Jump to content

Successive scans very similar

klrock

By klrock
in Resolved Malware Removal Logs

 Share

Recommended Posts

Aura

Aura

Posted
Posted

Hi klrock :)

Follow the instructions below please.

iO3R662.pngFarbar Recovery Scan Tool (FRST) - Scan mode
Follow the instructions below to download and execute a scan on your system with FRST, and provide the logs in your next reply.

  • Download the right version of FRST for your system:
    • FRST 32-bit
    • FRST 64-bit
      Note: Only the right version will run on your system, the other will throw an error message. So if you don't know what your system's version is, simply download both of them, and the one that works is the one you should be using.
  • Move the executable (FRST.exe or FRST64.exe) on your Desktop
  • Right-click on the executable and select Spcusrh.pngRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
  • Accept the disclaimer by clicking on Yes, and FRST will then do a back-up of your Registry which should take a few seconds
  • Make sure the Addition.txt box is checked
  • Click on the Scan button
    KSJwAxg.png
  • On completion, two message box will open, saying that the results were saved to FRST.txt and Addition.txt, then open two Notepad files
  • Copy and paste the content of both FRST.txt and Addition.txt in your next reply

Link to post
Share on other sites
klrock

klrock

Posted
  • Author
Posted

First.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-11-2017
Ran by Kerry (administrator) on K-PC (16-11-2017 14:43:57)
Running from C:\Users\Kerry\Desktop
Loaded Profiles: Kerry (Available Profiles: Kerry)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ABBYY (BIT Software)) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NSBU.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\WhsMcClient.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\WSConnectorUpdate.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NSBU.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\ProviderRegistryService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\LANConfigSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SMART6\Recovery\RPMDaemon.exe
() C:\Program Files (x86)\GIGABYTE\smart6\dbios\SDBMSG.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\Launchpad.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Microsoft Corporation) C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(BitTorrent Inc.) C:\Users\Kerry\AppData\Roaming\uTorrent\uTorrent.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(BitTorrent Inc.) C:\Users\Kerry\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(BitTorrent Inc.) C:\Users\Kerry\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Windows Server\Bin\Microsoft.HomeServer.Archive.TransferService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Kerry\Desktop\FRST64 (1).exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11776104 2011-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1725408 2017-03-14] (GlavSoft LLC.)
HKLM\...\Run: [Launchpad] => C:\Program Files\Windows Server\Bin\Launchpad.exe [1099360 2012-11-02] (Microsoft Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2010-09-09] (CANON INC.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [2552320 2011-03-30] (Gigabyte Technology CO., LTD.)
HKLM-x32\...\RunOnce: [SDBOK] => C:\Program Files (x86)\GIGABYTE\smart6\dbios\run.exe [207400 2009-07-06] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\Run: [SkyDrive] => C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2017-10-21] (Microsoft Corporation)
HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\Run: [uTorrent] => C:\Users\Kerry\AppData\Roaming\uTorrent\uTorrent.exe [1985984 2017-10-27] (BitTorrent Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-10-17] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{24DCB72F-3C6A-4035-A688-03D4F217905E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2957907037-1284653929-173307917-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1007450&geo=US&ver=22.11.0.41&locale=en_US&guid=9F0E52C2-C457-4341-B8C7-C500A592D73C&doi=2016-09-01&gct=sb&qsrc=2869
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\coIEPlg.dll [2017-10-03] (Symantec Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: HelperObject Class -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItBHO.dll [2005-12-22] (TechSmith Corporation)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine32\22.11.0.41\coIEPlg.dll [2017-10-03] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\coIEPlg.dll [2017-10-03] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine32\22.11.0.41\coIEPlg.dll [2017-10-03] (Symantec Corporation)
Toolbar: HKLM-x32 - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItIEAddin.dll [2005-12-22] (TechSmith Corporation)
Toolbar: HKU\S-1-5-21-2957907037-1284653929-173307917-1000 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Toolbar: HKU\S-1-5-21-2957907037-1284653929-173307917-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\coIEPlg.dll [2017-10-03] (Symantec Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.11.0.41\coFFAddon => not found
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.11.0.41\coFFAddon => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3333887&octid=EB_ORIGINAL_CTID&ISID=M04E60662-87BC-4222-A125-574BEC80859C&SearchSource=55&CUI=&UM=8&UP=SPD07634BD-C4D4-493C-913C-D652C598EA05&D=121215&SSPV=
