Possible rootkit

buddy3 · February 21, 2014

First, I apologize, DDS is not running for me. It says that it is not meant to run in compatibility mode. I have Windows 8.1, so it may be an issue there. I did run a Malwarebytes Anti-Malware quick scan, which found nothing.

The reason I am suspicious is because I was having a lot of blue screens on my new PC and previously sought help. I provided files for the blue screen to an assistant who immediately insisted that I have a rootkit virus and that I should run Killdisk. The rootkit that was diagnosed was: "rikvm_38F51D56 rikvm_38F51D56.sys Mon May 14 03:49:40 2012 (4FB0B914)" I did a little research and it seems to be related to the CyberLink DVD player that came on my computer.

I did some unrelated maintenance and haven't experienced a blue screen in a few days, but even now the assistant suggests that I run Killdisk. I am looking for a second opinion. Also, If there is an alternative to DDS that I should run, please let me know. Thanks in advance!

kevinf80 · February 21, 2014

Hello and

P2P/Piracy Warning:

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

DDS will not run on Windows 8.1 due to compatibility issues, continue with the following:

Run Malwarebytes, Open > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick scan

Make sure that everything is checked, and click Remove Selected on any found items.

Post the produced log..

Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Next,

Please download RogueKiller from here:

http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe'>http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe <- 32 bit version

http://www.sur-la-toile.com/RogueKiller/RogueKillerX64.exe'>http://www.sur-la-toile.com/RogueKiller/RogueKillerX64.exe <- 64 bit version

Make sure to get the correct version for your system.
Quit all running programs
Please disconnect any USB or external drives from the computer before you run this scan!
For Vista/Seven, right click -> run as administrator, for XP simply run RogueKiller.exe
Wait until Prescan has finished...
The following EULA will appear, please select accept
Ensure MBR scan, Check faked and AntiRootkit are checked
Select Scan
When the scan completes select Report, copy and paste that to your reply.
The log should be found in RKreport[?].txt on your Desktop
Exit/Close RogueKiller

Let me see those logs..

Kevin..

buddy3 · February 21, 2014

Let me know if I'm not doing this right:

Malwarebytes Anti-Malware (Trial) 1.75.0.1300

www.malwarebytes.org

Database version: v2014.02.21.05

Windows 8 x64 NTFS

Internet Explorer 11.0.9600.16518

MSI [administrator]

Protection: Enabled

2/21/2014 8:33:08 PM

mbam-log-2014-02-21 (20-33-08).txt

Scan type: Quick scan

Scan options disabled: P2P

Objects scanned: 216049

Time elapsed: 1 minute(s), 27 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

kevinf80 · February 21, 2014

You`re doing fine, please continue..

buddy3 · February 21, 2014

RogueKiller V8.8.8 _x64_ [Feb 19 2014] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/softwares/roguekiller/

Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version

Started in : Normal mode

User : [Admin rights]

Mode : Scan -- Date : 02/21/2014 20:43:18

| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤

[sUSP PATH] DellSystemDetect.exe -- C:\Users\Kastle\AppData\Local\Apps\2.0\7HA4O3VK.1BK\HZWXBW24.KR1\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe [7] -> KILLED [TermProc]

¤¤¤ Registry Entries : 2 ¤¤¤

[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) Intel Raid 0 Volume +++++

--- User ---

[MBR] 89f5deccf6ab6147ce64417d52f9576f

[bSP] c48c27b208f9537954f3fd9f93fe9308 : Empty MBR Code

Partition table:

0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo

User = LL1 ... OK!

Error reading LL2 MBR! ([0x250] {Data Not Accepted} The TDI client could not handle the data received during an indication. )

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ SCSI) WDC WD10JPVX-22JC3T0 +++++

--- User ---

[MBR] 2e6ff7c36c8c874365225f71666e624b

[bSP] 8597c7ca46eff280ff985d01d1a9ea40 : MBR Code unknown

Partition table:

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[0]_S_02212014_204318.txt >>

buddy3 · February 21, 2014

sorry that's out of order. one second missed the second step

buddy3 · February 21, 2014

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-02-2014

Ran by (administrator) on MSI on 21-02-2014 20:46:45

Running from C:\Users\Kastle\Desktop

Windows 8.1 (X64) OS Language: English(US)

Internet Explorer Version 11

Boot Mode: Normal

The only official download link for FRST:

Download link for 32-Bit version:

Download link for 64-Bit Version:

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(BlueStack Systems, Inc.) c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe

(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe

(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe

(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe

(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe

(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(ReviverSoft LLC) C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Microsoft Corporation) C:\Windows\System32\skydrive.exe

(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe

() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe

(MSI) C:\Program Files (x86)\SCM\SCM.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe

(Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\KLM\KLM.exe

(Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe

(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe

(Microsoft Corporation) C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe

(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe

(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe

(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9600.16422_x64__8wekyb3d8bbwe\glcnd.exe

(Microsoft Corporation) C:\Windows\System32\WWAHost.exe

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13632216 2013-07-23] (Realtek Semiconductor)

HKLM\...\Run: [iAStorIcon] - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-23] (Intel Corporation)

HKLM\...\Run: [Radio Manager] - C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-19] (MSI)

HKLM\...\Run: [sCM] - C:\Program Files (x86)\SCM\SCM.exe [407968 2013-04-19] (MSI)

HKLM\...\Run: [MBCfg64] - C:\Windows\system32\MBCfg64.dll [27648 2013-01-08] (Creative Technology Ltd.)

HKLM\...\Run: [intelTBRunOnce] - wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2013-04-25] (Synaptics Incorporated)

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] - C:\WINDOWS\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)

HKLM-x32\...\Run: [KLM] - C:\Program Files (x86)\MSI\KLM\KLM.exe [1564040 2013-04-23] (Micro-Star International Co., Ltd.)

HKLM-x32\...\Run: [sound Blaster Cinema] - C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-30] (Creative Technology Ltd)

HKLM-x32\...\Run: [updReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)

HKLM-x32\...\Run: [super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-08] (MSI)

HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)

HKLM-x32\...\Run: [bDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-07-31] (cyberlink)

HKLM-x32\...\Run: [blueStacks Agent] - c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-08] (BlueStack Systems, Inc.)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)

HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-08] (Samsung Electronics Co., Ltd.)

HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-03] (Oracle Corporation)

HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

HKLM\...\Policies\Explorer\Run: [btvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-11-28] ( (Qualcomm®Atheros®))

HKU\S-1-5-21-2923304068-2192558563-2221066459-1002\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564992 2014-02-08] (Samsung)

HKU\S-1-5-21-2923304068-2192558563-2221066459-1002\...\Run: [DellSystemDetect] - C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms

HKU\S-1-5-21-2923304068-2192558563-2221066459-1002\...\Run: [Akamai NetSession Interface] - "C:\Users\Kastle\AppData\Local\Akamai\netsession_win.exe"

AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [174296 2014-02-09] (NVIDIA Corporation)

AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [148528 2014-02-09] (NVIDIA Corporation)

Startup: C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

Startup: C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk

ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://msi13.msn.com

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com

SearchScopes: HKLM - DefaultScope {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAMIJS;

SearchScopes: HKLM - {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAMIJS;

SearchScopes: HKLM-x32 - DefaultScope {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAMIJS;

SearchScopes: HKLM-x32 - {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAMIJS;

SearchScopes: HKCU - DefaultScope {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL =

SearchScopes: HKCU - {5FD723B5-0E9E-47FC-A7F3-D7BA426485AD} URL =

SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=US&ver=21&locale=en_US&gct=kwd&qsrc=2869

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.1

Chrome:

=======

CHR Extension: (Google Docs) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-15]

CHR Extension: (Google Drive) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-15]

CHR Extension: (YouTube) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-15]

CHR Extension: (Google Search) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-15]

CHR Extension: (Google Wallet) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-15]

CHR Extension: (Gmail) - C:\Users\Kastle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-15]

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [318592 2013-11-28] (Windows ® Win 7 DDK provider)

S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-08] (BlueStack Systems, Inc.)

R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-08] (BlueStack Systems, Inc.)

S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243728 2012-05-24] (CyberLink)

S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2013-10-16] (Futuremark)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-23] (Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-14] (Intel® Corporation)

R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-13] (Intel Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-03-13] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-19] (Micro-Star International Co., Ltd.)

R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)

R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-01] (Microsoft Corporation)

R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2013-12-09] (Qualcomm Atheros)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-11-28] (Atheros)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3880448 2013-11-13] (Qualcomm Atheros Communications, Inc.)

S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider)

R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [80592 2013-11-08] (Qualcomm Atheros, Inc.)

S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-08] (BlueStack Systems)

S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-11-28] (Qualcomm Atheros)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)

S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-31] (Intel Corporation)

S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-26] (Intel Corporation)

S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)

R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)

S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-02] (Windows ® Win 7 DDK provider)

R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [163536 2013-03-20] (Qualcomm Atheros, Inc.)

S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)

S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)

R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)

R1 nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [300320 2014-02-09] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)

S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19152 2013-09-30] ()

S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()

S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)

R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [448072 2013-04-25] (RTS Corporation)

S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)

S3 SSMO3v2Filter; C:\Windows\system32\drivers\MO3v2Driver.sys [23040 2010-11-23] (Sagatek Co. Ltd.)

