
2014-01-24 13:57 - 2014-01-24 13:57 - 00014195 _____ C:\Users\Chris\Desktop\tscproof12414.odt
2014-01-24 09:22 - 2014-01-24 09:23 - 18876757 _____ C:\Users\Chris\Downloads\Beelzebaal - Nachten bei Satan II.zip
2014-01-23 18:09 - 2014-01-23 18:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 18:09 - 2014-01-23 18:09 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 18:05 - 2014-01-23 18:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2014-01-23 17:50 - 2014-01-23 17:50 - 00000000 ____D C:\Users\Chris\AppData\Local\Macromedia
2014-01-23 17:48 - 2014-01-23 17:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ugtorohy
2014-01-23 17:43 - 2014-01-23 17:43 - 00001170 _____ C:\Users\Public\Desktop\PRTG Enterprise Console.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00001135 _____ C:\Users\Public\Desktop\PRTG Network Monitor.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\usr
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Paessler
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-23 17:33 - 2014-01-25 23:09 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2014-01-23 17:28 - 2014-01-23 17:28 - 00000000 ____D C:\Users\Chris\Downloads\prtg
2014-01-23 17:23 - 2014-01-23 17:21 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 17:22 - 2014-01-23 17:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 17:18 - 2014-01-23 17:18 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:18 - 2014-01-23 17:16 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 17:18 - 2014-01-23 17:16 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 17:17 - 2014-01-23 17:24 - 128420023 _____ C:\Users\Chris\Downloads\prtg.zip
2014-01-23 16:45 - 2014-01-23 16:52 - 128420023 _____ C:\Users\Chris\Downloads\Unconfirmed 648852.crdownload
2014-01-23 16:30 - 2014-01-23 16:31 - 30796712 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-x64.exe
2014-01-23 16:30 - 2014-01-23 16:31 - 29141928 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-i586.exe
2014-01-23 16:06 - 2014-01-23 16:06 - 00503393 _____ C:\Users\Chris\Downloads\NetMeterEvo_200.zip
2014-01-23 15:58 - 2014-01-23 15:58 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 ____D C:\Program Files\CCleaner
2014-01-23 15:54 - 2014-01-23 15:56 - 04721920 _____ (Piriform Ltd) C:\Users\Chris\Downloads\ccsetup410.exe
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Urpookm
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Toytgey
2014-01-23 15:51 - 2014-01-23 15:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ybzecaz
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ysabday
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Tyasop
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Opsuehu
2014-01-23 12:21 - 2014-01-23 12:22 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-23 12:21 - 2014-01-23 12:21 - 00000000 ___HD C:\Windows\msdownld.tmp
2014-01-23 12:20 - 2014-01-23 12:22 - 24859352 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\Windows-KB890830-x64-V5.8.exe
2014-01-23 12:20 - 2014-01-23 12:20 - 00292184 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\dxwebsetup.exe
2014-01-23 12:07 - 2014-01-23 12:08 - 00000000 ____D C:\Program Files\WhoCrashed
2014-01-23 12:06 - 2014-01-23 12:07 - 02657280 _____ (Resplendence Software Projects Sp. ) C:\Users\Chris\Downloads\whocrashedSetup.exe
2014-01-22 19:12 - 2014-01-22 19:12 - 00373520 _____ C:\Windows\Minidump\012214-36441-01.dmp
2014-01-22 18:41 - 2014-01-22 18:42 - 01046528 _____ C:\Users\Chris\Downloads\MicrosoftFixit50848.msi
2014-01-22 18:37 - 2014-01-22 18:38 - 00372448 _____ C:\Windows\Minidump\012214-40887-01.dmp
2014-01-22 18:33 - 2014-01-22 18:33 - 01312312 _____ C:\Windows\Minidump\012214-35131-01.dmp
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Mozilla
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Mozilla
2014-01-22 10:56 - 2014-01-22 10:56 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2014-01-22 10:46 - 2014-01-22 10:47 - 00640544 _____ C:\Windows\Minidump\012214-48157-01.dmp
2014-01-22 10:41 - 2014-01-22 19:12 - 00000000 ____D C:\Windows\Minidump
2014-01-22 10:41 - 2014-01-22 19:11 - 427893522 _____ C:\Windows\MEMORY.DMP
2014-01-22 10:41 - 2014-01-22 10:41 - 01700912 _____ C:\Windows\Minidump\012214-35833-01.dmp
2014-01-22 10:22 - 2014-01-22 10:22 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Macromedia
2014-01-22 10:14 - 2014-01-22 10:14 - 00012326 _____ C:\Users\Chris\AppData\Local\ucvqgdfi
2014-01-22 10:13 - 2014-01-22 10:13 - 00067992 _____ C:\Users\Chris\AppData\Local\ffbmehso
2014-01-22 10:12 - 2014-01-22 10:12 - 00000000 _____ C:\Users\Chris\AppData\Roaming\SharedSettings.ccs
2014-01-22 09:28 - 2014-01-22 09:28 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-21 22:45 - 2014-01-21 22:45 - 00000000 ____D C:\Users\Chris\AppData\Local\Microsoft Games
2014-01-21 22:44 - 2014-01-21 22:44 - 00000000 ____D C:\Windows\System32\Tasks\Games
2014-01-21 15:34 - 2014-01-21 15:34 - 00000000 ____D C:\Users\Chris\AppData\Roaming\LibreOffice
2014-01-21 15:28 - 2014-01-21 15:29 - 00000000 ____D C:\Users\Chris\Desktop\poetry
2014-01-20 20:26 - 2014-01-20 20:26 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2014-01-20 20:17 - 2014-01-20 20:18 - 13670584 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\mseinstall.exe
2014-01-20 18:16 - 2014-01-20 18:18 - 00000000 ____D C:\Program Files (x86)\LastPass
2014-01-20 18:16 - 2014-01-20 18:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2014-01-20 18:14 - 2014-01-20 18:15 - 13024768 _____ (LastPass) C:\Users\Chris\Downloads\lastpass_x64.exe
2014-01-20 17:35 - 2014-01-20 17:35 - 00071616 _____ C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 16:19 - 2014-01-20 16:19 - 00000000 ____D C:\Users\Chris\Desktop\chris