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://freebies.about.com/od/free-plans/tp/free-kitchen-island-plans.htm","hxxp://www.oldpaintdesign.com/2012/06/29/gaby-kitchen-island/","hxxp://www.diynetwork.com/how-to/rooms-and-spaces/kitchen/how-to-build-a-kitchen-cart","hxxp://my.xfinity.com/?cid=cust","hxxps://web.mail.comcast.net/zimbra/mail?app=mail#1","hxxps://malwaretips.com/blogs/trovi-removal/","chrome://newtab/","chrome://newtab/","hxxps://search.yahoo.com/?type=994519&fr=yo-yhp-ch","hxxps://search.yahoo.com/?type=316617&fr=yo-yhp-ch","hxxp://searchinterneat-a.akamaihd.net/hm?eq=U0EeCFZVBB8SRggUeA5eVVhJERhAdA5cTA0TRQcOIVxeURRFFwYXIQ9ZV1xJEVAFIk0FA1oDB0VXfV5bFElXTwhuIUpLMlwQ"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default [2017-11-16]
CHR Extension: (Slides) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Docs) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-15]
CHR Extension: (YouTube) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-15]
CHR Extension: (Form Filler) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnjjngeaknajbdcgpfkgnonkmififhfo [2017-10-15]
CHR Extension: (Flip this) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\donljlliiecjcagcenoeohjmabfegkph [2017-10-15]
CHR Extension: (Google Calendar) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-10-15]
CHR Extension: (Google Play Music) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2017-10-15]
CHR Extension: (Flash Playlist) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanagokoaogopceablgmpndejhedkjjb [2017-11-16]
CHR Extension: (Sheets) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2017-10-15]
CHR Extension: (Google Docs Offline) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-15]
CHR Extension: (AdBlock) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-11-14]
CHR Extension: (Pinterest Save Button) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-11-16]
CHR Extension: (Norton Safe) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-10-15]
CHR Extension: (Fetchee: Price Tracking Wishlist) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkejdkgihbncgfffggdokommlakigcgg [2017-10-15]
CHR Extension: (Search Incognito) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlcgjkbdmlnfmelambncafejbemlfodl [2017-10-15]
CHR Extension: (Google Play Music) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2017-10-15]
CHR Extension: (Norton Identity Safe) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-10-15]
CHR Extension: (MP3 Player) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbiheleggoempookkoblhdgmlojbicob [2017-10-15]
CHR Extension: (StumbleBar by StumbleUpon) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcahibnffhnnjcedflmchmokndkjnhpg [2017-10-15]
CHR Extension: (Cently (Coupons at Checkout)) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\kegphgaihkjoophpabchkmpaknehfamb [2017-11-11]
CHR Extension: (Loom - Video Recorder: Screen, Webcam and Mic) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2017-11-14]
CHR Extension: (Wikibuy) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2017-11-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-15]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2017-10-15]
CHR Extension: (Evernote Web Clipper) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2017-11-03]
CHR Extension: (Gmail) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-15]
CHR Extension: (Chrome Media Router) - C:\Users\Kerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [660768 2007-12-06] (ABBYY (BIT Software))
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
R2 HealthAlertsSvc; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 initMonitor; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
R2 NotificationsProviderSvc; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NSBU.exe [326144 2017-10-04] (Symantec Corporation)
R2 providers_system; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)
R2 ServiceProviderRegistry; C:\Program Files\Windows Server\Bin\ProviderRegistryService.exe [41568 2012-11-02] (Microsoft Corporation)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [File not signed]
R2 SqmProviderSvc; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1725408 2017-03-14] (GlavSoft LLC.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
R2 WSS_ComputerBackupProviderSvc; C:\Program Files\Windows Server\Bin\SharedServiceHost.exe [30592 2011-03-02] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 BHDrvx64; C:\Program Files\Norton Security with Backup\NortonData\22.11.0.41\Definitions\BASHDefs\20171108.001\BHDrvx64.sys [1872024 2017-10-11] (Symantec Corporation)
R1 ccSet_NSBU; C:\Windows\system32\drivers\NSBUx64\160B000.029\ccSetx64.sys [187520 2017-10-03] (Symantec Corporation)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-10-15] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-10-15] (Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [508056 2017-10-18] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [158360 2017-10-18] (Symantec Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-10-04] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2017-10-16] ()
R1 IDSVia64; C:\Program Files\Norton Security with Backup\NortonData\22.11.0.41\Definitions\IPSDefs\20171115.001\IDSvia64.sys [1056920 2017-10-13] (Symantec Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [192952 2017-11-03] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-11-16] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [45504 2017-11-16] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2017-10-31] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-11-16] (Malwarebytes)
R3 SRTSP; C:\Windows\system32\drivers\NSBUx64\160B000.029\SRTSP64.SYS [812704 2017-10-03] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSBUx64\160B000.029\SRTSPX64.SYS [49304 2017-10-03] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSBUx64\160B000.029\SYMEFASI64.SYS [1868416 2017-10-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102568 2017-10-15] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSBUx64\160B000.029\Ironx64.SYS [301288 2017-10-03] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NSBUx64\160B000.029\SYMNETS.SYS [566912 2017-10-03] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-16 14:43 - 2017-11-16 14:44 - 000022862 _____ C:\Users\Kerry\Desktop\FRST.txt