S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-06] (Microsoft Corporation)

R3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)

R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-21 20:46 - 2014-02-21 20:46 - 00018365 _____ () C:\Users\Kastle\Desktop\FRST.txt

2014-02-21 20:43 - 2014-02-21 20:43 - 00002006 _____ () C:\Users\Kastle\Desktop\RKreport[0]_S_02212014_204318.txt

2014-02-21 20:40 - 2014-02-21 20:44 - 00000000 ____D () C:\Users\Kastle\Desktop\RK_Quarantine

2014-02-21 20:39 - 2014-02-21 20:46 - 00000000 ____D () C:\FRST

2014-02-21 20:39 - 2014-02-21 20:40 - 04413952 _____ () C:\Users\Kastle\Downloads\RogueKillerX64.exe

2014-02-21 20:38 - 2014-02-21 20:38 - 02153984 _____ (Farbar) C:\Users\Kastle\Desktop\FRST64.exe

2014-02-21 19:18 - 2014-02-21 19:18 - 00688992 _____ (Swearware) C:\Users\Kastle\Downloads\dds.com

2014-02-21 19:14 - 2014-02-21 19:14 - 00688992 _____ (Swearware) C:\Users\Kastle\Downloads\dds.scr

2014-02-21 19:09 - 2014-02-21 19:09 - 00001135 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Malwarebytes

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-21 19:09 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

2014-02-21 19:07 - 2014-02-21 19:09 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Kastle\Downloads\mbam-setup-1.75.0.1300.exe

2014-02-21 18:34 - 2014-02-21 18:34 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (3).exe

2014-02-21 12:29 - 2014-02-21 12:29 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (2).exe

2014-02-21 12:17 - 2014-02-21 12:17 - 01278176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (1).exe

2014-02-21 12:17 - 2014-02-21 12:17 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64.exe

2014-02-21 00:18 - 2014-02-21 00:18 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Atheros

2014-02-21 00:18 - 2014-02-21 00:18 - 00000000 ____D () C:\ProgramData\Atheros

2014-02-21 00:13 - 2014-02-21 00:14 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth

2014-02-21 00:13 - 2014-02-21 00:14 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite

2014-02-21 00:13 - 2014-02-21 00:13 - 00002799 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\ProgramData\Qualcomm

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files\Qualcomm Atheros

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files\Cisco

2014-02-20 23:46 - 2014-01-19 16:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2014-02-20 23:44 - 2014-02-20 23:44 - 00002259 _____ () C:\WINDOWS\epplauncher.mif

2014-02-20 23:43 - 2014-02-20 23:43 - 13670584 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\MSEInstall.exe

2014-02-20 23:41 - 2014-02-20 23:41 - 25640672 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\Windows-KB890830-x64-V5.9 (1).exe

2014-02-20 23:40 - 2014-02-20 23:40 - 65578786 _____ () C:\Users\Kastle\Downloads\Windows8-RT-KB2836988-x64.msu

2014-02-20 22:54 - 2014-02-20 22:54 - 00000000 ____D () C:\Win8

2014-02-20 22:38 - 2014-02-20 22:47 - 3797866496 _____ () C:\Users\Kastle\Documents\9600.16384.WINBLUE_RTM.130821-1623_X64FRE_ENTERPRISE_EVAL_EN-US-IRM_CENA_X64FREE_EN-US_DV5.ISO

2014-02-20 22:11 - 2013-09-30 16:26 - 03050808 _____ () C:\WINDOWS\system32\pwNative.exe

2014-02-20 22:11 - 2013-09-30 16:26 - 00019152 ____N () C:\WINDOWS\system32\pwdrvio.sys

2014-02-20 22:11 - 2013-09-30 16:26 - 00012504 ____N () C:\WINDOWS\system32\pwdspio.sys

2014-02-20 16:41 - 2014-02-20 16:42 - 00000258 __RSH () C:\ProgramData\ntuser.pol

2014-02-20 14:26 - 2014-02-20 14:26 - 00297032 _____ () C:\WINDOWS\Minidump\022014-6796-01.dmp

2014-02-20 10:55 - 2014-02-21 18:55 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV

2014-02-20 10:55 - 2014-02-21 18:55 - 00000000 ____D () C:\WINDOWS\system32\NV

2014-02-20 07:59 - 2014-02-20 07:59 - 00001446 _____ () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Install Windows.lnk

2014-02-20 07:59 - 2014-02-20 07:59 - 00001444 _____ () C:\Users\Kastle\Desktop\Install Windows.lnk

2014-02-20 07:39 - 2014-02-20 07:39 - 04954736 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\WindowsSetupBox (3).exe

2014-02-20 07:37 - 2014-02-20 07:37 - 04954736 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\WindowsSetupBox (2).exe

2014-02-20 07:32 - 2014-02-20 07:32 - 04954736 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\WindowsSetupBox (1).exe

2014-02-20 07:18 - 2014-02-20 07:18 - 00297264 _____ () C:\WINDOWS\Minidump\022014-6984-01.dmp

2014-02-20 07:14 - 2014-02-20 07:14 - 00000000 ____D () C:\Program Files\LSoft Technologies

2014-02-19 22:55 - 2014-02-19 22:55 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Intel_Corporation

2014-02-19 21:15 - 2014-02-19 21:15 - 01002554 _____ () C:\Users\Public\SF_19-02-2014.zip

2014-02-19 21:03 - 2014-02-19 21:03 - 00000385 _____ () C:\WINDOWS\system32\_zipIt.vbs

2014-02-19 20:58 - 2014-02-19 20:58 - 00000385 _____ () C:\Users\Kastle\Downloads\_zipIt.vbs

2014-02-19 20:25 - 2014-02-19 20:25 - 00298056 _____ () C:\WINDOWS\Minidump\021914-5109-01.dmp

2014-02-19 10:28 - 2013-04-05 13:39 - 01571160 ____N () C:\WINDOWS\TotalUninstaller.exe

2014-02-19 10:27 - 2014-02-19 10:27 - 16797232 _____ () C:\Users\Kastle\Downloads\CLP-360_XPS.exe

2014-02-19 10:04 - 2014-02-19 10:04 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies

2014-02-19 10:03 - 2014-02-09 03:34 - 31432480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 23683360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 18257576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 15740232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 12324640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys

2014-02-19 10:03 - 2014-02-09 03:34 - 11636176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 11589272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 09728064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 09690424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 03142432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 02956576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 02782496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 02410784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 01885472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433489.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 01515296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433489.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00892192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00875296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00863520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00844576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00483104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00408352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00378656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00353504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00333600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00305600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll

2014-02-19 10:03 - 2014-02-09 03:34 - 00300320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvkflt.sys

2014-02-19 10:03 - 2014-02-09 03:34 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys

2014-02-18 14:26 - 2013-10-23 20:29 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll

2014-02-18 14:26 - 2013-10-23 20:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll

2014-02-18 14:26 - 2013-10-22 17:18 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll

2014-02-18 14:26 - 2013-10-22 16:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2014-02-18 14:26 - 2013-10-22 15:03 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2014-02-18 14:26 - 2013-10-22 14:15 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll

2014-02-18 14:26 - 2013-10-22 13:04 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll

2014-02-18 14:26 - 2013-10-22 13:02 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll

2014-02-18 14:26 - 2013-10-22 12:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll

2014-02-18 14:26 - 2013-10-22 12:44 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll

2014-02-18 14:26 - 2013-10-22 11:38 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2014-02-18 14:26 - 2013-10-22 11:22 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll

2014-02-18 14:26 - 2013-10-22 11:13 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll

2014-02-18 14:26 - 2013-10-22 10:53 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll

2014-02-18 14:26 - 2013-10-19 17:51 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2014-02-18 14:26 - 2013-10-19 16:12 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2014-02-18 14:26 - 2013-10-19 13:48 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2014-02-18 14:26 - 2013-10-19 13:03 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2014-02-18 14:26 - 2013-10-19 12:26 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2014-02-18 14:26 - 2013-10-19 12:14 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2014-02-18 14:26 - 2013-10-16 18:34 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2014-02-18 14:26 - 2013-10-16 18:33 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2014-02-18 14:26 - 2013-10-13 12:06 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys

2014-02-18 14:26 - 2013-10-13 11:43 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll

2014-02-18 14:26 - 2013-10-11 01:26 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2014-02-18 14:26 - 2013-10-11 01:26 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll

2014-02-18 14:26 - 2013-10-10 23:53 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2014-02-18 14:26 - 2013-10-10 23:53 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll

2014-02-18 14:26 - 2013-10-10 20:38 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll

2014-02-18 14:26 - 2013-10-08 19:28 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2014-02-18 14:26 - 2013-10-08 15:46 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll

2014-02-18 14:26 - 2013-10-08 14:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll

2014-02-18 14:26 - 2013-10-08 14:50 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll

2014-02-18 14:26 - 2013-10-08 14:48 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll

2014-02-18 14:26 - 2013-10-08 14:15 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll

2014-02-18 14:26 - 2013-10-08 14:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll

2014-02-18 14:26 - 2013-10-08 13:50 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll

2014-02-18 14:26 - 2013-10-08 13:50 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll

2014-02-18 14:26 - 2013-10-07 16:21 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2014-02-18 14:26 - 2013-10-07 11:13 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2014-02-18 14:26 - 2013-10-06 00:25 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys

2014-02-18 14:26 - 2013-10-05 23:21 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll

2014-02-18 14:26 - 2013-10-05 21:05 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll

2014-02-18 14:26 - 2013-10-05 20:01 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys

2014-02-18 14:26 - 2013-10-05 20:01 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS

2014-02-18 14:26 - 2013-10-05 20:00 - 01200640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys

2014-02-18 14:26 - 2013-10-05 18:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe

2014-02-18 14:26 - 2013-10-05 18:18 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll

2014-02-18 14:26 - 2013-10-05 18:07 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll

2014-02-18 14:26 - 2013-10-05 17:56 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2014-02-18 14:26 - 2013-10-05 17:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll

2014-02-18 14:26 - 2013-10-05 17:40 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll

2014-02-18 14:26 - 2013-10-05 17:24 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll

2014-02-18 14:26 - 2013-10-05 17:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2014-02-18 14:26 - 2013-10-05 17:15 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll

2014-02-18 14:26 - 2013-10-05 16:43 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2014-02-18 14:26 - 2013-10-05 16:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2014-02-18 14:26 - 2013-10-05 16:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2014-02-18 14:26 - 2013-10-05 16:32 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2014-02-18 14:26 - 2013-10-04 17:10 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll

2014-02-18 14:26 - 2013-09-17 18:06 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2014-02-18 14:26 - 2013-09-17 16:01 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys

2014-02-18 14:26 - 2013-09-17 15:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2014-02-18 14:26 - 2013-09-17 13:37 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll

2014-02-18 14:26 - 2013-09-14 23:07 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2014-02-18 14:26 - 2013-09-14 23:00 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll

2014-02-18 14:26 - 2013-09-14 21:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2014-02-18 14:26 - 2013-09-14 21:33 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll

2014-02-18 14:26 - 2013-09-14 19:05 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe

2014-02-18 14:26 - 2013-09-13 17:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe

2014-02-18 14:26 - 2013-09-13 16:47 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe

2014-02-18 14:26 - 2013-09-12 17:45 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll

2014-02-18 14:26 - 2013-09-12 17:08 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll

2014-02-18 14:26 - 2013-09-12 17:08 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll

2014-02-18 14:26 - 2013-09-12 17:02 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll

2014-02-18 14:26 - 2013-09-12 16:44 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll

2014-02-18 14:26 - 2013-09-12 16:37 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll

2014-02-18 14:26 - 2013-09-12 16:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll

2014-02-18 14:26 - 2013-09-12 16:21 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll

2014-02-18 14:26 - 2013-09-12 16:16 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll

2014-02-18 14:26 - 2013-09-12 16:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll

2014-02-18 14:26 - 2013-09-10 13:52 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll

2014-02-18 14:25 - 2013-11-26 19:13 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-02-18 14:25 - 2013-11-23 20:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2014-02-18 14:25 - 2013-11-23 12:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2014-02-18 14:25 - 2013-11-23 12:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2014-02-18 14:25 - 2013-11-06 05:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2014-02-18 14:24 - 2013-12-09 09:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll

2014-02-18 14:24 - 2013-12-09 09:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll

2014-02-18 14:24 - 2013-11-28 00:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2014-02-18 14:24 - 2013-11-28 00:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2014-02-18 14:24 - 2013-11-27 23:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2014-02-18 14:24 - 2013-11-27 22:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2014-02-18 14:24 - 2013-11-27 21:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys

2014-02-18 14:24 - 2013-11-27 19:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll

2014-02-18 14:24 - 2013-11-27 19:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll

2014-02-18 14:24 - 2013-11-27 19:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll

2014-02-18 14:24 - 2013-11-27 18:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll

2014-02-18 14:24 - 2013-11-27 18:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2014-02-18 14:24 - 2013-11-27 18:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll

2014-02-18 14:24 - 2013-11-27 18:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll

2014-02-18 14:24 - 2013-11-27 17:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2014-02-18 14:24 - 2013-11-27 17:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll

2014-02-18 14:24 - 2013-11-27 13:01 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml

2014-02-18 14:24 - 2013-11-26 22:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2014-02-18 14:24 - 2013-11-26 22:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2014-02-18 14:24 - 2013-11-26 22:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2014-02-18 14:24 - 2013-11-26 22:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2014-02-18 14:24 - 2013-11-26 20:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2014-02-18 14:24 - 2013-11-26 20:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2014-02-18 14:24 - 2013-11-26 20:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2014-02-18 14:24 - 2013-11-26 18:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2014-02-18 14:24 - 2013-11-26 17:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2014-02-18 14:24 - 2013-11-25 10:45 - 00142680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS

2014-02-18 14:24 - 2013-11-25 10:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2014-02-18 14:24 - 2013-11-25 08:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll

2014-02-18 14:24 - 2013-11-25 08:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll

2014-02-18 14:24 - 2013-11-23 21:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll

2014-02-18 14:24 - 2013-11-23 17:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2014-02-18 14:24 - 2013-11-23 16:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll

2014-02-18 14:24 - 2013-11-23 16:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys

2014-02-18 14:24 - 2013-11-23 16:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys

2014-02-18 14:24 - 2013-11-23 13:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll

2014-02-18 14:24 - 2013-11-23 12:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2014-02-18 14:24 - 2013-11-23 12:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2014-02-18 14:24 - 2013-11-23 12:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2014-02-18 14:24 - 2013-11-23 12:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2014-02-18 14:24 - 2013-11-21 15:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll

2014-02-18 14:24 - 2013-11-21 15:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2014-02-18 14:24 - 2013-11-16 14:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2014-02-18 14:24 - 2013-11-16 03:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2014-02-18 14:24 - 2013-11-15 23:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll

2014-02-18 14:24 - 2013-11-15 23:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll

2014-02-18 14:24 - 2013-11-15 23:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll

2014-02-18 14:24 - 2013-11-15 22:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2014-02-18 14:24 - 2013-10-31 09:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2014-02-18 14:24 - 2013-10-31 08:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2014-02-18 14:24 - 2013-09-17 18:06 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2014-02-18 14:24 - 2013-09-17 15:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2014-02-18 14:24 - 2013-09-14 18:11 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll

2014-02-18 14:22 - 2013-11-11 11:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys

2014-02-18 14:22 - 2013-11-09 20:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2014-02-18 14:22 - 2013-11-09 15:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe

2014-02-18 14:22 - 2013-11-09 14:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe

2014-02-18 14:22 - 2013-11-08 19:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2014-02-18 14:22 - 2013-11-08 13:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2014-02-18 14:22 - 2013-11-08 13:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2014-02-18 14:22 - 2013-11-08 13:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2014-02-18 14:22 - 2013-11-08 12:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2014-02-18 14:22 - 2013-11-08 12:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2014-02-18 14:22 - 2013-11-05 23:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2014-02-18 14:22 - 2013-11-05 02:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2014-02-18 14:22 - 2013-11-05 02:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2014-02-18 14:22 - 2013-11-04 22:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll

2014-02-18 14:22 - 2013-11-04 20:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2014-02-18 14:22 - 2013-11-04 19:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll

2014-02-18 14:22 - 2013-11-04 11:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll

2014-02-18 14:22 - 2013-11-04 10:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2014-02-18 14:22 - 2013-11-01 20:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys

2014-02-18 14:22 - 2013-11-01 15:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll

2014-02-18 14:22 - 2013-11-01 14:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll

2014-02-18 14:22 - 2013-10-31 09:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2014-02-18 14:22 - 2013-10-31 09:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2014-02-18 14:22 - 2013-10-31 09:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2014-02-18 14:22 - 2013-10-31 09:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2014-02-18 14:22 - 2013-10-31 09:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2014-02-18 14:22 - 2013-10-31 09:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2014-02-18 14:22 - 2013-10-26 10:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys

2014-02-18 14:22 - 2013-10-24 18:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll

2014-02-18 14:22 - 2013-10-24 18:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll

2014-02-18 14:22 - 2013-10-17 20:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2014-02-18 14:22 - 2013-10-17 19:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2014-02-18 14:22 - 2013-10-10 20:53 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2014-02-18 14:22 - 2013-10-10 20:21 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2014-02-18 14:22 - 2013-10-10 19:34 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2014-02-18 14:22 - 2013-10-10 19:27 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2014-02-18 14:22 - 2013-10-05 23:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2014-02-18 14:22 - 2013-10-05 23:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2014-02-18 14:22 - 2013-10-05 21:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2014-02-18 14:22 - 2013-10-05 21:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2014-02-18 14:20 - 2014-02-06 21:16 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-02-18 14:20 - 2014-02-06 20:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2014-02-18 14:20 - 2014-02-06 20:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll

2014-02-18 14:20 - 2014-02-06 20:12 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-02-18 14:20 - 2014-02-06 20:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-02-18 14:20 - 2014-02-06 20:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll

2014-02-18 14:20 - 2014-02-06 19:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-02-18 14:20 - 2014-02-06 19:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-02-18 14:20 - 2014-02-06 19:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe

2014-02-18 14:20 - 2014-02-06 19:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2014-02-18 14:20 - 2014-02-06 19:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe

2014-02-18 14:20 - 2014-02-06 19:38 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-02-18 14:20 - 2014-02-06 19:32 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-02-18 14:20 - 2014-02-06 19:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2014-02-18 14:20 - 2014-02-06 19:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-02-18 14:20 - 2014-02-06 19:11 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-02-18 14:20 - 2014-02-06 19:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-02-18 14:20 - 2014-02-06 19:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll

2014-02-18 14:20 - 2014-02-06 18:57 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-02-18 14:20 - 2014-02-06 18:57 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-02-18 14:20 - 2014-02-06 18:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-02-18 14:20 - 2014-02-06 18:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-02-18 14:20 - 2014-02-06 18:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2014-02-18 14:20 - 2014-02-06 18:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe

2014-02-18 14:20 - 2014-02-06 18:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2014-02-18 14:20 - 2014-02-06 18:25 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-02-18 14:20 - 2014-02-06 18:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-02-18 14:20 - 2014-02-06 18:24 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-02-18 14:20 - 2014-02-06 18:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-02-18 14:20 - 2014-02-06 18:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-02-18 14:20 - 2014-02-06 18:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2014-02-18 14:20 - 2014-02-06 18:03 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-02-18 14:20 - 2014-02-06 17:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-02-18 14:20 - 2014-02-06 17:41 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-02-18 14:20 - 2014-02-06 17:40 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2014-02-18 14:20 - 2014-02-06 17:36 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-02-18 14:20 - 2014-02-06 17:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2014-02-18 14:20 - 2014-01-07 16:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe

2014-02-18 14:20 - 2014-01-07 14:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe

2014-02-18 14:20 - 2014-01-07 14:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2014-02-18 14:20 - 2014-01-07 13:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2014-02-18 14:20 - 2014-01-05 05:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll

2014-02-18 14:20 - 2014-01-05 04:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll

2014-02-18 14:20 - 2014-01-04 23:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2014-02-18 14:20 - 2014-01-04 23:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2014-02-18 14:20 - 2014-01-04 22:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2014-02-18 14:20 - 2014-01-04 22:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2014-02-18 14:20 - 2014-01-04 22:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2014-02-18 14:20 - 2014-01-04 22:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2014-02-18 14:20 - 2013-12-21 11:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms

2014-02-18 14:20 - 2013-12-21 11:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms

2014-02-18 14:20 - 2013-12-20 19:10 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2014-02-18 14:20 - 2013-12-20 15:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2014-02-18 14:20 - 2013-12-09 11:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2014-02-18 14:20 - 2013-12-09 10:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2014-02-18 14:20 - 2013-12-09 09:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2014-02-18 14:20 - 2013-12-09 09:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll

2014-02-18 14:20 - 2013-12-09 09:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll

2014-02-18 14:20 - 2013-12-09 08:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll

2014-02-18 14:20 - 2013-12-09 08:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2014-02-18 14:20 - 2013-11-28 00:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll

2014-02-18 14:20 - 2013-11-27 20:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe

2014-02-18 14:20 - 2013-11-27 19:34 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll

2014-02-18 14:20 - 2013-11-27 18:54 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll

2014-02-18 14:20 - 2013-11-27 17:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2014-02-18 14:20 - 2013-11-27 17:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll

2014-02-18 14:20 - 2013-11-27 17:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2014-02-18 14:20 - 2013-11-27 17:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll

2014-02-18 14:20 - 2013-11-27 17:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2014-02-18 14:20 - 2013-11-27 17:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2014-02-18 14:20 - 2013-11-23 13:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2014-02-18 14:20 - 2013-11-23 13:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2014-02-18 14:20 - 2013-11-21 15:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll

2014-02-18 14:20 - 2013-11-21 14:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2014-02-18 14:20 - 2013-11-09 15:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe

2014-02-18 14:20 - 2013-11-09 15:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll

2014-02-18 14:20 - 2013-11-09 14:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll

2014-02-18 14:20 - 2013-10-23 20:01 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2014-02-18 14:20 - 2013-10-23 17:59 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2014-02-18 14:20 - 2013-10-19 17:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll

2014-02-18 14:20 - 2013-10-19 16:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll

2014-02-18 14:20 - 2013-10-17 00:58 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll

2014-02-18 14:20 - 2013-10-16 22:54 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll

2014-02-18 14:20 - 2013-10-15 17:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll

2014-02-18 14:20 - 2013-10-15 17:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll

2014-02-18 14:20 - 2013-10-13 11:48 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys

2014-02-18 14:20 - 2013-10-13 06:48 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL

2014-02-18 14:20 - 2013-10-13 06:34 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL

2014-02-18 14:20 - 2013-10-05 23:21 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2014-02-18 14:20 - 2013-10-05 17:39 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2014-02-18 14:20 - 2013-10-03 18:16 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2014-02-18 14:20 - 2013-10-03 18:02 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2014-02-18 14:20 - 2013-10-02 20:00 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2014-02-18 14:20 - 2013-10-02 18:47 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2014-02-18 14:20 - 2013-10-01 12:42 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll

2014-02-18 14:20 - 2013-10-01 12:36 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll

2014-02-18 14:19 - 2014-01-09 17:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2014-02-18 14:19 - 2014-01-09 16:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2014-02-18 14:19 - 2014-01-09 16:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll

2014-02-18 14:19 - 2014-01-09 16:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2014-02-18 14:19 - 2014-01-09 16:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll

2014-02-18 14:19 - 2014-01-09 16:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll

2014-02-18 14:19 - 2014-01-09 16:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll

2014-02-18 14:19 - 2014-01-09 16:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll

2014-02-18 14:19 - 2014-01-09 16:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2014-02-18 14:19 - 2014-01-09 16:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe

2014-02-18 14:00 - 2014-02-18 14:00 - 13079688 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\Silverlight_x64.exe

2014-02-18 14:00 - 2014-02-18 14:00 - 00000000 ____D () C:\Program Files\Microsoft Silverlight

2014-02-18 14:00 - 2014-02-18 14:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight

2014-02-18 13:30 - 2014-02-18 13:30 - 00296984 _____ () C:\WINDOWS\Minidump\021714-5421-01.dmp

2014-02-16 16:29 - 2014-02-16 16:32 - 144492296 _____ (Intel Corporation) C:\Users\Kastle\Downloads\Win64_15338 (1).exe

2014-02-16 15:20 - 2014-02-16 15:20 - 19932570 _____ () C:\Users\Kastle\Downloads\KillerCleaner_64bit.exe

2014-02-16 15:14 - 2014-02-16 15:14 - 25640672 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\Windows-KB890830-x64-V5.9.exe

2014-02-16 15:14 - 2014-02-04 19:09 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2014-02-16 15:09 - 2014-02-16 15:13 - 144492296 _____ (Intel Corporation) C:\Users\Kastle\Downloads\Win64_15338.exe

2014-02-16 15:06 - 2014-02-16 15:06 - 00296768 _____ () C:\WINDOWS\Minidump\021614-5421-01.dmp

2014-02-16 15:00 - 2014-02-16 15:00 - 00141480 _____ () C:\Users\Kastle\Downloads\bluescreenview_setup.exe

2014-02-16 15:00 - 2014-02-16 15:00 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView

2014-02-16 15:00 - 2014-02-16 15:00 - 00000000 ____D () C:\Program Files (x86)\NirSoft

2014-02-16 14:04 - 2014-02-16 14:04 - 00297744 _____ () C:\WINDOWS\Minidump\021514-5046-01.dmp

2014-02-16 13:17 - 2014-02-16 13:37 - 00000499 _____ () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Workspace Login.website

2014-02-16 10:03 - 2014-02-21 00:13 - 00000000 _____ () C:\Users\Kastle\AppData\Local\Driver_Jupiter_01Present.flag

2014-02-16 10:03 - 2014-02-21 00:13 - 00000000 _____ () C:\Users\Kastle\AppData\Local\BluetoothPresent.flag

2014-02-16 09:55 - 2014-02-16 09:55 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2014-02-16 09:53 - 2014-02-21 00:08 - 00000515 _____ () C:\Users\Kastle\AppData\Local\killertool.log

2014-02-16 09:52 - 2014-02-21 00:13 - 00000000 _____ () C:\Users\Kastle\AppData\Local\Driver_LOM_8161Present.flag

2014-02-16 09:43 - 2014-02-16 09:51 - 334585936 _____ (Qualcomm Atheros) C:\Users\Kastle\Downloads\KillerSuite_1.1.38.1281_Win7_Win8_Win81.exe

2014-02-16 09:42 - 2014-02-16 09:42 - 00297440 _____ () C:\WINDOWS\Minidump\021514-5000-01.dmp

2014-02-16 09:18 - 2014-02-16 09:18 - 00431696 _____ () C:\Users\Kastle\Downloads\DellSystemDetect.exe

2014-02-16 09:18 - 2014-02-16 09:18 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell

2014-02-16 09:02 - 2014-02-16 09:02 - 02816072 _____ (LionSea SoftWare ) C:\Users\Kastle\Downloads\setup (1).exe

2014-02-16 08:55 - 2014-02-16 08:55 - 00292776 _____ () C:\WINDOWS\Minidump\021514-4531-01.dmp

2014-02-16 08:51 - 2014-02-16 08:51 - 00296904 _____ () C:\WINDOWS\Minidump\021514-5156-01.dmp

2014-02-16 08:48 - 2014-02-16 08:48 - 00297880 _____ () C:\WINDOWS\Minidump\021514-4781-02.dmp

2014-02-16 08:45 - 2014-02-21 18:59 - 00000316 _____ () C:\WINDOWS\Tasks\Start Driver Reviver for MSI@Kastle(logon).job

2014-02-16 08:45 - 2014-02-16 08:45 - 00002580 _____ () C:\WINDOWS\System32\Tasks\Start Driver Reviver for MSI@Kastle(logon)

2014-02-16 08:45 - 2014-02-16 08:45 - 00001057 _____ () C:\Users\Public\Desktop\Driver Reviver.lnk

2014-02-16 08:45 - 2014-02-16 08:45 - 00000000 ____D () C:\ProgramData\ReviverSoft

2014-02-16 08:45 - 2014-02-16 08:45 - 00000000 ____D () C:\ProgramData\DriverReviver.exe

2014-02-16 08:45 - 2014-02-16 08:45 - 00000000 ____D () C:\Program Files\ReviverSoft

2014-02-16 08:44 - 2014-02-16 08:44 - 03582536 _____ (ReviverSoft LLC) C:\Users\Kastle\Downloads\DriverReviverSetup.exe

2014-02-16 07:51 - 2014-02-16 07:51 - 00297248 _____ () C:\WINDOWS\Minidump\021514-5406-01.dmp

2014-02-16 07:09 - 2014-02-16 07:09 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Blizzard Entertainment

2014-02-16 06:53 - 2014-02-21 18:59 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Deployment

2014-02-16 06:53 - 2014-02-16 06:55 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Curse Advertising

2014-02-16 06:53 - 2014-02-16 06:53 - 00402696 _____ () C:\Users\Kastle\Downloads\setup.exe

2014-02-16 06:53 - 2014-02-16 06:53 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse

2014-02-16 06:52 - 2014-02-16 06:52 - 00363520 _____ (Zygor Guides) C:\Users\Kastle\Downloads\ZygorGuides_Updater.exe

2014-02-16 03:10 - 2014-02-16 03:10 - 00298184 _____ () C:\WINDOWS\Minidump\021514-4703-01.dmp

2014-02-15 23:20 - 2014-02-21 20:37 - 00003910 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D56756DE-3588-4D8D-A0C3-54F6CB76FEBD}

2014-02-15 23:09 - 2014-02-21 12:27 - 00329216 ___SH () C:\Users\Kastle\Documents\Thumbs.db

2014-02-15 23:09 - 2014-02-15 23:09 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf

2014-02-15 23:00 - 2014-02-15 23:00 - 00298040 _____ () C:\WINDOWS\Minidump\021514-4781-01.dmp

2014-02-15 19:50 - 2014-02-16 12:54 - 00000000 ___DC () C:\WINDOWS\Panther

2014-02-15 19:50 - 2014-02-15 19:50 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff

2014-02-15 19:50 - 2014-02-15 19:50 - 00000000 __SHD () C:\Recovery

2014-02-15 19:49 - 2014-02-15 19:49 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys

2014-02-15 19:49 - 2014-02-15 19:49 - 00000000 ____D () C:\Program Files\Reference Assemblies

2014-02-15 19:49 - 2014-02-15 19:49 - 00000000 ____D () C:\Program Files\MSBuild

2014-02-15 19:49 - 2014-02-15 19:49 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies

2014-02-15 19:49 - 2014-02-15 19:49 - 00000000 ____D () C:\Program Files (x86)\MSBuild

2014-02-15 19:49 - 2013-08-03 13:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2014-02-15 19:49 - 2013-08-03 13:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2014-02-15 19:49 - 2013-08-03 13:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2014-02-15 19:49 - 2013-08-03 13:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2014-02-15 19:49 - 2013-08-03 13:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2014-02-15 19:49 - 2013-08-03 13:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2014-02-15 19:14 - 2014-02-15 19:14 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk

2014-02-15 19:14 - 2014-02-15 19:14 - 00000000 ____D () C:\Users\Kastle\AppData\Local\NVIDIA Corporation

2014-02-15 19:14 - 2014-02-15 19:14 - 00000000 ____D () C:\Users\Kastle\AppData\Local\NVIDIA