2014-01-18 11:22 - 2014-01-18 11:22 - 00015748 _____ C:\Users\Chris\Documents\cc_20140118_112217.reg
2014-01-18 11:22 - 2014-01-18 11:22 - 00004032 _____ C:\Users\Chris\Documents\cc_20140118_112239.reg
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-17 18:10 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-17 18:09 - 2014-01-17 18:09 - 00001500 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2014-01-17 18:08 - 2014-01-20 17:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Apple Computer
2014-01-17 18:08 - 2014-01-17 18:09 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2014-01-17 18:08 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple Computer
2014-01-17 18:07 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\Program Files\iTunes
2014-01-17 18:06 - 2014-01-17 18:07 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iPod
2014-01-17 18:05 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-17 18:04 - 2014-01-17 18:04 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2014-01-17 18:04 - 2013-12-01 08:10 - 00257624 _____ C:\Windows\system32\unrar64.dll
2014-01-17 18:04 - 2013-12-01 08:10 - 00218200 _____ C:\Windows\SysWOW64\unrar.dll
2014-01-17 18:03 - 2014-01-17 18:04 - 00000000 ____D C:\ProgramData\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 18:01 - 2014-01-17 18:01 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\ProgramData\Sun
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\Program Files\Java
2014-01-17 17:59 - 2014-01-17 17:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 17:55 - 2014-01-25 23:09 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-17 17:55 - 2014-01-25 22:08 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-17 17:55 - 2014-01-17 18:03 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-17 17:55 - 2014-01-17 18:03 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-17 17:54 - 2014-01-20 11:37 - 00000000 ____D C:\Users\Chris\AppData\Local\Google
2014-01-17 17:54 - 2014-01-17 17:55 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-17 17:31 - 2013-11-26 06:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-17 17:31 - 2013-11-26 05:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-17 17:31 - 2013-11-26 05:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-17 17:31 - 2013-11-26 05:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-17 17:31 - 2013-11-26 04:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-17 17:31 - 2013-11-26 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-17 17:31 - 2013-11-26 04:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-17 17:31 - 2013-11-26 04:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-17 17:31 - 2013-11-26 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-17 17:31 - 2013-11-26 04:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-17 17:31 - 2013-11-26 04:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-17 17:31 - 2013-11-26 04:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-17 17:31 - 2013-11-26 04:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-17 17:31 - 2013-11-26 04:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-17 17:31 - 2013-11-26 03:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-17 17:31 - 2013-11-26 03:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-17 17:31 - 2013-11-26 03:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-17 17:31 - 2013-11-26 03:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-17 17:31 - 2013-11-26 03:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-17 17:31 - 2013-11-26 03:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-17 17:31 - 2013-11-26 03:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-17 17:31 - 2013-11-26 03:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-17 17:31 - 2013-11-26 02:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-17 17:31 - 2013-11-26 02:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-17 17:31 - 2013-11-26 02:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-17 17:31 - 2013-11-26 02:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-17 17:31 - 2013-11-26 01:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-17 17:31 - 2013-11-26 01:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-17 17:31 - 2013-11-26 01:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-17 17:31 - 2013-11-26 01:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-17 17:31 - 2013-11-26 01:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-17 17:08 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-17 17:05 - 2014-01-17 17:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-17 17:03 - 2014-01-17 17:08 - 00007582 _____ C:\Windows\IE11_main.log
2014-01-17 17:01 - 2013-11-23 13:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-17 17:01 - 2013-11-23 12:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-17 17:01 - 2013-04-17 02:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-01-17 17:01 - 2013-04-17 01:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-01-17 17:01 - 2012-02-11 01:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-01-17 17:01 - 2012-02-11 01:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-01-17 17:01 - 2011-02-25 01:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-01-17 17:01 - 2011-02-25 00:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-01-17 16:54 - 2014-01-17 16:54 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Adobe
2014-01-17 16:35 - 2013-05-10 00:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-17 16:35 - 2013-05-10 00:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-17 16:35 - 2013-05-09 23:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-17 16:35 - 2013-05-09 23:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll

lrwynn · Jan 25, 2014

2014-01-17 15:19 - 2014-01-17 15:28 - 00008326 _____ C:\Windows\IE10_main.log
2014-01-17 14:45 - 2012-07-25 22:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-01-17 14:45 - 2012-07-25 22:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-01-17 14:45 - 2012-07-25 22:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-01-17 14:45 - 2012-07-25 21:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-01-17 14:45 - 2012-07-25 21:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-01-17 14:45 - 2012-06-02 09:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-01-17 14:36 - 2013-01-13 14:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-01-17 14:36 - 2013-01-13 14:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-01-17 14:36 - 2013-01-04 01:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-01-17 14:36 - 2013-01-04 01:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-01-17 14:35 - 2013-01-13 16:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 16:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-17 14:35 - 2013-01-13 15:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-01-17 14:35 - 2013-01-13 15:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-01-17 14:35 - 2013-01-13 15:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-01-17 14:35 - 2013-01-13 15:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-01-17 14:35 - 2013-01-13 14:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-01-17 14:35 - 2013-01-13 14:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-01-17 14:35 - 2013-01-13 14:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-01-17 14:35 - 2013-01-13 14:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-01-17 14:35 - 2013-01-13 14:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-01-17 14:35 - 2013-01-13 14:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-01-17 14:35 - 2013-01-13 14:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-01-17 14:35 - 2013-01-13 14:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-01-17 14:35 - 2013-01-13 14:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-01-17 14:35 - 2013-01-13 14:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-01-17 14:35 - 2013-01-13 14:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-17 14:35 - 2013-01-13 14:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-01-17 14:35 - 2013-01-13 14:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-01-17 14:35 - 2013-01-13 14:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-01-17 14:35 - 2013-01-13 14:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-01-17 14:35 - 2013-01-13 14:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-01-17 14:35 - 2013-01-13 13:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-01-17 14:35 - 2013-01-13 13:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-01-17 14:35 - 2013-01-13 12:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-01-17 14:35 - 2013-01-13 12:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-01-17 14:27 - 2014-01-17 14:29 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 14:27 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-17 14:25 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-17 14:25 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-01-17 14:25 - 2013-08-01 21:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-01-17 14:25 - 2013-08-01 21:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-01-17 14:25 - 2013-08-01 21:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-01-17 14:25 - 2013-08-01 20:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-01-17 14:25 - 2013-08-01 19:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-01-17 14:25 - 2013-08-01 19:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-01-17 14:25 - 2013-08-01 19:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-01-17 14:25 - 2012-10-09 13:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-01-17 14:25 - 2012-10-09 13:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-01-17 14:25 - 2012-10-09 12:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-01-17 14:25 - 2012-10-09 12:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-01-17 14:24 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-17 14:24 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-01-17 14:24 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-17 14:24 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-17 14:24 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-17 14:24 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-17 14:24 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-17 14:24 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-17 14:24 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-01-17 14:24 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-01-17 14:24 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-01-17 14:24 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-01-17 14:24 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-01-17 14:24 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-01-17 14:24 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-01-17 14:24 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-01-17 14:24 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-01-17 14:24 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-01-17 14:24 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-01-17 14:24 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-01-17 14:24 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-01-17 14:24 - 2013-07-12 05:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-01-17 14:24 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-01-17 14:24 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-01-17 14:24 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-01-17 14:24 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-01-17 14:24 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-01-17 14:24 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-01-17 14:24 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-01-17 14:24 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-01-17 14:24 - 2013-04-25 18:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-01-17 14:24 - 2013-03-31 17:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-01-17 14:24 - 2013-02-27 01:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-01-17 14:24 - 2013-02-27 00:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-01-17 14:24 - 2012-01-04 05:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-01-17 14:24 - 2012-01-04 03:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-01-17 14:24 - 2011-05-04 00:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-01-17 14:24 - 2011-05-04 00:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-01-17 14:24 - 2011-05-04 00:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-01-17 14:24 - 2011-05-04 00:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-01-17 14:24 - 2011-05-04 00:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-01-17 14:24 - 2011-05-03 23:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-01-17 14:24 - 2011-05-03 23:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-01-17 14:24 - 2011-05-03 23:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-01-17 14:24 - 2011-05-03 23:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-01-17 14:24 - 2011-05-03 23:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-01-17 14:23 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-17 14:23 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-17 14:23 - 2013-11-11 21:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-17 14:23 - 2013-11-11 21:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-17 14:23 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-17 14:23 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-17 14:23 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-17 14:23 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-17 14:23 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-01-17 14:23 - 2013-08-04 21:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-01-17 14:23 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-01-17 14:23 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-01-17 14:23 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-01-17 14:23 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-01-17 14:23 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-01-17 14:23 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-01-17 14:23 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-01-17 14:23 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-01-17 14:23 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-01-17 14:23 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-01-17 14:23 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-01-17 14:23 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-01-17 14:23 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-01-17 14:23 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-01-17 14:23 - 2013-04-01 01:03 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_AuthenticAMD.dll
2014-01-17 14:23 - 2013-03-19 00:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-01-17 14:23 - 2013-03-19 00:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-01-17 14:23 - 2012-12-07 08:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-01-17 14:23 - 2012-12-07 08:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-01-17 14:23 - 2012-12-07 07:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-01-17 14:23 - 2012-12-07 07:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll

lrwynn · Jan 25, 2014

2014-01-17 14:23 - 2012-12-07 06:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-01-17 14:23 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-01-17 14:23 - 2012-12-07 06:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-01-17 14:23 - 2012-12-07 05:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-01-17 14:23 - 2012-10-03 12:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-01-17 14:23 - 2012-10-03 12:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-01-17 14:23 - 2012-10-03 12:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-01-17 14:23 - 2012-10-03 11:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-01-17 14:23 - 2012-10-03 11:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-01-17 14:23 - 2012-08-22 13:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-01-17 14:23 - 2012-07-04 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-01-17 14:23 - 2012-05-04 06:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-01-17 14:23 - 2012-05-04 04:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-01-17 14:23 - 2012-01-13 02:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-01-17 14:23 - 2011-12-30 01:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-01-17 14:23 - 2011-12-30 00:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-01-17 14:23 - 2011-06-16 00:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-01-17 14:23 - 2011-06-15 23:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-01-17 14:23 - 2011-04-09 01:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-01-17 14:23 - 2011-04-09 00:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-01-17 14:22 - 2013-08-28 21:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-01-17 14:22 - 2013-08-28 21:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-01-17 14:22 - 2013-08-28 21:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-01-17 14:22 - 2013-08-28 21:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-01-17 14:22 - 2013-08-28 21:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-01-17 14:22 - 2013-08-28 20:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-01-17 14:22 - 2013-08-28 20:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-01-17 14:22 - 2013-08-28 20:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-01-17 14:22 - 2013-08-28 20:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-01-17 14:22 - 2013-08-28 20:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-01-17 14:22 - 2013-08-28 20:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-01-17 14:22 - 2013-08-28 19:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-01-17 14:22 - 2013-08-28 19:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-01-17 14:22 - 2013-08-28 19:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-01-17 14:22 - 2013-08-28 19:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-01-17 14:22 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-01-17 14:22 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-01-17 14:22 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-01-17 14:22 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-01-17 14:22 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-01-17 14:22 - 2012-11-28 17:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-01-17 14:22 - 2012-11-28 17:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-01-17 14:22 - 2012-11-28 17:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-01-17 14:22 - 2012-05-01 00:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-01-17 14:22 - 2011-04-22 17:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-01-17 14:22 - 2011-03-11 01:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-01-17 14:22 - 2011-03-11 01:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-01-17 14:22 - 2011-03-11 01:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-01-17 14:22 - 2011-03-11 00:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-01-17 14:22 - 2011-03-11 00:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-01-17 14:22 - 2011-03-10 23:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-01-17 14:15 - 2012-11-30 00:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-01-17 14:15 - 2012-11-30 00:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-01-17 14:15 - 2012-11-30 00:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-01-17 14:15 - 2012-11-29 18:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2014-01-17 14:15 - 2012-11-29 18:15 - 00420064 _____ C:\Windows\system32\locale.nls
2014-01-17 14:14 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-01-17 14:14 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-01-17 14:14 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-17 14:14 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-17 14:14 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-17 14:14 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-17 14:14 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-17 14:13 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-17 14:13 - 2013-11-26 05:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-17 14:13 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-17 14:13 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-01-17 14:13 - 2013-09-07 21:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-17 14:13 - 2013-07-25 21:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-01-17 14:13 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-01-17 14:13 - 2013-07-25 20:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-01-17 14:13 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-01-17 14:13 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-17 14:13 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-17 14:13 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-01-17 14:13 - 2013-06-04 01:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-01-17 14:13 - 2013-06-03 23:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-01-17 14:13 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-01-17 14:13 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-01-17 14:13 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-01-17 14:13 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-01-17 14:13 - 2013-05-10 00:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-01-17 14:13 - 2013-05-09 22:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-01-17 14:13 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-01-17 14:13 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-01-17 14:13 - 2013-01-24 01:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-01-17 14:13 - 2012-11-22 22:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-01-17 14:13 - 2012-11-22 00:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-01-17 14:13 - 2012-11-21 23:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-01-17 14:13 - 2012-08-21 16:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-01-17 14:13 - 2012-04-07 07:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-01-17 14:13 - 2012-04-07 06:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-01-17 14:13 - 2011-02-18 05:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-01-17 14:13 - 2011-02-18 00:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-01-17 14:13 - 2011-02-05 12:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-01-17 14:13 - 2011-02-05 12:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-01-17 14:13 - 2011-02-05 12:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-01-17 14:13 - 2011-02-05 12:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-01-17 14:13 - 2011-02-05 12:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-17 14:13 - 2011-02-05 12:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-01-17 14:13 - 2011-02-05 12:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-17 14:11 - 2012-05-05 03:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-01-17 14:11 - 2012-05-05 02:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-01-17 14:04 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-01-17 14:04 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-17 14:04 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-01-17 14:04 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-01-17 14:04 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-01-17 14:04 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-17 14:03 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-17 14:03 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-17 14:03 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-17 14:03 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-17 14:03 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-17 14:03 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-17 14:03 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-17 14:03 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-17 14:03 - 2013-08-01 07:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-01-17 13:28 - 2014-01-17 13:28 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-01-17 13:24 - 2014-01-17 13:24 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-01-17 13:20 - 2014-01-17 13:20 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-17 13:06 - 2014-01-17 13:06 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-01-17 12:52 - 2014-01-17 12:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-01-17 12:51 - 2014-01-17 12:51 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-01-17 12:42 - 2014-01-17 12:42 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-01-17 12:41 - 2014-01-17 12:41 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-01-17 12:40 - 2014-01-17 12:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-17 12:39 - 2014-01-17 12:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-17 12:37 - 2014-01-17 12:37 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-17 12:37 - 2014-01-17 12:37 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-17 12:25 - 2012-08-23 09:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-01-17 12:25 - 2012-08-23 09:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-01-17 12:25 - 2012-08-23 09:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-01-17 12:25 - 2012-08-23 09:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-01-17 12:25 - 2012-08-23 08:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-01-17 12:25 - 2012-08-23 08:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll

lrwynn · Jan 25, 2014

2014-01-17 12:25 - 2012-08-23 08:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-17 12:25 - 2012-08-23 08:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-17 12:25 - 2012-08-23 08:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-17 12:25 - 2012-08-23 08:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-01-17 12:25 - 2012-08-23 08:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-01-17 12:25 - 2012-08-23 08:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-01-17 12:25 - 2012-08-23 08:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-17 12:25 - 2012-08-23 07:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-17 12:25 - 2012-08-23 06:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-17 12:25 - 2012-08-23 06:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-01-17 12:25 - 2012-08-23 06:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-01-17 12:25 - 2012-08-23 06:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-01-17 12:25 - 2012-08-23 05:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-17 12:25 - 2012-08-23 05:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-01-17 12:25 - 2012-08-23 05:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-01-17 12:25 - 2012-08-23 05:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-01-17 12:25 - 2012-08-23 04:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-01-17 12:25 - 2012-08-23 03:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-17 12:25 - 2012-08-23 03:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-17 12:11 - 2012-08-21 09:59 - 00001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrsmgr.dll
2014-01-17 12:11 - 2012-08-21 09:20 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2014-01-17 12:11 - 2012-08-21 09:20 - 00001536 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2014-01-17 12:11 - 2012-08-21 09:14 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2014-01-17 12:11 - 2012-08-21 09:08 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2014-01-17 12:11 - 2012-08-21 09:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2014-01-17 12:11 - 2012-08-21 08:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2014-01-17 12:11 - 2012-08-21 08:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2014-01-17 12:11 - 2012-08-21 08:56 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2014-01-17 12:11 - 2012-08-21 08:49 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2014-01-17 12:11 - 2012-08-21 08:45 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2014-01-17 12:11 - 2012-08-21 08:40 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2014-01-17 12:11 - 2012-08-21 08:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2014-01-17 12:11 - 2012-08-21 08:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2014-01-17 12:11 - 2012-08-21 08:26 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2014-01-17 12:11 - 2012-08-21 08:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2014-01-17 12:11 - 2012-08-21 08:04 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2014-01-17 12:11 - 2012-08-21 07:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2014-01-17 12:11 - 2012-08-21 07:37 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2014-01-17 12:11 - 2012-08-21 07:35 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2014-01-17 12:11 - 2012-07-23 13:17 - 00004675 _____ C:\Windows\system32\wsmanconfig_schema.xml
2014-01-17 12:11 - 2012-07-23 13:16 - 00204105 _____ C:\Windows\SysWOW64\winrm.vbs
2014-01-17 12:11 - 2012-07-23 13:16 - 00004675 _____ C:\Windows\SysWOW64\wsmanconfig_schema.xml
2014-01-17 12:10 - 2012-08-21 09:56 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2014-01-17 12:10 - 2012-08-21 09:29 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2014-01-17 12:10 - 2012-08-21 09:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2014-01-17 12:10 - 2012-08-21 09:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2014-01-17 12:10 - 2012-08-21 09:18 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2014-01-17 12:10 - 2012-08-21 08:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2014-01-17 12:10 - 2012-08-21 08:44 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2014-01-17 12:10 - 2012-08-21 08:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2014-01-17 12:10 - 2012-08-21 08:36 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2014-01-17 12:10 - 2012-08-21 08:34 - 00382464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn2.dll
2014-01-17 12:10 - 2012-08-21 08:33 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2014-01-17 12:10 - 2012-08-21 08:32 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2014-01-17 12:10 - 2012-08-21 08:29 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2014-01-17 12:10 - 2012-08-21 08:27 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2014-01-17 12:10 - 2012-08-21 08:17 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2014-01-17 12:10 - 2012-08-21 08:16 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2014-01-17 12:10 - 2012-08-21 08:09 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2014-01-17 12:10 - 2012-08-21 08:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn2.dll
2014-01-17 12:10 - 2012-08-21 08:07 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2014-01-17 12:10 - 2012-08-21 08:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2014-01-17 12:10 - 2012-08-21 08:03 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2014-01-17 12:10 - 2012-08-21 08:03 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2014-01-17 12:10 - 2012-08-21 08:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-01-17 12:10 - 2012-08-21 08:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2014-01-17 12:10 - 2012-08-21 07:56 - 00526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmGCDeps.dll
2014-01-17 12:10 - 2012-08-21 07:52 - 02039296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-01-17 12:10 - 2012-08-21 07:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2014-01-17 12:10 - 2012-08-21 07:50 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-01-17 12:10 - 2012-08-21 07:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2014-01-17 12:10 - 2012-08-21 07:35 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-01-17 12:10 - 2012-08-21 07:34 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-01-17 12:10 - 2012-08-21 07:30 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2014-01-17 12:10 - 2012-08-21 07:26 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\WsmGCDeps.dll
2014-01-17 12:10 - 2012-08-21 07:24 - 02832384 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-01-17 12:10 - 2012-08-21 07:22 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2014-01-17 12:10 - 2012-08-21 07:22 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-01-17 12:10 - 2012-08-21 07:04 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2014-01-17 12:10 - 2012-08-21 06:26 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-01-17 12:10 - 2012-08-21 06:05 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-01-17 12:10 - 2012-07-23 13:17 - 00204105 _____ C:\Windows\system32\winrm.vbs
2014-01-17 12:10 - 2012-07-23 13:17 - 00004148 _____ C:\Windows\system32\psmodulediscoveryprovider.mof
2014-01-17 12:02 - 2014-01-17 16:24 - 00774028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-17 11:57 - 2014-01-20 11:35 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-17 11:57 - 2014-01-20 11:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-17 11:56 - 2014-01-17 11:56 - 00010009 _____ C:\Windows\DirectX.log
2014-01-17 11:56 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-01-17 11:56 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-01-17 11:56 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-01-17 11:56 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-01-17 11:56 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-01-17 11:56 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-01-17 11:56 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-01-17 11:56 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-01-17 11:56 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-01-17 11:56 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-01-17 11:56 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-01-17 11:56 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-01-17 11:56 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-01-17 11:56 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-01-17 11:56 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-01-17 11:56 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-01-17 11:56 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-01-17 11:56 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-01-17 11:56 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-01-17 11:56 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-01-17 11:56 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-01-17 11:56 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-01-17 11:56 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-01-17 11:56 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-01-17 11:56 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-01-17 11:56 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-01-17 11:56 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-01-17 11:56 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-01-17 11:56 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-01-17 11:56 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-01-17 11:56 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-01-17 11:56 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-01-17 11:56 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-01-17 11:56 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-01-17 11:56 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-01-17 11:56 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-01-17 11:56 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-01-17 11:56 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-01-17 11:56 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-01-17 11:56 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-01-17 11:56 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-01-17 11:56 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-01-17 11:56 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-01-17 11:56 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-01-17 11:56 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-01-17 11:56 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-01-17 11:56 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-01-17 11:56 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-01-17 11:56 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-01-17 11:56 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-01-17 11:56 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-01-17 11:56 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-01-17 11:56 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-01-17 11:56 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-01-17 11:56 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-01-17 11:56 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-01-17 11:56 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-01-17 11:56 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-01-17 11:56 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-01-17 11:56 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-01-17 11:56 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-01-17 11:56 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-01-17 11:56 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-01-17 11:56 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-01-17 11:56 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-01-17 11:56 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-01-17 11:56 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-01-17 11:56 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-01-17 11:56 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-01-17 11:56 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-01-17 11:56 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-01-17 11:56 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-01-17 11:56 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-01-17 11:56 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-01-17 11:56 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-01-17 11:56 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-01-17 11:56 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-01-17 11:56 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-01-17 11:56 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-01-17 11:56 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-01-17 11:56 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-01-17 11:56 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-01-17 11:52 - 2014-01-17 11:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-17 11:46 - 2012-02-17 01:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-01-17 11:46 - 2012-02-17 00:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-01-17 11:46 - 2012-02-16 23:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-01-17 11:39 - 2014-01-17 11:43 - 00003573 _____ C:\Windows\IE9_main.log
2014-01-17 11:38 - 2014-01-17 13:55 - 00022679 _____ C:\Windows\wsusofflineupdate.log
2014-01-17 11:38 - 2012-06-02 17:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-01-17 11:38 - 2012-06-02 17:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-01-17 11:38 - 2012-06-02 17:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-01-17 11:38 - 2012-06-02 17:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-01-17 11:37 - 2012-06-02 17:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-01-17 11:37 - 2012-06-02 17:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-01-17 11:37 - 2012-06-02 17:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-01-17 11:37 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-01-17 11:37 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-01-17 11:36 - 2014-01-17 11:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\DRPSu
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\7-Zip
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-17 11:33 - 2012-07-28 17:33 - 00039656 _____ C:\Windows\system32\OEMLOGO.bmp
2014-01-17 11:33 - 2011-03-23 09:20 - 00077936 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\L1C62x64.sys
2014-01-17 11:32 - 2010-11-05 11:50 - 02716768 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwx.sys
2014-01-17 11:03 - 2014-01-23 18:12 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-17 11:03 - 2014-01-17 17:12 - 00001417 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-17 11:03 - 2014-01-17 16:54 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-17 11:03 - 2014-01-17 11:03 - 00000020 ___SH C:\Users\Chris\ntuser.ini
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris\AppData\Local\VirtualStore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris
2014-01-17 11:03 - 2009-07-13 23:54 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-17 11:03 - 2009-07-13 23:49 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-17 11:02 - 2014-01-17 11:02 - 00000000 __SHD C:\Recovery
2014-01-16 21:14 - 2014-01-25 23:06 - 01762780 _____ C:\Windows\WindowsUpdate.log
2014-01-16 21:14 - 2014-01-16 21:14 - 00001355 _____ C:\Windows\TSSysprep.log
2014-01-16 21:13 - 2014-01-16 21:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-16 21:11 - 2014-01-17 11:02 - 00000000 ____D C:\Windows\Panther