2017-11-16 14:43 - 2017-11-16 14:43 - 000000000 ____D C:\Users\Kerry\Desktop\FRST-OlderVersion
2017-11-16 14:43 - 2017-11-16 14:43 - 000000000 ____D C:\FRST
2017-11-16 14:31 - 2017-11-16 14:31 - 000000000 ____D C:\Windows\System32\Tasks\Remediation
2017-11-16 11:13 - 2017-11-16 14:43 - 002392576 _____ (Farbar) C:\Users\Kerry\Desktop\FRST64 (1).exe
2017-11-16 11:11 - 2017-11-16 11:11 - 002392576 _____ (Farbar) C:\Users\Kerry\Downloads\FRST64 (1).exe
2017-11-15 09:23 - 2017-11-15 09:23 - 019053215 _____ C:\Users\Kerry\Downloads\MFL39760238-Eng%2BSpan.pdf
2017-11-15 03:11 - 2017-10-15 11:31 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts.original
2017-11-14 21:19 - 2017-11-14 21:19 - 000000000 ____D C:\Users\Kerry\Documents\eagle
2017-11-14 21:17 - 2017-11-14 21:17 - 000942749 _____ C:\Users\Kerry\Downloads\LM317+Benchtop+PSU (1).sch
2017-11-14 21:16 - 2017-11-15 03:22 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\Eagle
2017-11-14 21:16 - 2017-11-14 21:16 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\CadSoft
2017-11-14 21:14 - 2017-11-14 21:14 - 000000828 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAGLE.lnk
2017-11-14 21:13 - 2017-11-14 21:14 - 000000000 ____D C:\Program Files\EAGLE 8.4.1
2017-11-14 21:11 - 2017-11-14 21:11 - 107898120 _____ (Autodesk, Inc. ) C:\Users\Kerry\Downloads\Autodesk_EAGLE_8.4.1_English_Win_64Bit.exe
2017-11-14 21:10 - 2017-11-14 21:10 - 000942749 _____ C:\Users\Kerry\Downloads\LM317+Benchtop+PSU.sch
2017-11-14 19:31 - 2017-10-18 01:31 - 000395976 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-11-14 19:31 - 2017-10-18 00:45 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-11-14 19:31 - 2017-10-17 20:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-14 19:31 - 2017-10-17 20:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-14 19:31 - 2017-10-16 17:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-14 19:31 - 2017-10-16 16:34 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-14 19:31 - 2017-10-16 15:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-14 19:31 - 2017-10-14 02:38 - 025731584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-11-14 19:31 - 2017-10-14 02:23 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-11-14 19:31 - 2017-10-14 02:23 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-11-14 19:31 - 2017-10-14 02:13 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-11-14 19:31 - 2017-10-14 02:12 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-11-14 19:31 - 2017-10-14 02:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-11-14 19:31 - 2017-10-14 02:11 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-11-14 19:31 - 2017-10-14 02:11 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-11-14 19:31 - 2017-10-14 02:11 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-11-14 19:31 - 2017-10-14 02:09 - 005979648 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-11-14 19:31 - 2017-10-14 02:05 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-11-14 19:31 - 2017-10-14 02:04 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-11-14 19:31 - 2017-10-14 02:02 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-11-14 19:31 - 2017-10-14 02:01 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-11-14 19:31 - 2017-10-14 02:01 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-11-14 19:31 - 2017-10-14 02:01 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-11-14 19:31 - 2017-10-14 02:00 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-11-14 19:31 - 2017-10-14 01:55 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-11-14 19:31 - 2017-10-14 01:53 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-11-14 19:31 - 2017-10-14 01:47 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-11-14 19:31 - 2017-10-14 01:47 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-11-14 19:31 - 2017-10-14 01:46 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-11-14 19:31 - 2017-10-14 01:43 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-11-14 19:31 - 2017-10-14 01:43 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-11-14 19:31 - 2017-10-14 01:41 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-11-14 19:31 - 2017-10-14 01:40 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-11-14 19:31 - 2017-10-14 01:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-11-14 19:31 - 2017-10-14 01:30 - 015266816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-11-14 19:31 - 2017-10-14 01:30 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-11-14 19:31 - 2017-10-14 01:29 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-11-14 19:31 - 2017-10-14 01:28 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-11-14 19:31 - 2017-10-14 01:27 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-11-14 19:31 - 2017-10-14 01:21 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-11-14 19:31 - 2017-10-14 01:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-11-14 19:31 - 2017-10-14 01:09 - 001544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-11-14 19:31 - 2017-10-14 01:03 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-11-14 19:31 - 2017-10-14 00:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-11-14 19:31 - 2017-10-14 00:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-11-14 19:31 - 2017-10-14 00:53 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-11-14 19:31 - 2017-10-14 00:52 