2014-02-15 19:14 - 2013-12-10 11:15 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2014-02-15 19:14 - 2013-12-10 11:14 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2014-02-15 19:13 - 2014-02-09 03:34 - 17715784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll

2014-02-15 19:13 - 2014-02-09 03:34 - 02713728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll

2014-02-15 19:13 - 2013-12-20 05:33 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433221.dll

2014-02-15 19:13 - 2013-12-20 05:33 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433221.dll

2014-02-15 19:13 - 2013-12-05 17:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2014-02-15 19:13 - 2013-12-05 17:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2014-02-15 19:13 - 2013-12-05 17:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2014-02-15 19:12 - 2014-02-15 19:12 - 00000000 ____D () C:\NVIDIA

2014-02-15 19:06 - 2014-02-15 19:12 - 266633424 _____ (NVIDIA Corporation) C:\Users\Kastle\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe

2014-02-15 18:56 - 2014-02-20 12:14 - 00000000 ____D () C:\ProgramData\WinZip

2014-02-15 18:53 - 2014-02-15 18:55 - 87525736 _____ () C:\Users\Kastle\Downloads\winzip180.exe

2014-02-15 18:40 - 2014-02-15 18:44 - 165739904 _____ (Intel Corporation) C:\Users\Kastle\Downloads\Win64_15335.exe

2014-02-15 18:36 - 2014-02-15 18:38 - 103157176 _____ (Intel Corporation) C:\Users\Kastle\Downloads\Win32_15335.exe

2014-02-15 18:32 - 2014-02-20 14:26 - 00000000 ____D () C:\WINDOWS\Minidump

2014-02-15 18:32 - 2014-02-15 18:32 - 00281688 _____ () C:\WINDOWS\Minidump\021514-5328-01.dmp

2014-02-15 18:21 - 2014-02-21 11:28 - 00000000 ____D () C:\Users\Kastle\AppData\Local\CrashDumps

2014-02-15 18:21 - 2014-02-15 18:21 - 00003126 _____ () C:\WINDOWS\System32\Tasks\{F43A5337-7EF1-42F0-B16A-7289D4AAACB2}

2014-02-15 18:17 - 2014-02-15 18:17 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\SystemRequirementsLab

2014-02-15 18:17 - 2014-02-15 18:17 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab

2014-02-15 18:16 - 2014-02-15 18:16 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe

2014-02-15 18:16 - 2014-02-15 18:16 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe

2014-02-15 18:16 - 2014-02-15 18:16 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe

2014-02-15 18:16 - 2014-02-15 18:16 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll

Addition.txt

buddy3 · February 21, 2014

2014-02-15 18:16 - 2014-02-15 18:16 - 00000000 ____D () C:\ProgramData\Sun

2014-02-15 18:16 - 2014-02-15 18:16 - 00000000 ____D () C:\ProgramData\Oracle

2014-02-15 18:16 - 2014-02-15 18:16 - 00000000 ____D () C:\Program Files (x86)\Java

2014-02-15 18:15 - 2014-02-15 18:15 - 00921000 _____ (Oracle Corporation) C:\Users\Kastle\Downloads\chromeinstall-7u51.exe

2014-02-15 18:05 - 2014-02-21 18:59 - 00000000 __RDO () C:\Users\Kastle\SkyDrive

2014-02-15 18:04 - 2014-02-15 18:04 - 00001456 _____ () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-02-15 18:04 - 2014-02-15 18:04 - 00000020 ___SH () C:\Users\Kastle\ntuser.ini

2014-02-15 17:55 - 2014-02-21 18:51 - 01280888 _____ () C:\WINDOWS\WindowsUpdate.log

2014-02-15 17:55 - 2014-02-15 17:55 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat

2014-02-15 17:52 - 2014-02-15 17:52 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate

2014-02-15 17:51 - 2014-02-20 23:18 - 00035662 _____ () C:\WINDOWS\diagwrn.xml

2014-02-15 17:51 - 2014-02-20 23:18 - 00033678 _____ () C:\WINDOWS\diagerr.xml

2014-02-15 17:51 - 2014-02-20 16:39 - 00000000 ____D () C:\Users\Kastle

2014-02-15 17:51 - 2014-02-15 17:52 - 00000000 ___RD () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2014-02-15 17:51 - 2013-08-23 00:36 - 00000000 ___RD () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2014-02-15 17:51 - 2013-08-23 00:36 - 00000000 ___RD () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2014-02-15 17:51 - 2013-08-23 00:36 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2014-02-15 17:50 - 2014-02-16 08:54 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM

2014-02-15 17:50 - 2014-02-15 17:50 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job

2014-02-15 17:50 - 2014-02-15 17:50 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf

2014-02-15 17:50 - 2014-02-15 17:50 - 00000000 ____D () C:\Program Files\Synaptics

2014-02-15 17:50 - 2014-02-15 17:50 - 00000000 ____D () C:\Program Files\Realtek

2014-02-15 17:50 - 2013-04-25 02:24 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2014-02-15 17:50 - 2013-04-25 02:24 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2014-02-15 17:42 - 2014-02-15 17:55 - 00006547 _____ () C:\WINDOWS\comsetup.log

2014-02-15 16:11 - 2014-02-19 19:56 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft

2014-02-15 16:11 - 2014-02-15 16:11 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment

2014-02-15 16:10 - 2014-02-15 16:10 - 00000000 ____D () C:\ProgramData\Battle.net

2014-02-15 16:04 - 2014-02-15 16:10 - 83293072 _____ (Blizzard Entertainment) C:\Users\Kastle\Downloads\World-of-Warcraft-Setup-enUS.exe

2014-02-15 15:48 - 2014-02-15 15:48 - 00000000 ____D () C:\Users\Kastle\Documents\Symantec

2014-02-15 15:47 - 2014-02-20 14:26 - 1527493501 _____ () C:\WINDOWS\MEMORY.DMP

2014-02-15 15:39 - 2014-02-15 15:39 - 00002016 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk

2014-02-15 15:39 - 2014-02-15 15:39 - 00002006 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk

2014-02-15 15:38 - 2014-02-15 15:38 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec

2014-02-15 15:38 - 2013-12-26 14:41 - 00206136 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys

2014-02-15 15:38 - 2013-12-26 14:41 - 00108856 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys

2014-02-15 15:33 - 2014-02-19 10:28 - 00000000 ____D () C:\Program Files (x86)\Samsung

2014-02-15 15:33 - 2014-02-15 15:33 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Downloaded Installations

2014-02-15 15:33 - 2014-02-15 15:33 - 00000000 ____D () C:\ProgramData\Samsung

2014-02-15 15:33 - 2014-02-08 07:33 - 04659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll

2014-02-15 15:33 - 2014-01-24 09:31 - 00821824 _____ (Devguru Co., Ltd.) C:\WINDOWS\SysWOW64\dgderapi.dll

2014-02-15 15:21 - 2014-02-15 15:24 - 75211320 _____ (Samsung Electronics Co., Ltd.) C:\Users\Kastle\Downloads\KiesSetup.exe

2014-02-15 14:55 - 2014-02-15 14:55 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2014-02-15 14:49 - 2014-01-29 14:43 - 00017715 _____ () C:\Users\Kastle\Documents\2012230084 존 (1).xlsx

2014-02-15 14:49 - 2014-01-29 14:40 - 00295444 _____ () C:\Users\Kastle\Documents\2014-1 courses.xlsx

2014-02-15 14:49 - 2014-01-29 14:40 - 00015890 _____ () C:\Users\Kastle\Documents\2012230084 존.xlsx

2014-02-15 14:49 - 2014-01-08 17:33 - 00027211 _____ () C:\Users\Kastle\Documents\testexcel.xlsx

2014-02-15 14:49 - 2014-01-08 16:02 - 00016929 _____ () C:\Users\Kastle\Documents\Drill Schedule 6-Jan-14 (2).xlsx

2014-02-15 14:49 - 2014-01-08 15:48 - 00016929 _____ () C:\Users\Kastle\Documents\Drill Schedule 6-Jan-14-3.xlsx

2014-02-15 14:49 - 2014-01-08 15:47 - 00035328 _____ () C:\Users\Kastle\Documents\Drill Schedule 6-Jan-14-2.xls

2014-02-15 14:49 - 2014-01-08 15:25 - 00016929 _____ () C:\Users\Kastle\Documents\Drill Schedule 6-Jan-14-2.xlsx

2014-02-15 14:49 - 2014-01-08 14:46 - 00016929 _____ () C:\Users\Kastle\Documents\Drill Schedule 6-Jan-14.xls

2014-02-15 14:49 - 2013-12-16 22:57 - 00696699 _____ () C:\Users\Kastle\Documents\Inventions and Patentsw.pptx

2014-02-15 14:49 - 2013-12-16 22:37 - 00077632 _____ () C:\Users\Kastle\Documents\Syndicated Loans-1.pptx

2014-02-15 14:49 - 2013-12-16 22:33 - 01140224 _____ () C:\Users\Kastle\Documents\LN11Bekaert162830_02_IFM_LN11.ppt

2014-02-15 14:49 - 2013-12-16 22:32 - 00077632 _____ () C:\Users\Kastle\Documents\Syndicated Loans.pptx

2014-02-15 14:49 - 2013-12-15 23:10 - 02524005 _____ () C:\Users\Kastle\Documents\Lecture 9 Alternative Energy II (11 Nov 2013).pptx

2014-02-15 14:49 - 2013-12-15 16:10 - 01278341 _____ () C:\Users\Kastle\Documents\REVISED Lecture 7 Forest & Biodiversity (27 October 2013).pptx

2014-02-15 14:49 - 2013-12-10 23:14 - 02126153 _____ () C:\Users\Kastle\Documents\Energy Presentation SRREN.pptx

2014-02-15 14:49 - 2013-12-05 00:23 - 00393216 _____ () C:\Users\Kastle\Documents\cm-us-equity-sifma.xls

2014-02-15 14:49 - 2013-12-02 00:07 - 02659562 _____ () C:\Users\Kastle\Documents\EIR-Kastle Jones.pptx

2014-02-15 14:49 - 2013-12-01 18:53 - 02659561 _____ () C:\Users\Kastle\Documents\energy ppt.pptx

2014-02-15 14:49 - 2013-11-26 09:46 - 00551856 _____ () C:\Users\Kastle\Documents\Global Crime NGOs (1).pptx