lrwynn · Jan 25, 2014

==================== One Month Modified Files and Folders =======

2014-01-26 02:14 - 2014-01-26 02:15 - 02078208 _____ (Farbar) C:\Users\Chris\Desktop\FRST64.exe
2014-01-25 23:11 - 2014-01-25 23:11 - 00096784 _____ (CACE Technologies) C:\Windows\SysWOW64\WPRO_41_2001woem.tmp
2014-01-25 23:11 - 2014-01-25 23:11 - 00035344 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-25 23:11 - 2014-01-25 21:17 - 00008260 _____ C:\Users\Chris\Desktop\FRST.txt
2014-01-25 23:09 - 2014-01-25 21:17 - 00000000 ____D C:\FRST
2014-01-25 23:09 - 2014-01-23 17:33 - 00000000 ____D C:\Program Files (x86)\PRTG Network Monitor
2014-01-25 23:09 - 2014-01-17 17:55 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-25 23:09 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 23:09 - 2009-07-13 23:51 - 00028194 _____ C:\Windows\setupact.log
2014-01-25 23:08 - 2010-11-20 22:47 - 00020190 _____ C:\Windows\PFRO.log
2014-01-25 23:06 - 2014-01-16 21:14 - 01762780 _____ C:\Windows\WindowsUpdate.log
2014-01-25 22:08 - 2014-01-17 17:55 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-25 21:20 - 2014-01-25 21:20 - 00017959 _____ C:\Users\Chris\Desktop\Addition.txt
2014-01-25 21:18 - 2009-07-14 00:13 - 00781782 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-25 11:57 - 2009-07-13 23:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-25 11:57 - 2009-07-13 23:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-25 11:00 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-24 13:57 - 2014-01-24 13:57 - 00014195 _____ C:\Users\Chris\Desktop\tscproof12414.odt
2014-01-24 09:23 - 2014-01-24 09:22 - 18876757 _____ C:\Users\Chris\Downloads\Beelzebaal - Nachten bei Satan II.zip
2014-01-23 18:12 - 2014-01-17 11:03 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-23 18:11 - 2014-01-23 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2014-01-23 18:09 - 2014-01-23 18:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 18:09 - 2014-01-23 18:09 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 17:50 - 2014-01-23 17:50 - 00000000 ____D C:\Users\Chris\AppData\Local\Macromedia
2014-01-23 17:48 - 2014-01-23 17:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ugtorohy
2014-01-23 17:43 - 2014-01-23 17:43 - 00001170 _____ C:\Users\Public\Desktop\PRTG Enterprise Console.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00001135 _____ C:\Users\Public\Desktop\PRTG Network Monitor.lnk
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\usr
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Paessler
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-23 17:28 - 2014-01-23 17:28 - 00000000 ____D C:\Users\Chris\Downloads\prtg
2014-01-23 17:24 - 2014-01-23 17:17 - 128420023 _____ C:\Users\Chris\Downloads\prtg.zip
2014-01-23 17:21 - 2014-01-23 17:23 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 17:21 - 2014-01-23 17:22 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 17:18 - 2014-01-23 17:18 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:16 - 2014-01-23 17:18 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 17:16 - 2014-01-23 17:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 16:52 - 2014-01-23 16:45 - 128420023 _____ C:\Users\Chris\Downloads\Unconfirmed 648852.crdownload
2014-01-23 16:31 - 2014-01-23 16:30 - 30796712 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-x64.exe
2014-01-23 16:31 - 2014-01-23 16:30 - 29141928 _____ (Oracle Corporation) C:\Users\Chris\Downloads\jre-7u51-windows-i586.exe
2014-01-23 16:06 - 2014-01-23 16:06 - 00503393 _____ C:\Users\Chris\Downloads\NetMeterEvo_200.zip
2014-01-23 15:58 - 2014-01-23 15:58 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 ____D C:\Program Files\CCleaner
2014-01-23 15:56 - 2014-01-23 15:54 - 04721920 _____ (Piriform Ltd) C:\Users\Chris\Downloads\ccsetup410.exe
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Urpookm
2014-01-23 15:52 - 2014-01-23 15:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Toytgey
2014-01-23 15:51 - 2014-01-23 15:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ybzecaz
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Ysabday
2014-01-23 15:50 - 2014-01-23 15:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Tyasop
2014-01-23 15:47 - 2014-01-23 15:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Opsuehu
2014-01-23 12:22 - 2014-01-23 12:21 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-23 12:22 - 2014-01-23 12:20 - 24859352 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\Windows-KB890830-x64-V5.8.exe
2014-01-23 12:21 - 2014-01-23 12:21 - 00000000 ___HD C:\Windows\msdownld.tmp
2014-01-23 12:20 - 2014-01-23 12:20 - 00292184 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\dxwebsetup.exe
2014-01-23 12:08 - 2014-01-23 12:07 - 00000000 ____D C:\Program Files\WhoCrashed
2014-01-23 12:07 - 2014-01-23 12:06 - 02657280 _____ (Resplendence Software Projects Sp. ) C:\Users\Chris\Downloads\whocrashedSetup.exe
2014-01-22 19:12 - 2014-01-22 19:12 - 00373520 _____ C:\Windows\Minidump\012214-36441-01.dmp
2014-01-22 19:12 - 2014-01-22 10:41 - 00000000 ____D C:\Windows\Minidump
2014-01-22 19:11 - 2014-01-22 10:41 - 427893522 _____ C:\Windows\MEMORY.DMP
2014-01-22 18:42 - 2014-01-22 18:41 - 01046528 _____ C:\Users\Chris\Downloads\MicrosoftFixit50848.msi
2014-01-22 18:38 - 2014-01-22 18:37 - 00372448 _____ C:\Windows\Minidump\012214-40887-01.dmp
2014-01-22 18:33 - 2014-01-22 18:33 - 01312312 _____ C:\Windows\Minidump\012214-35131-01.dmp
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Mozilla
2014-01-22 15:11 - 2014-01-22 15:11 - 00000000 ____D C:\Users\Chris\AppData\Local\Mozilla
2014-01-22 10:56 - 2014-01-22 10:56 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2014-01-22 10:47 - 2014-01-22 10:46 - 00640544 _____ C:\Windows\Minidump\012214-48157-01.dmp
2014-01-22 10:41 - 2014-01-22 10:41 - 01700912 _____ C:\Windows\Minidump\012214-35833-01.dmp
2014-01-22 10:39 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\LiveKernelReports
2014-01-22 10:22 - 2014-01-22 10:22 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Macromedia
2014-01-22 10:14 - 2014-01-22 10:14 - 00012326 _____ C:\Users\Chris\AppData\Local\ucvqgdfi
2014-01-22 10:13 - 2014-01-22 10:13 - 00067992 _____ C:\Users\Chris\AppData\Local\ffbmehso
2014-01-22 10:12 - 2014-01-22 10:12 - 00000000 _____ C:\Users\Chris\AppData\Roaming\SharedSettings.ccs
2014-01-22 09:28 - 2014-01-22 09:28 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-21 22:45 - 2014-01-21 22:45 - 00000000 ____D C:\Users\Chris\AppData\Local\Microsoft Games
2014-01-21 22:44 - 2014-01-21 22:44 - 00000000 ____D C:\Windows\System32\Tasks\Games
2014-01-21 15:34 - 2014-01-21 15:34 - 00000000 ____D C:\Users\Chris\AppData\Roaming\LibreOffice
2014-01-21 15:29 - 2014-01-21 15:28 - 00000000 ____D C:\Users\Chris\Desktop\poetry
2014-01-20 20:26 - 2014-01-20 20:26 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2014-01-20 20:26 - 2014-01-20 20:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2014-01-20 20:18 - 2014-01-20 20:17 - 13670584 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\mseinstall.exe
2014-01-20 18:18 - 2014-01-20 18:16 - 00000000 ____D C:\Program Files (x86)\LastPass
2014-01-20 18:16 - 2014-01-20 18:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2014-01-20 18:15 - 2014-01-20 18:14 - 13024768 _____ (LastPass) C:\Users\Chris\Downloads\lastpass_x64.exe
2014-01-20 17:36 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Apple Computer
2014-01-20 17:35 - 2014-01-20 17:35 - 00071616 _____ C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 16:19 - 2014-01-20 16:19 - 00000000 ____D C:\Users\Chris\Desktop\chris
2014-01-20 11:37 - 2014-01-17 17:54 - 00000000 ____D C:\Users\Chris\AppData\Local\Google
2014-01-20 11:36 - 2009-07-13 23:45 - 00330824 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-20 11:35 - 2014-01-17 11:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-20 11:35 - 2014-01-17 11:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-19 02:33 - 2010-11-20 22:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 11:48 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2014-01-18 11:22 - 2014-01-18 11:22 - 00015748 _____ C:\Users\Chris\Documents\cc_20140118_112217.reg