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-11-14 19:31 - 2017-10-14 00:52 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-11-14 19:31 - 2017-10-14 00:51 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-11-14 19:31 - 2017-10-14 00:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-11-14 19:31 - 2017-10-14 00:47 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-11-14 19:31 - 2017-10-14 00:47 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-11-14 19:31 - 2017-10-14 00:46 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-11-14 19:31 - 2017-10-14 00:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-11-14 19:31 - 2017-10-14 00:45 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-11-14 19:31 - 2017-10-14 00:45 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-11-14 19:31 - 2017-10-14 00:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-11-14 19:31 - 2017-10-14 00:35 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-11-14 19:31 - 2017-10-14 00:35 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-11-14 19:31 - 2017-10-14 00:34 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-11-14 19:31 - 2017-10-14 00:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-11-14 19:31 - 2017-10-14 00:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-11-14 19:31 - 2017-10-14 00:32 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-11-14 19:31 - 2017-10-14 00:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-11-14 19:31 - 2017-10-14 00:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-11-14 19:31 - 2017-10-14 00:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-11-14 19:31 - 2017-10-14 00:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-11-14 19:31 - 2017-10-14 00:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-11-14 19:31 - 2017-10-14 00:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-11-14 19:31 - 2017-10-14 00:23 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-11-14 19:31 - 2017-10-14 00:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-11-14 19:31 - 2017-10-14 00:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-11-14 19:31 - 2017-10-14 00:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-11-14 19:31 - 2017-10-11 18:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-14 19:31 - 2017-10-11 18:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-14 19:31 - 2017-10-11 18:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-14 19:31 - 2017-10-11 18:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-14 19:31 - 2017-10-11 18:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-14 19:31 - 2017-10-11 18:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-14 19:31 - 2017-10-11 18:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-14 19:31 - 2017-10-11 18:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-14 19:31 - 2017-10-11 18:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-14 19:31 - 2017-10-11 18:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-14 19:31 - 2017-10-11 18:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-14 19:31 - 2017-10-11 18:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-14 19:31 - 2017-10-11 18:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-14 19:31 - 2017-10-11 18:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-14 19:31 - 2017-10-11 18:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-14 19:31 - 2017-10-11 18:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-14 19:31 - 2017-10-11 18:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-14 19:31 - 2017-10-11 18:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-14 19:31 - 2017-10-11 18:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-14 19:31 - 2017-10-11 18:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-11-14 19:31 - 2017-09-07 07:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-11-14 19:23 - 2017-10-17 20:34 - 000134376 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-11-14 19:23 - 2017-10-17 20:30 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-11-14 19:23 - 2017-10-15 16:04 - 000407392 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 002023936 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2017-11-14 19:23 - 2017-10-04 07:04 - 001570304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 000603648 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-11-14 19:23 - 2017-10-04 07:04 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-11-14 07:20 - 2017-11-14 07:20 - 000017157 _____ C:\Users\Kerry\Downloads\Statement_201710.pdf
2017-11-12 05:55 - 2017-11-12 05:55 - 002190552 _____ C:\Users\Kerry\Downloads\appmanagersetup_2.0_b4_292.exe
2017-11-12 05:55 - 2017-11-12 05:55 - 001358552 _____ (Reason Software Company Inc.) C:\Users\Kerry\Downloads\unchecky_setup.exe
2017-11-12 05:54 - 2017-11-12 05:54 - 011566896 _____ C:\Users\Kerry\Downloads\CryptoPreventSetupV8.zip
2017-11-12 05:53 - 2017-11-12 05:53 - 002856736 _____ (MyCity) C:\Users\Kerry\Downloads\MCShield-Setup.exe
2017-11-12 05:45 - 2017-11-12 05:45 - 002392576 _____ (Farbar) C:\Users\Kerry\Downloads\FRST64.exe
2017-11-12 05:39 - 2017-11-12 05:39 - 000448512 _____ (OldTimer Tools) C:\Users\Kerry\Downloads\TFC.exe
2017-11-12 05:34 - 2017-11-12 05:34 - 000010789 _____ C:\Users\Kerry\Downloads\zoek-results-2.txt
2017-11-12 05:32 - 2017-11-12 05:32 - 000051400 _____ C:\Users\Kerry\Downloads\zoek-results.txt
2017-11-12 02:17 - 2017-11-12 05:46 - 005475419 _____ C:\Users\Kerry\Downloads\lirc (1).zip
2017-11-12 02:17 - 2017-11-12 02:17 - 005460690 _____ C:\Users\Kerry\Downloads\lirc.zip
2017-11-09 12:24 - 2017-11-09 12:24 - 000000045 _____ C:\Users\Kerry\activity.txt
2017-11-09 12:23 - 2017-11-09 12:23 - 000000045 _____ C:\Users\Kerry\sctivity.txt