2014-02-15 14:49 - 2013-11-26 09:45 - 01184087 _____ () C:\Users\Kastle\Documents\NGO-global crime ppt (1).pptx

2014-02-15 14:49 - 2013-11-24 22:37 - 01100052 _____ () C:\Users\Kastle\Documents\NGO-global crime ppt.pptx

2014-02-15 14:49 - 2013-11-24 19:39 - 00551856 _____ () C:\Users\Kastle\Documents\Global Crime NGOs.pptx

2014-02-15 14:49 - 2013-11-24 19:35 - 00876629 _____ () C:\Users\Kastle\Documents\NGO-WMDppt.pptx

2014-02-15 14:49 - 2013-11-24 17:29 - 00067633 _____ () C:\Users\Kastle\Documents\global crime.pptx

2014-02-15 14:49 - 2013-11-18 23:31 - 00095744 _____ () C:\Users\Kastle\Documents\cm-us-bond-market-sifma-1.xls

2014-02-15 14:49 - 2013-11-18 23:31 - 00095744 _____ () C:\Users\Kastle\Documents\cm-us-bond-market-sifma.xls

2014-02-15 14:49 - 2013-10-28 20:49 - 06291456 _____ () C:\Users\Kastle\Documents\BP2013-statistical_review_of_world_energy.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 01395862 _____ () C:\Users\Kastle\Documents\Week6_2.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 01104794 _____ () C:\Users\Kastle\Documents\Week4_1.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00621010 _____ () C:\Users\Kastle\Documents\Week7_2.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00529630 _____ () C:\Users\Kastle\Documents\Week4_2.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00529471 _____ () C:\Users\Kastle\Documents\Week7_1.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00477818 _____ () C:\Users\Kastle\Documents\Week2_2.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00288651 _____ () C:\Users\Kastle\Documents\Week3_1.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00284079 _____ () C:\Users\Kastle\Documents\Week2_1.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00259930 _____ () C:\Users\Kastle\Documents\Week6_1.pptx

2014-02-15 14:49 - 2013-10-20 21:17 - 00247949 _____ () C:\Users\Kastle\Documents\Week5_1.pptx

2014-02-15 14:49 - 2013-10-20 21:16 - 00868409 _____ () C:\Users\Kastle\Documents\Week1_2.pptx

2014-02-15 14:49 - 2013-09-27 13:00 - 00379904 _____ () C:\Users\Kastle\Documents\Sept 30 2013 - E16 (009).xls

2014-02-15 14:49 - 2013-09-02 06:18 - 03133344 _____ () C:\Users\Kastle\Documents\BP2013-Review2012.pptx

2014-02-15 14:49 - 2013-09-02 06:18 - 03133344 _____ () C:\Users\Kastle\Documents\BP2013-Review2012 2.pptx

2014-02-15 14:49 - 2013-09-02 06:14 - 18293098 _____ () C:\Users\Kastle\Documents\BP2013-statistical_review_of_world_energy 3.pptx

2014-02-15 14:49 - 2013-09-02 06:14 - 18293098 _____ () C:\Users\Kastle\Documents\BP2013-statistical_review_of_world_energy 2.pptx

2014-02-15 14:49 - 2013-08-08 15:00 - 01520640 _____ () C:\Users\Kastle\Documents\Senate2012.ppt

2014-02-15 14:49 - 2013-06-08 18:45 - 02552443 _____ () C:\Users\Kastle\Documents\Iraq Afghan PPT (1).pptx

2014-02-15 14:49 - 2013-06-08 18:44 - 02552443 _____ () C:\Users\Kastle\Documents\Iraq Afghan PPT.pptx

2014-02-15 14:49 - 2013-06-08 18:43 - 00152448 _____ () C:\Users\Kastle\Documents\Afghanistan map slide.pptx

2014-02-15 14:49 - 2013-06-08 17:09 - 02468581 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT (5).pptx

2014-02-15 14:49 - 2013-06-05 01:04 - 02427612 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT (4).pptx

2014-02-15 14:49 - 2013-06-05 00:45 - 02427612 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT (3).pptx

2014-02-15 14:49 - 2013-06-05 00:28 - 02426719 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT (2).pptx

2014-02-15 14:49 - 2013-06-05 00:19 - 02426708 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT (1).pptx

2014-02-15 14:49 - 2013-06-05 00:03 - 02400823 _____ () C:\Users\Kastle\Documents\final IR iraq afghan ppt.pptx

2014-02-15 14:49 - 2013-06-05 00:03 - 02400823 _____ () C:\Users\Kastle\Documents\Edited Iraq Afghan PPT.pptx

2014-02-15 14:49 - 2013-06-04 23:52 - 01122086 _____ () C:\Users\Kastle\Documents\iraq IR clas .pptx

2014-02-15 14:49 - 2013-06-04 23:12 - 00079975 _____ () C:\Users\Kastle\Documents\afghan ppt.pptx

2014-02-15 14:49 - 2013-05-28 00:00 - 00107880 _____ () C:\Users\Kastle\Documents\Part 2 of English Ecotourism PPT.pptx

2014-02-15 14:49 - 2013-05-26 22:26 - 01158397 _____ () C:\Users\Kastle\Documents\korean speech ppt.pptx

2014-02-15 14:49 - 2013-05-26 22:02 - 01158397 _____ () C:\Users\Kastle\Documents\korean speech ppt 2.pptx

2014-02-15 14:49 - 2013-05-23 00:41 - 00116129 _____ () C:\Users\Kastle\Documents\Here Come the Tourists!.pptx

2014-02-15 14:49 - 2012-12-08 17:07 - 03449570 _____ () C:\Users\Kastle\Documents\Election PPT (2).pptx

2014-02-15 14:49 - 2012-12-04 11:13 - 00149504 _____ () C:\Users\Kastle\Documents\CPI2012_Results.xls

2014-02-15 14:49 - 2012-11-22 03:17 - 01130253 _____ () C:\Users\Kastle\Documents\docherty jeeyoon.pptx

2014-02-15 14:49 - 2012-11-20 03:58 - 05119457 _____ () C:\Users\Kastle\Documents\korean ppt.pptx

2014-02-15 14:49 - 2012-11-07 01:35 - 00064159 _____ () C:\Users\Kastle\Documents\UNCTAD-G20 Joint Measures on Investment.pptx

2014-02-15 14:49 - 2012-11-07 01:33 - 00057798 _____ () C:\Users\Kastle\Documents\G20 Recent Priority Issues PPT.pptx

2014-02-15 14:49 - 2012-11-06 05:36 - 03449570 _____ () C:\Users\Kastle\Documents\Election PPT (1).pptx

2014-02-15 14:49 - 2012-11-06 05:25 - 03449570 _____ () C:\Users\Kastle\Documents\Election PPT.pptx

2014-02-15 14:49 - 2012-11-06 05:22 - 03449570 _____ () C:\Users\Kastle\Documents\Election PPT 2.pptx

2014-02-15 14:49 - 2012-11-01 02:35 - 00557588 _____ () C:\Users\Kastle\Documents\English Conversation ppt.pptx

2014-02-15 14:49 - 2012-09-04 20:37 - 00798720 _____ () C:\Users\Kastle\Documents\Chapter%202.ppt

2014-02-15 14:49 - 2012-08-26 23:39 - 00253847 _____ () C:\Users\Kastle\Documents\2012-2 course list (1).xlsx

2014-02-15 14:49 - 2012-08-26 23:35 - 00022528 _____ () C:\Users\Kastle\Documents\2012학년도 2학기 신편입생 학번 추가.xls

2014-02-15 14:49 - 2012-08-18 16:31 - 00253847 _____ () C:\Users\Kastle\Documents\2012-2 course list.xlsx

2014-02-15 14:49 - 2012-05-18 13:24 - 00397798 _____ () C:\Users\Kastle\Documents\zhongwen.pptx

2014-02-15 14:49 - 2012-05-18 02:41 - 01332118 _____ () C:\Users\Kastle\Documents\Recovered File 1.pptx

2014-02-15 14:49 - 2012-05-17 15:34 - 01356531 _____ () C:\Users\Kastle\Documents\Econ Presentation OK.pptx

2014-02-15 14:49 - 2012-03-07 08:37 - 00481587 _____ () C:\Users\Kastle\Documents\econ paper presentation.pptx

2014-02-15 14:49 - 2012-03-06 23:39 - 02204326 _____ () C:\Users\Kastle\Documents\chinese presentation.pptx

2014-02-15 14:49 - 2012-03-06 17:14 - 02204326 _____ () C:\Users\Kastle\Documents\chinese presentation 2.pptx

2014-02-15 14:49 - 2012-02-29 04:28 - 00330882 _____ () C:\Users\Kastle\Documents\Presentation1.pptx

2014-02-15 14:49 - 2012-02-29 02:58 - 00193362 _____ () C:\Users\Kastle\Documents\Sweden Presentation.pptx

2014-02-15 14:49 - 2012-02-18 02:01 - 00791552 _____ () C:\Users\Kastle\Documents\Lesson6.ppt

2014-02-15 14:49 - 2011-11-18 10:57 - 00355578 _____ () C:\Users\Kastle\Documents\Reality is Broken 3.pptx

2014-02-15 14:49 - 2011-11-18 10:57 - 00355578 _____ () C:\Users\Kastle\Documents\Reality is Broken 3 (1).pptx

2014-02-15 14:49 - 2011-11-18 09:10 - 00641036 _____ () C:\Users\Kastle\Documents\330Lesson30Pwrpt.pptx

2014-02-15 14:49 - 2011-11-04 14:20 - 00362810 _____ () C:\Users\Kastle\Documents\reality is broken 2.pptx

2014-02-15 14:49 - 2011-11-04 10:44 - 00088439 _____ () C:\Users\Kastle\Documents\Reality is Broken (5).pptx

2014-02-15 14:49 - 2011-11-04 10:42 - 00088439 _____ () C:\Users\Kastle\Documents\Reality is Broken (4).pptx

2014-02-15 14:49 - 2011-11-04 10:42 - 00088439 _____ () C:\Users\Kastle\Documents\Reality is Broken (3).pptx

2014-02-15 14:49 - 2011-11-04 10:40 - 00088439 _____ () C:\Users\Kastle\Documents\Reality is Broken (2).pptx

2014-02-15 14:49 - 2011-11-04 07:17 - 00279265 _____ () C:\Users\Kastle\Documents\Reality is Broken-1.pptx