2014-01-18 11:22 - 2014-01-18 11:22 - 00004032 _____ C:\Users\Chris\Documents\cc_20140118_112239.reg
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2014-01-17 18:10 - 2014-01-17 18:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-17 18:09 - 2014-01-17 18:09 - 00001500 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2014-01-17 18:09 - 2014-01-17 18:08 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2014-01-17 18:08 - 2014-01-17 18:08 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple Computer
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iTunes
2014-01-17 18:07 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-17 18:06 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files\iPod
2014-01-17 18:06 - 2014-01-17 18:05 - 00000000 ____D C:\ProgramData\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-17 18:05 - 2014-01-17 18:05 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-17 18:04 - 2014-01-17 18:04 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2014-01-17 18:04 - 2014-01-17 18:03 - 00000000 ____D C:\ProgramData\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-17 18:03 - 2014-01-17 18:03 - 00000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 18:03 - 2014-01-17 17:55 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-17 18:03 - 2014-01-17 17:55 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-17 18:01 - 2014-01-17 18:01 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\ProgramData\Sun
2014-01-17 18:00 - 2014-01-17 18:00 - 00000000 ____D C:\Program Files\Java
2014-01-17 17:59 - 2014-01-17 17:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 17:55 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-17 17:54 - 2014-01-17 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-17 17:12 - 2014-01-17 11:03 - 00001417 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-17 17:10 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-17 17:08 - 2014-01-17 17:03 - 00007582 _____ C:\Windows\IE11_main.log
2014-01-17 17:05 - 2014-01-17 17:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-17 17:05 - 2014-01-17 17:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-17 17:05 - 2014-01-17 17:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-17 17:05 - 2014-01-17 17:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-17 17:05 - 2014-01-17 17:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-17 17:05 - 2014-01-17 17:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-17 16:54 - 2014-01-17 16:54 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Adobe
2014-01-17 16:54 - 2014-01-17 11:03 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-17 16:44 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-17 16:44 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-17 16:43 - 2010-11-21 02:17 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\zh-HK
2014-01-17 16:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\tr-TR
2014-01-17 16:24 - 2014-01-17 12:02 - 00774028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-17 15:28 - 2014-01-17 15:19 - 00008326 _____ C:\Windows\IE10_main.log
2014-01-17 14:29 - 2014-01-17 14:27 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 13:55 - 2014-01-17 11:38 - 00022679 _____ C:\Windows\wsusofflineupdate.log
2014-01-17 13:43 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-17 13:35 - 2014-01-17 13:35 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-17 13:35 - 2014-01-17 13:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-01-17 13:28 - 2014-01-17 13:28 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-01-17 13:24 - 2014-01-17 13:24 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-01-17 13:20 - 2014-01-17 13:20 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-17 13:06 - 2014-01-17 13:06 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-01-17 13:06 - 2014-01-17 13:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-01-17 13:01 - 2014-01-17 13:01 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-01-17 13:00 - 2014-01-17 13:00 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-17 12:56 - 2014-01-17 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-01-17 12:55 - 2014-01-17 12:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-01-17 12:53 - 2014-01-17 12:53 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-01-17 12:52 - 2014-01-17 12:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-17 12:52 - 2014-01-17 12:52 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-01-17 12:51 - 2014-01-17 12:51 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-01-17 12:47 - 2014-01-17 12:47 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-01-17 12:46 - 2014-01-17 12:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-01-17 12:45 - 2014-01-17 12:45 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-01-17 12:44 - 2014-01-17 12:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-01-17 12:43 - 2014-01-17 12:43 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-01-17 12:42 - 2014-01-17 12:42 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-01-17 12:42 - 2014-01-17 12:42 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-01-17 12:41 - 2014-01-17 12:41 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-01-17 12:41 - 2014-01-17 12:41 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-01-17 12:40 - 2014-01-17 12:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-17 12:40 - 2014-01-17 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-01-17 12:40 - 2014-01-17 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-17 12:39 - 2014-01-17 12:39 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-17 12:39 - 2014-01-17 12:39 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-17 12:39 - 2014-01-17 12:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-17 12:38 - 2014-01-17 12:38 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-17 12:38 - 2014-01-17 12:38 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-17 12:37 - 2014-01-17 12:37 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-17 12:37 - 2014-01-17 12:37 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-17 12:37 - 2014-01-17 12:37 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-17 11:56 - 2014-01-17 11:56 - 00010009 _____ C:\Windows\DirectX.log
2014-01-17 11:52 - 2014-01-17 11:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-17 11:43 - 2014-01-17 11:39 - 00003573 _____ C:\Windows\IE9_main.log
2014-01-17 11:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\servicing
2014-01-17 11:36 - 2014-01-17 11:36 - 00000000 ____D C:\Users\Chris\AppData\Roaming\DRPSu
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2014-01-17 11:34 - 2014-01-17 11:34 - 00000000 ____D C:\Program Files (x86)\7-Zip
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-17 11:33 - 2014-01-17 11:33 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-17 11:32 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\restore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000020 ___SH C:\Users\Chris\ntuser.ini
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris\AppData\Local\VirtualStore
2014-01-17 11:03 - 2014-01-17 11:03 - 00000000 ____D C:\Users\Chris
2014-01-17 11:02 - 2014-01-17 11:02 - 00000000 __SHD C:\Recovery
2014-01-17 11:02 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\Panther
2014-01-17 11:02 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Recovery
2014-01-16 21:14 - 2014-01-16 21:14 - 00001355 _____ C:\Windows\TSSysprep.log
2014-01-16 21:14 - 2009-07-13 23:46 - 00002790 _____ C:\Windows\DtcInstall.log
2014-01-16 21:14 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep
2014-01-16 21:13 - 2014-01-16 21:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-16 21:11 - 2009-07-14 00:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2014-01-16 21:11 - 2009-07-14 00:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2014-01-06 16:20 - 2014-01-17 14:27 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-20 09:05