2017-11-09 11:12 - 2017-11-09 11:12 - 000002381 _____ C:\Users\Kerry\Downloads\Report.txt
2017-11-08 20:11 - 2017-11-08 20:13 - 000000000 ____D C:\Users\Kerry\AppData\Local\Arduino15
2017-11-08 20:11 - 2017-11-08 20:11 - 000000000 ____D C:\Users\Kerry\Documents\Arduino
2017-11-08 20:11 - 2017-11-08 20:11 - 000000000 ____D C:\ProgramData\Oracle
2017-11-08 20:10 - 2017-11-08 20:10 - 000001003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arduino.lnk
2017-11-08 20:10 - 2017-11-08 20:10 - 000000991 _____ C:\Users\Public\Desktop\Arduino.lnk
2017-11-08 20:06 - 2017-11-08 20:10 - 000000000 ____D C:\Program Files (x86)\Arduino
2017-11-08 20:04 - 2017-11-08 20:05 - 094774384 _____ C:\Users\Kerry\Downloads\arduino-1.8.5-windows.exe
2017-11-07 20:36 - 2017-11-07 20:36 - 000002401 _____ C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Etcher.lnk
2017-11-07 20:36 - 2017-11-07 20:36 - 000002393 _____ C:\Users\Kerry\Desktop\Etcher.lnk
2017-11-07 20:36 - 2017-11-07 20:36 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\etcher
2017-11-07 20:35 - 2017-11-07 20:35 - 041365728 _____ (Resin Inc.) C:\Users\Kerry\Downloads\Etcher-Setup-1.1.2-x64.exe
2017-11-06 16:43 - 2017-11-06 16:50 - 598240307 _____ C:\Users\Kerry\Downloads\Armbian_5.30_Orangepipc_Ubuntu_xenial_default_3.4.113_desktop.7z
2017-11-06 16:17 - 2017-11-06 16:17 - 001954488 _____ C:\Users\Kerry\Downloads\Report.pdf
2017-11-06 09:44 - 2017-11-06 09:44 - 000000495 _____ C:\Users\Kerry\Downloads\Upcoming Appointment.ics
2017-11-04 23:00 - 2017-11-04 23:00 - 000142138 _____ C:\Users\Kerry\Downloads\MSDS_ENG_sphere_SBX02 (1).pdf
2017-11-04 22:59 - 2017-11-04 22:59 - 000142138 _____ C:\Users\Kerry\Downloads\MSDS_ENG_sphere_SBX02.pdf
2017-11-03 19:50 - 2017-11-16 14:05 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-11-03 19:50 - 2017-11-03 19:50 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-11-03 19:49 - 2017-11-16 14:05 - 000045504 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-10-27 21:51 - 2017-10-27 21:51 - 000000000 ____D C:\Users\Kerry\Downloads\winlirc-0.9.0i
2017-10-27 21:46 - 2017-10-27 21:48 - 000000000 ____D C:\Users\Kerry\Downloads\WinLIRC
2017-10-27 21:44 - 2017-10-27 21:44 - 000000000 ____D C:\Users\Kerry\Downloads\Lire 0.9
2017-10-27 21:43 - 2017-10-27 21:44 - 002730259 _____ C:\Users\Kerry\Downloads\winlirc-0.9.0i.zip
2017-10-27 21:32 - 2017-10-27 21:32 - 000000000 ____D C:\Users\Kerry\Downloads\lubusb02
2017-10-27 21:03 - 2017-10-27 21:03 - 000000000 ____D C:\Users\Kerry\Downloads\libusbo.dll
2017-10-27 21:02 - 2017-10-27 21:02 - 000000000 ____D C:\Users\Kerry\Downloads\3) INSTALL READYDRIVER
2017-10-27 21:02 - 2017-10-27 21:02 - 000000000 ____D C:\Users\Kerry\Downloads\2) INSTALL LIBUSB
2017-10-27 21:02 - 2017-10-27 21:02 - 000000000 ____D C:\Users\Kerry\Downloads\1) ADD HARDWARE WIZARD
2017-10-27 21:00 - 2017-10-27 21:00 - 000753332 _____ C:\Users\Kerry\Downloads\LIBUSB64Fix.zip
2017-10-27 20:24 - 2017-10-27 20:24 - 000338175 _____ C:\Users\Kerry\Downloads\libusb-win32-src-1.2.1.0.zip
2017-10-27 16:28 - 2017-10-27 16:29 - 000000000 ____D C:\Users\Kerry\Downloads\CommandIR_Utils_0.2
2017-10-27 14:40 - 2017-10-27 14:40 - 002523528 _____ C:\Users\Kerry\Downloads\lirc-0.10.0.tar.bz2
2017-10-27 14:38 - 2017-10-27 14:38 - 000003773 _____ C:\Users\Kerry\Downloads\README.md
2017-10-27 12:19 - 2017-10-27 12:26 - 000000000 ____D C:\Users\Kerry\Downloads\Kung Fu Yoga (2017) 720p BluRay x264 [Dual-Audio][Hindi 5.1 - English 5.1] ESubs - Downloadhub
2017-10-27 12:10 - 2017-11-16 14:43 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\uTorrent
2017-10-27 12:10 - 2017-11-16 14:05 - 000000000 ____D C:\Users\Kerry\AppData\LocalLow\uTorrent
2017-10-27 12:10 - 2017-10-27 12:10 - 000000793 _____ C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2017-10-27 12:00 - 2017-10-27 12:16 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\BitTorrent
2017-10-27 12:00 - 2017-10-27 12:01 - 000000000 ____D C:\Users\Kerry\AppData\LocalLow\BitTorrent
2017-10-27 12:00 - 2017-10-27 12:00 - 000000813 _____ C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2017-10-27 11:11 - 2017-10-27 12:08 - 000000000 ____D C:\Users\Kerry\Downloads\Yoga
2017-10-27 09:01 - 2017-10-27 09:02 - 000070613 _____ C:\Users\Kerry\Downloads\CommandIR_Utils_0.2.zip
2017-10-27 08:53 - 2017-10-27 08:53 - 025106645 _____ C:\Users\Kerry\Downloads\IR_Reader.rar
2017-10-24 09:38 - 2017-10-24 09:38 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\ABBYY
2017-10-23 17:18 - 2017-10-23 17:20 - 050138704 _____ C:\Users\Kerry\Downloads\mpnx_5_1-win-5_1_1-ea23_2 (1).exe
2017-10-23 12:41 - 2017-10-23 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX410 series
2017-10-23 12:39 - 2017-10-23 12:39 - 032730752 _____ C:\Users\Kerry\Downloads\mp68-win-mx410-1_02-ea24 (1).exe
2017-10-23 12:32 - 2017-10-23 12:35 - 050138704 _____ C:\Users\Kerry\Downloads\mpnx_5_1-win-5_1_1-ea23_2.exe
2017-10-23 12:25 - 2017-10-23 12:25 - 003210246 _____ C:\Users\Kerry\Downloads\Unconfirmed 100924.crdownload
2017-10-22 15:24 - 2016-05-12 09:18 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-10-22 11:36 - 2017-10-22 11:36 - 000000000 ____D C:\ProgramData\TechSmith
2017-10-22 11:31 - 2017-10-22 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SnagIt 8
2017-10-22 11:31 - 2017-10-22 11:31 - 000000000 ____D C:\Program Files (x86)\TechSmith
2017-10-22 11:15 - 2017-10-22 11:15 - 000001657 _____ C:\Users\Kerry\Desktop\ImageResizer.exe - Shortcut.lnk
2017-10-21 11:15 - 2017-10-21 11:15 - 000000000 ____D C:\Users\Kerry\Tracing