2014-02-15 14:49 - 2011-11-03 08:40 - 00050073 _____ () C:\Users\Kastle\Documents\Reality is Broken (1).pptx

2014-02-15 14:49 - 2011-11-03 08:39 - 00050073 _____ () C:\Users\Kastle\Documents\Reality is Broken.pptx

2014-02-15 14:49 - 2011-05-30 21:59 - 01530558 _____ () C:\Users\Kastle\Documents\nixon and the watergate scandal.pptx

2014-02-15 14:49 - 2011-05-30 08:58 - 01368338 _____ () C:\Users\Kastle\Documents\nixon%20and%20the%20watergate%20scandal.pptx

2014-02-15 14:49 - 2011-05-30 08:54 - 00212418 _____ () C:\Users\Kastle\Documents\Watergate.pptx

2014-02-15 14:49 - 2011-04-26 12:04 - 06850048 _____ () C:\Users\Kastle\Documents\540_Plants_11_cw.ppt

2014-02-15 14:49 - 2011-04-05 05:18 - 00049557 _____ () C:\Users\Kastle\Documents\FRE200%20-%20april%204.pptx

2014-02-15 14:49 - 2011-03-07 12:50 - 01850877 _____ () C:\Users\Kastle\Documents\WWII Presentation.pptx

2014-02-15 14:49 - 2011-03-01 11:40 - 01516732 _____ () C:\Users\Kastle\Documents\lesson 14 grammar.pptx

2014-02-15 14:49 - 2011-03-01 11:39 - 02925082 _____ () C:\Users\Kastle\Documents\lesson 14 vocab part 1.pptx

2014-02-15 14:49 - 2011-02-10 09:11 - 03579904 _____ () C:\Users\Kastle\Documents\Ch 23 Circulation_11.ppt

2014-02-15 14:49 - 2011-02-03 23:18 - 03192832 _____ () C:\Users\Kastle\Documents\Ch 22 Respiration_11.ppt

2014-02-15 14:49 - 2011-02-01 21:48 - 01811456 _____ () C:\Users\Kastle\Documents\540_Tissues-1.ppt

2014-02-15 14:49 - 2011-02-01 21:48 - 01811456 _____ () C:\Users\Kastle\Documents\540_Tissues.ppt

2014-02-15 14:49 - 2011-01-20 23:18 - 01235456 _____ () C:\Users\Kastle\Documents\Evolution of life-2.ppt

2014-02-15 14:49 - 2011-01-20 23:18 - 01235456 _____ () C:\Users\Kastle\Documents\Evolution of life-1.ppt

2014-02-15 14:49 - 2011-01-20 23:18 - 01235456 _____ () C:\Users\Kastle\Documents\Evolution of life.ppt

2014-02-15 14:49 - 2011-01-11 23:43 - 06114304 _____ () C:\Users\Kastle\Documents\Ch 14 Species_11-1.ppt

2014-02-15 14:49 - 2011-01-11 23:43 - 06114304 _____ () C:\Users\Kastle\Documents\Ch 14 Species_11.ppt

2014-02-15 14:49 - 2011-01-10 10:36 - 00867328 _____ () C:\Users\Kastle\Documents\540_pop_genetics_1-1.ppt

2014-02-15 14:49 - 2011-01-10 10:36 - 00867328 _____ () C:\Users\Kastle\Documents\540_pop_genetics_1.ppt

2014-02-15 14:49 - 2011-01-07 04:23 - 06177792 _____ () C:\Users\Kastle\Documents\Evolution_evidence-1.ppt

2014-02-15 14:49 - 2011-01-07 04:23 - 06177792 _____ () C:\Users\Kastle\Documents\Evolution_evidence.ppt

2014-02-15 14:49 - 2011-01-05 07:00 - 02708992 _____ () C:\Users\Kastle\Documents\Intro_Evolution-1.ppt

2014-02-15 14:49 - 2011-01-05 07:00 - 02708992 _____ () C:\Users\Kastle\Documents\Intro_Evolution.ppt

2014-02-15 14:49 - 2010-09-16 03:20 - 02149983 _____ () C:\Users\Kastle\Documents\Doc-78207.pptx

2014-02-15 14:49 - 2010-05-28 16:32 - 00378368 _____ () C:\Users\Kastle\Documents\01comparisontortora-1.ppt

2014-02-15 14:49 - 2010-05-28 16:32 - 00377856 _____ () C:\Users\Kastle\Documents\01comparisontortora.ppt

2014-02-15 14:37 - 2014-02-15 14:37 - 00000000 ____D () C:\ProgramData\PCSettings

2014-02-15 14:21 - 2014-02-20 16:55 - 00045056 ___SH () C:\Users\Kastle\Desktop\Thumbs.db

2014-02-15 14:21 - 2014-02-15 14:21 - 00000000 ____D () C:\Users\Public\Downloads\Norton

2014-02-15 14:08 - 2014-02-16 10:58 - 00000000 ____D () C:\Program Files (x86)\iTunes

2014-02-15 14:08 - 2014-02-15 15:01 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Apple Computer

2014-02-15 14:08 - 2014-02-15 14:08 - 00001793 _____ () C:\Users\Public\Desktop\iTunes.lnk

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Apple Computer

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Apple

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\ProgramData\Apple Computer

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\ProgramData\Apple

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files\iTunes

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files\iPod

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files\Common Files\Apple

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files\Bonjour

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files (x86)\Bonjour

2014-02-15 14:08 - 2014-02-15 14:08 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update

2014-02-15 14:08 - 2012-08-22 04:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys

2014-02-15 14:01 - 2014-02-15 14:07 - 148896080 _____ (Apple Inc.) C:\Users\Kastle\Downloads\iTunes64Setup.exe

2014-02-15 13:59 - 2014-02-15 18:05 - 00000000 ___RD () C:\Users\Kastle\SkyDrive.old

2014-02-15 13:59 - 2014-02-15 13:59 - 00868464 _____ () C:\WINDOWS\CalibriLI.tt2

2014-02-15 13:59 - 2014-02-15 13:59 - 00758196 _____ () C:\WINDOWS\CalibriL.tt2

2014-02-15 13:58 - 2014-02-15 16:48 - 00000000 ____D () C:\Program Files\Microsoft Office 15

2014-02-15 13:57 - 2014-02-15 13:57 - 00572088 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\Setup.X86.en-US_HomeBusinessRetail_430c9c5e-44e2-4a31-8538-a4b9e1e104fc_TX_PR_.exe

2014-02-15 13:56 - 2014-02-20 07:45 - 00000000 __RHD () C:\ESD

2014-02-15 13:55 - 2014-02-15 13:55 - 04954736 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\WindowsSetupBox.exe

2014-02-15 13:51 - 2014-02-21 19:00 - 00002213 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-02-15 13:50 - 2014-02-21 19:55 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2014-02-15 13:50 - 2014-02-21 18:59 - 00000902 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2014-02-15 13:50 - 2014-02-15 13:51 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Google

2014-02-15 13:50 - 2014-02-15 13:51 - 00000000 ____D () C:\Program Files (x86)\Google

2014-02-15 13:50 - 2014-02-15 13:50 - 00003878 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2014-02-15 13:50 - 2014-02-15 13:50 - 00003642 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2014-02-15 13:50 - 2014-02-15 13:50 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Apps\2.0

2014-02-15 13:43 - 2014-02-15 13:43 - 00000000 ____D () C:\ProgramData\Synaptics

2014-02-15 13:42 - 2014-02-15 13:42 - 00000000 _____ () C:\Users\Kastle\agent.log

2014-02-15 13:25 - 2014-02-21 19:55 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2923304068-2192558563-2221066459-1002

2014-02-15 13:25 - 2014-02-15 13:25 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Macromedia

2014-02-15 13:19 - 2014-02-15 18:09 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Anti-Theft

2014-02-15 13:18 - 2014-02-15 13:18 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Intel Corporation

2014-02-15 13:18 - 2014-02-15 13:18 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Micro-Star_International_

2014-02-15 13:17 - 2014-02-21 11:06 - 00000000 ____D () C:\Users\Kastle\Documents\Bluetooth Folder

2014-02-15 13:17 - 2014-02-19 20:29 - 00000000 ___RD () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-02-15 13:17 - 2014-02-19 20:29 - 00000000 ___RD () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-02-15 13:17 - 2014-02-19 10:28 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Packages

2014-02-15 13:17 - 2014-02-16 12:58 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD

2014-02-15 13:17 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Synaptics

2014-02-15 13:17 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Adobe

2014-02-15 13:17 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\AppData\Local\VirtualStore

2014-02-15 13:17 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\AppData\Local\MSI

2014-02-15 13:17 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\AppData\Local\BMExplorer

2014-01-24 09:31 - 2014-01-24 09:31 - 00974848 _____ () C:\WINDOWS\SysWOW64\cis-2.4.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00569344 _____ (© MusicCity) C:\WINDOWS\SysWOW64\muzdecode.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00491520 _____ (Musiccity Co.Ltd.) C:\WINDOWS\SysWOW64\muzapp.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00352256 _____ (Sample Corporation) C:\WINDOWS\SysWOW64\MSLUR71.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00330240 _____ ((주)마크애니) C:\WINDOWS\MASetupCaller.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00258048 _____ (© PeeringPortal) C:\WINDOWS\SysWOW64\muzoggsp.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00245760 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSCLib.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00200704 _____ ( © MusicCity) C:\WINDOWS\SysWOW64\muzwmts.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00172032 _____ (Musiccity Co.Ltd.) C:\WINDOWS\SysWOW64\muzapp.exe

2014-01-24 09:31 - 2014-01-24 09:31 - 00155648 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSFLib.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00143360 _____ () C:\WINDOWS\SysWOW64\3DAudio.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00135168 _____ (Musiccity Co.Ltd.) C:\WINDOWS\SysWOW64\muzaf1.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00131072 _____ (© MusicCity) C:\WINDOWS\SysWOW64\muzmpgsp.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00122880 _____ (© MUSICCITY) C:\WINDOWS\SysWOW64\muzeffect.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00118784 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MaDRM.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00110592 _____ (© MusicCity) C:\WINDOWS\SysWOW64\muzmp4sp.ax

2014-01-24 09:31 - 2014-01-24 09:31 - 00090112 _____ ((주)마크애니) C:\WINDOWS\MAMCityDownload.ocx