==================== End Of Log ============================

Broni · Jan 25, 2014

It looks much better but we still have some whacky folders there.

Delete existing "fixlist.txt" file and....

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

No need for new scan.

lrwynn · Jan 25, 2014

Hope this looks better ...

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-01-2014 01
Ran by Chris at 2014-01-25 23:30:37 Run:2
Running from C:\Users\Chris\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************

*****************

==== End of Fixlog ====

Broni · Jan 25, 2014

Something went wrong.
Delete your "fixlist.txt" file and download fresh one (attached).
Make sure that FRST and "fixlist.txt" are both on your Desktop.
Run FRST, click "Fix" button.

lrwynn · Jan 25, 2014

Looking at the desktop, I cannot see either of the 2 versions of fixlist.txt (but FRST64 is visible on the desktop.)

After I ran the fix the first time, the fixlist.txt seemed to disappear from the desktop. Since I did not see it, I considered it deleted.

Then I placed the 2nd fixlist.txt on the desktop (no alerts popped up about duplicate file names), ran the fix, and the 2nd seemed to disappear afterwards.

Is there some reason the fixlist.txt files are not visible? I did not delete them.

Broni · Jan 25, 2014

Let's leave this issue for now.

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

Never rename Combofix unless instructed.
Close any open browsers.
Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
Close any open browsers.
WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
If the connection is not there use restore point you created prior to running Combofix.
Double click on combofix.exe & follow the prompts.

NOTE1. If Combofix asks you to install Recovery Console, please allow it.
NOTE 2. If Combofix asks you to update the program, always do so.

When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: https://www.techspot.com/downloads/5514-appremover.html
We can reinstall it when we're done with CF.
**Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.

Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Restart computer in safe mode

Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7 right-click on it and choose Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
If not, delete the file, then download and use the one provided in Link 2.
Do not reboot until instructed.
If the tool does not run from any of the links provided, please let me know.

When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.

Inactive No Internet. Infected 1 day after clean install of windows. Malwarebyes isn't cutting it.

Posts: 25 +0

Posts: 56,041 +516

Posts: 25 +0

Attachments

Posts: 56,041 +516

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 56,041 +516

Posts: 56,041 +516

Attachments

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 25 +0

Posts: 56,041 +516

Attachments

Posts: 25 +0

Posts: 56,041 +516

Attachments

Posts: 25 +0

Posts: 56,041 +516

Similar threads