2017-10-21 11:10 - 2017-10-21 11:10 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2017-10-21 11:10 - 2017-10-21 11:10 - 000001458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2017-10-21 11:10 - 2017-10-21 11:10 - 000001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2017-10-21 11:10 - 2017-10-21 11:10 - 000001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2017-10-21 11:10 - 2017-10-21 11:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2017-10-21 11:10 - 2017-10-21 11:10 - 000000000 ____D C:\Windows\en
2017-10-21 11:10 - 2014-03-31 20:06 - 000058056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
2017-10-21 11:09 - 2017-10-21 11:10 - 000000000 ____D C:\Program Files\Windows Live
2017-10-21 11:09 - 2017-10-21 11:10 - 000000000 ____D C:\Program Files (x86)\Windows Live
2017-10-21 11:09 - 2010-06-02 03:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-10-21 11:09 - 2010-06-02 03:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-10-21 11:09 - 2010-06-02 03:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-10-21 11:09 - 2010-06-02 03:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-10-21 11:09 - 2010-05-26 10:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-10-21 11:09 - 2010-05-26 10:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-10-21 11:09 - 2010-05-26 10:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-10-21 11:09 - 2010-05-26 10:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-10-21 11:08 - 2009-09-04 16:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-10-21 11:08 - 2009-09-04 16:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-10-21 11:07 - 2017-11-16 14:05 - 000000000 ___RD C:\Users\Kerry\OneDrive
2017-10-21 11:07 - 2017-10-21 11:07 - 000002136 _____ C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-10-21 11:07 - 2017-10-21 11:07 - 000002100 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-10-21 11:07 - 2017-10-21 11:07 - 000002100 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-10-21 11:07 - 2017-10-21 11:07 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2017-10-21 11:07 - 2006-11-29 12:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-10-21 11:07 - 2006-11-29 12:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-10-21 11:06 - 2017-10-21 11:11 - 000000000 ____D C:\Users\Kerry\AppData\Local\Windows Live
2017-10-21 11:06 - 2017-10-21 11:06 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-10-21 11:05 - 2017-10-21 11:06 - 137329840 _____ (Microsoft Corporation) C:\Users\Kerry\Downloads\wlsetup-all.exe
2017-10-21 10:33 - 2017-10-21 10:33 - 000000000 ____D C:\Users\Kerry\AppData\Local\Brice_Lambson
2017-10-21 10:32 - 2017-11-14 21:14 - 000000000 ____D C:\ProgramData\Package Cache
2017-10-21 10:32 - 2017-10-21 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Resizer for Windows
2017-10-21 10:32 - 2017-10-21 10:32 - 000000000 ____D C:\Program Files\Image Resizer for Windows
2017-10-21 10:32 - 2017-10-21 10:32 - 000000000 ____D C:\Program Files (x86)\Image Resizer for Windows
2017-10-21 10:31 - 2017-10-21 10:31 - 000922057 _____ (Brice Lambson) C:\Users\Kerry\Downloads\ImageResizerSetup-3.0 (1).exe
2017-10-21 10:29 - 2017-10-21 10:29 - 000001541 _____ C:\Users\Kerry\Desktop\PictureResize.exe - Shortcut.lnk
2017-10-21 08:02 - 2017-10-21 08:02 - 000003226 _____ C:\Windows\System32\Tasks\{D6C61AE3-E101-45A8-85FC-5B698BD7ADE8}
2017-10-20 15:39 - 2017-10-20 15:39 - 000672123 _____ C:\Users\Kerry\Downloads\JPG013 (1).pdf
2017-10-20 15:29 - 2017-10-20 15:29 - 000238380 _____ C:\Users\Kerry\Downloads\JCM005.pdf
2017-10-20 15:27 - 2017-10-20 15:27 - 000672123 _____ C:\Users\Kerry\Downloads\JPG013.pdf
2017-10-20 10:45 - 2017-11-15 03:23 - 000000000 ____D C:\Windows\system32\appraiser
2017-10-20 10:45 - 2017-10-20 10:45 - 000000000 ___SD C:\Windows\system32\CompatTel
2017-10-20 10:00 - 2012-07-25 21:08 - 000744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2017-10-20 10:00 - 2012-07-25 21:08 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2017-10-20 10:00 - 2012-07-25 21:08 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2017-10-20 10:00 - 2012-07-25 21:08 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2017-10-20 10:00 - 2012-07-25 21:08 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2017-10-20 10:00 - 2012-07-25 20:26 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2017-10-20 10:00 - 2012-07-25 20:26 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2017-10-20 10:00 - 2012-06-02 08:57 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2017-10-19 20:09 - 2017-10-19 20:09 - 000003244 _____ C:\Windows\System32\Tasks\{0D64264D-D901-4EB0-B610-18C60BE2590C}
2017-10-19 20:06 - 2017-10-20 12:01 - 000000000 ____D C:\Program Files\PopCap Games
2017-10-19 20:06 - 2017-10-19 20:06 - 000000000 ____D C:\Program Files (x86)\TryMedia
2017-10-19 20:04 - 2017-10-19 20:04 - 000003016 _____ C:\Windows\System32\Tasks\{69325FE3-CE27-498F-B696-0CD22EDB1E17}
2017-10-19 20:03 - 2017-10-19 20:03 - 000003016 _____ C:\Windows\System32\Tasks\{FAD7673B-18F1-4862-91F8-C457268CE82A}
2017-10-19 20:03 - 2017-10-19 20:03 - 000003016 _____ C:\Windows\System32\Tasks\{BEF1E75A-721D-4AE9-9278-FFFDBA736CF9}
2017-10-19 20:02 - 2017-10-19 20:05 - 000000013 _____ C:\Windows\popcinfo.dat