2014-01-24 09:31 - 2014-01-24 09:31 - 00081920 _____ () C:\WINDOWS\SysWOW64\issacapi_bs-2.3.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00065536 _____ () C:\WINDOWS\SysWOW64\issacapi_pe-2.3.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00057344 _____ (Marktek) C:\WINDOWS\SysWOW64\MK_Lyric.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00057344 _____ (Marktek Inc.) C:\WINDOWS\SysWOW64\MTXSYNCICON.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00057344 _____ () C:\WINDOWS\SysWOW64\issacapi_se-2.3.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00049152 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaJGUILib.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00045320 _____ (MARKANY) C:\WINDOWS\SysWOW64\MAMACExtract.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaXMLProto.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MACXMLProto.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00040960 _____ (Telechips Inc.,) C:\WINDOWS\SysWOW64\MTTELECHIP.dll

2014-01-24 09:31 - 2014-01-24 09:31 - 00030568 _____ () C:\WINDOWS\MusiccityDownload.exe

2014-01-24 09:31 - 2014-01-24 09:31 - 00024576 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MASetupCleaner.exe

==================== One Month Modified Files and Folders =======

2014-02-21 20:46 - 2014-02-21 20:46 - 00018365 _____ () C:\Users\Kastle\Desktop\FRST.txt

2014-02-21 20:46 - 2014-02-21 20:39 - 00000000 ____D () C:\FRST

2014-02-21 20:44 - 2014-02-21 20:40 - 00000000 ____D () C:\Users\Kastle\Desktop\RK_Quarantine

2014-02-21 20:43 - 2014-02-21 20:43 - 00002006 _____ () C:\Users\Kastle\Desktop\RKreport[0]_S_02212014_204318.txt

2014-02-21 20:40 - 2014-02-21 20:39 - 04413952 _____ () C:\Users\Kastle\Downloads\RogueKillerX64.exe

2014-02-21 20:38 - 2014-02-21 20:38 - 02153984 _____ (Farbar) C:\Users\Kastle\Desktop\FRST64.exe

2014-02-21 20:37 - 2014-02-15 23:20 - 00003910 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D56756DE-3588-4D8D-A0C3-54F6CB76FEBD}

2014-02-21 20:00 - 2013-08-23 00:36 - 00000000 ____D () C:\WINDOWS\system32\sru

2014-02-21 19:55 - 2014-02-15 13:50 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2014-02-21 19:55 - 2014-02-15 13:25 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2923304068-2192558563-2221066459-1002

2014-02-21 19:18 - 2014-02-21 19:18 - 00688992 _____ (Swearware) C:\Users\Kastle\Downloads\dds.com

2014-02-21 19:14 - 2014-02-21 19:14 - 00688992 _____ (Swearware) C:\Users\Kastle\Downloads\dds.scr

2014-02-21 19:09 - 2014-02-21 19:09 - 00001135 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Malwarebytes

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-02-21 19:09 - 2014-02-21 19:09 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-21 19:09 - 2014-02-21 19:07 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Kastle\Downloads\mbam-setup-1.75.0.1300.exe

2014-02-21 19:04 - 2013-09-30 13:04 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

2014-02-21 19:00 - 2014-02-15 13:51 - 00002213 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-02-21 18:59 - 2014-02-16 08:45 - 00000316 _____ () C:\WINDOWS\Tasks\Start Driver Reviver for MSI@Kastle(logon).job

2014-02-21 18:59 - 2014-02-16 06:53 - 00000000 ____D () C:\Users\Kastle\AppData\Local\Deployment

2014-02-21 18:59 - 2014-02-15 18:05 - 00000000 __RDO () C:\Users\Kastle\SkyDrive

2014-02-21 18:59 - 2014-02-15 13:50 - 00000902 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2014-02-21 18:58 - 2013-08-22 23:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT

2014-02-21 18:55 - 2014-02-20 10:55 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV

2014-02-21 18:55 - 2014-02-20 10:55 - 00000000 ____D () C:\WINDOWS\system32\NV

2014-02-21 18:51 - 2014-02-15 17:55 - 01280888 _____ () C:\WINDOWS\WindowsUpdate.log

2014-02-21 18:51 - 2013-08-22 22:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI

2014-02-21 18:41 - 2013-09-30 12:55 - 00784092 _____ () C:\WINDOWS\PFRO.log

2014-02-21 18:34 - 2014-02-21 18:34 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (3).exe

2014-02-21 12:29 - 2014-02-21 12:29 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (2).exe

2014-02-21 12:27 - 2014-02-15 23:09 - 00329216 ___SH () C:\Users\Kastle\Documents\Thumbs.db

2014-02-21 12:17 - 2014-02-21 12:17 - 01278176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64 (1).exe

2014-02-21 12:17 - 2014-02-21 12:17 - 00860176 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\mssstool64.exe

2014-02-21 11:28 - 2014-02-15 18:21 - 00000000 ____D () C:\Users\Kastle\AppData\Local\CrashDumps

2014-02-21 11:28 - 2012-07-26 14:37 - 00000000 ____D () C:\Users\Default.migrated

2014-02-21 11:06 - 2014-02-15 13:17 - 00000000 ____D () C:\Users\Kastle\Documents\Bluetooth Folder

2014-02-21 00:18 - 2014-02-21 00:18 - 00000000 ____D () C:\Users\Kastle\AppData\Roaming\Atheros

2014-02-21 00:18 - 2014-02-21 00:18 - 00000000 ____D () C:\ProgramData\Atheros

2014-02-21 00:16 - 2013-04-25 12:44 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-02-21 00:15 - 2013-08-22 23:46 - 00385540 _____ () C:\WINDOWS\setupact.log

2014-02-21 00:14 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth

2014-02-21 00:14 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite

2014-02-21 00:14 - 2013-08-22 23:46 - 00004021 _____ () C:\WINDOWS\setuperr.log

2014-02-21 00:13 - 2014-02-21 00:13 - 00002799 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\ProgramData\Qualcomm

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files\Qualcomm Atheros

2014-02-21 00:13 - 2014-02-21 00:13 - 00000000 ____D () C:\Program Files\Cisco

2014-02-21 00:13 - 2014-02-16 10:03 - 00000000 _____ () C:\Users\Kastle\AppData\Local\Driver_Jupiter_01Present.flag

2014-02-21 00:13 - 2014-02-16 10:03 - 00000000 _____ () C:\Users\Kastle\AppData\Local\BluetoothPresent.flag

2014-02-21 00:13 - 2014-02-16 09:52 - 00000000 _____ () C:\Users\Kastle\AppData\Local\Driver_LOM_8161Present.flag

2014-02-21 00:08 - 2014-02-16 09:53 - 00000515 _____ () C:\Users\Kastle\AppData\Local\killertool.log

2014-02-21 00:07 - 2013-08-23 00:36 - 00000000 ____D () C:\WINDOWS\system32\NDF

2014-02-21 00:01 - 2013-03-12 02:38 - 00000000 ____D () C:\ProgramData\Norton

2014-02-20 23:51 - 2013-03-12 02:43 - 00000000 ____D () C:\ProgramData\boost_interprocess

2014-02-20 23:46 - 2013-08-22 22:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM

2014-02-20 23:45 - 2012-07-26 17:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP

2014-02-20 23:44 - 2014-02-20 23:44 - 00002259 _____ () C:\WINDOWS\epplauncher.mif

2014-02-20 23:43 - 2014-02-20 23:43 - 13670584 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\MSEInstall.exe

2014-02-20 23:41 - 2014-02-20 23:41 - 25640672 _____ (Microsoft Corporation) C:\Users\Kastle\Downloads\Windows-KB890830-x64-V5.9 (1).exe

2014-02-20 23:40 - 2014-02-20 23:40 - 65578786 _____ () C:\Users\Kastle\Downloads\Windows8-RT-KB2836988-x64.msu

2014-02-20 23:18 - 2014-02-15 17:51 - 00035662 _____ () C:\WINDOWS\diagwrn.xml

2014-02-20 23:18 - 2014-02-15 17:51 - 00033678 _____ () C:\WINDOWS\diagerr.xml

2014-02-20 22:54 - 2014-02-20 22:54 - 00000000 ____D () C:\Win8

2014-02-20 22:47 - 2014-02-20 22:38 - 3797866496 _____ () C:\Users\Kastle\Documents\9600.16384.WINBLUE_RTM.130821-1623_X64FRE_ENTERPRISE_EVAL_EN-US-IRM_CENA_X64FREE_EN-US_DV5.ISO

2014-02-20 17:27 - 2013-04-25 13:39 - 00000000 ____D () C:\Program Files (x86)\BlueStacks

2014-02-20 17:27 - 2013-04-25 12:57 - 00000000 ____D () C:\Program Files (x86)\SCM

2014-02-20 16:55 - 2014-02-15 14:21 - 00045056 ___SH () C:\Users\Kastle\Desktop\Thumbs.db

2014-02-20 16:42 - 2014-02-20 16:41 - 00000258 __RSH () C:\ProgramData\ntuser.pol

2014-02-20 16:41 - 2013-08-23 00:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy

2014-02-20 16:41 - 2013-08-23 00:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy

2014-02-20 16:39 - 2014-02-15 17:51 - 00000000 ____D () C:\Users\Kastle

2014-02-20 14:26 - 2014-02-20 14:26 - 00297032 _____ () C:\WINDOWS\Minidump\022014-6796-01.dmp

2014-02-20 14:26 - 2014-02-15 18:32 - 00000000 ____D () C:\WINDOWS\Minidump

2014-02-20 14:26 - 2014-02-15 15:47 - 1527493501 _____ () C:\WINDOWS\MEMORY.DMP

2014-02-20 12:14 - 2014-02-15 18:56 - 00000000 ____D () C:\ProgramData\WinZip

2014-02-20 10:55 - 2013-04-25 12:40 - 00000000 ____D () C:\ProgramData\NVIDIA

2014-02-20 07:59 - 2014-02-20 07:59 - 00001446 _____ () C:\Users\Kastle\AppData\Roaming\Microsoft\Windows\Start Menu\Install Windows.lnk

2014-02-20 07:59 - 2014-02-20 07:59 - 00001444 _____ () C:\Users\Kastle\Desktop\Install Windows.lnk

2014-02-20 07:56 - 2013-08-23 00:36 - 00000000 ____D () C:\WINDOWS\rescache

2014-02-20 07:45 - 2014-02-15 13:56 - 00000000 __RHD () C:\ESD