2017-10-18 04:24 - 2011-03-11 00:33 - 002565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2017-10-18 04:24 - 2011-03-11 00:30 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2017-10-18 04:23 - 2014-07-08 20:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2017-10-18 04:23 - 2014-07-08 20:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2017-10-18 04:23 - 2014-07-08 20:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2017-10-18 04:23 - 2014-07-08 20:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2017-10-18 04:23 - 2014-07-08 20:03 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2017-10-18 04:23 - 2014-07-08 19:31 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2017-10-18 04:23 - 2014-07-08 19:31 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2017-10-18 04:23 - 2014-07-08 19:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2017-10-18 04:23 - 2014-07-08 19:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2017-10-18 04:23 - 2014-07-08 19:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2017-10-18 04:23 - 2013-11-26 02:16 - 003419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-10-18 04:23 - 2013-11-22 16:48 - 003928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-10-18 04:23 - 2012-07-06 14:07 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2017-10-18 04:23 - 2011-04-27 21:54 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2017-10-18 04:23 - 2011-03-11 00:41 - 000410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2017-10-18 04:23 - 2011-03-11 00:41 - 000166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2017-10-18 04:23 - 2011-03-11 00:41 - 000148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2017-10-18 04:23 - 2011-03-11 00:41 - 000107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2017-10-18 04:23 - 2011-03-11 00:41 - 000027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2017-10-18 04:23 - 2011-03-10 23:33 - 001699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2017-10-18 04:23 - 2011-03-10 23:31 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2017-10-18 04:21 - 2017-09-13 09:13 - 004001512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-10-18 04:21 - 2017-09-13 09:13 - 003945704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-10-18 04:21 - 2017-09-13 09:10 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000830464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-10-18 04:21 - 2017-09-13 09:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 09:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 08:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-10-18 04:21 - 2017-09-13 08:47 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-10-18 04:21 - 2017-09-13 08:46 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-10-18 04:21 - 2017-09-13 08:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-10-18 04:21 - 2017-09-13 08:46 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-10-18 04:21 - 2017-09-08 09:10 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-10-18 04:21 - 2017-09-08 08:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-18 04:21 - 2017-09-08 08:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-18 04:21 - 2017-09-07 09:12 - 002755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2017-10-18 04:21 - 2017-08-19 09:10 - 003209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-10-18 04:21 - 2017-08-19 09:10 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2017-10-18 04:21 - 2017-08-19 09:10 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2017-10-18 04:21 - 2017-08-19 09:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2017-10-18 04:21 - 2017-08-19 08:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2017-10-18 04:21 - 2017-08-19 08:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2017-10-18 04:21 - 2017-08-16 09:10 - 000629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-10-18 04:21 - 2017-08-15 09:10 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-18 04:21 - 2017-08-15 09:10 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-10-18 04:21 - 2017-08-14 11:35 - 002150912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2017-10-18 04:21 - 2017-08-14 11:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-10-18 04:21 - 2017-08-14 11:35 - 000303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2017-10-18 04:21 - 2017-08-14 11:35 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2017-10-18 04:21 - 2017-08-14 11:35 - 000128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2017-10-18 04:21 - 2017-08-13 15:30 - 001401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2017-10-18 04:21 - 2017-08-11 00:19 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2017-10-18 04:21 - 2017-08-11 00:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2017-10-18 04:21 - 2017-08-11 00:09 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2017-10-18 04:21 - 2017-08-11 00:03 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2017-10-18 04:21 - 2017-08-11 00:01 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-10-18 04:21 - 2017-07-21 08:26 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-10-18 04:21 - 2017-07-21 08:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
2017-10-18 04:21 - 2017-07-21 08:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-10-18 04:21 - 2017-07-21 08:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-10-18 04:21 - 2017-07-14 09:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-10-18 04:21 - 2017-07-14 08:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-10-18 04:21 - 2017-07-14 08:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2017-10-18 04:21 - 2017-07-07 09:10 - 000973312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-10-18 04:21 - 2017-07-01 07:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-10-18 04:21 - 2017-06-12 16:29 - 001227264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2017-10-18 04:21 - 2017-06-12 16:29 - 000444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2017-10-18 04:21 - 2017-06-12 16:29 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2017-10-18 04:21 - 2017-06-12 16:28 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll
2017-10-18 04:21 - 2017-06-12 16:06 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2017-10-18 04:21 - 2017-06-12 16:06 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe
2017-10-18 04:21 - 2017-06-12 16:06 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2017-10-18 04:21 - 2017-05-20 22:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-10-18 04:21 - 2017-05-12 10:25 - 001251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-10-18 04:21 - 2017-05-12 09:58 - 001648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-10-18 04:21 - 2017-05-12 09:58 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-10-18 04:21 - 2017-05-10 09:16 - 000091368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MigAutoPlay.exe
2017-10-18 04:21 - 2017-05-10 09:12 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-10-18 04:21 - 2017-05-10 09:00 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-10-18 04:21 - 2017-05-10 09:00 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-10-18 04:21 - 2017-05-10 09:00 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-10-18 04:21 - 2017-05-10 09:00 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-10-18 04:21 - 2017-04-21 09:15 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-10-18 04:21 - 2017-04-17 09:12 - 000581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-10-18 04:21 - 2017-04-12 09:26 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-10-18 04:21 - 2017-04-12 09:25 - 001176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-10-18 04:21 - 2017-04-12 09:25 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-10-18 04:21 - 2017-04-12 09:25 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-10-18 04:21 - 2017-03-30 08:58 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
2017-10-18 04:21 - 2017-03-10 10:20 - 001508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-10-18 04:21 - 2017-03-10 10:20 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-10-18 04:21 - 2017-03-07 10:17 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2017-10-18 04:21 - 2017-03-03 19:14 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-10-18 04:21 - 2017-03-03 19:14 - 000077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2017-10-18 04:21 - 2017-02-09 10:14 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2017-10-18 04:21 - 2017-02-09 10:14 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-10-18 04:21 - 2017-02-09 10:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2017-10-18 04:21 - 2017-02-09 09:51 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2017-10-18 04:21 - 2017-01-13 11:45 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-10-18 04:21 - 2017-01-13 11:45 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2017-10-18 04:21 - 2017-01-11 11:43 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-10-18 04:21 - 2017-01-11 11:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2017-10-18 04:21 - 2016-11-20 10:19 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2017-10-18 04:21 - 2016-11-10 10:19 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-18 04:21 - 2016-11-09 10:17 - 002365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2017-10-18 04:21 - 2016-11-09 10:17 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2017-10-18 04:21 - 2016-11-09 10:17 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2017-10-18 04:21 - 2016-11-09 10:17 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2017-10-18 04:21 - 2016-11-09 09:55 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2017-10-18 04:21 - 2016-10-11 09:18 - 001027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2017-10-18 04:21 - 2016-10-11 09:18 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2017-10-18 04:21 - 2016-10-11 09:18 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-10-18 04:21 - 2016-10-11 09:18 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2017-10-18 04:21 - 2016-10-11 09:18 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2017-10-18 04:21 - 2016-10-11 07:33 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2017-10-18 04:21 - 2016-10-11 07:18 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2017-10-18 04:21 - 2016-10-11 07:06 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2017-10-18 04:21 - 2016-10-07 09:12 - 002291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2017-10-18 04:21 - 2016-09-12 14:49 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2017-10-18 04:21 - 2016-09-08 14:34 - 000208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2017-10-18 04:21 - 2016-09-08 14:34 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2017-10-18 04:21 - 2016-08-06 09:15 - 001178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-10-18 04:21 - 2016-08-06 09:15 - 000249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2017-10-18 04:21 - 2016-08-06 09:15 - 000214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-10-18 04:21 - 2016-08-06 09:15 - 000146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2017-10-18 04:21 - 2016-08-06 09:15 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2017-10-18 04:21 - 2016-08-06 08:53 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2017-10-18 04:21 - 2016-08-06 08:53 - 000012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2017-10-18 04:21 - 2016-08-06 08:53 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-10-18 04:21 - 2016-06-14 09:21 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2017-10-18 04:21 - 2016-05-12 07:04 - 000249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2017-10-18 04:20 - 2017-09-13 09:33 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-10-18 04:20 - 2017-09-13 09:32 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-18 04:20 - 2017-09-13 09:32 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-10-18 04:20 - 2017-09-13 09:32 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-18 04:20 - 2017-09-13 09:32 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-18 04:20 - 2017-09-13 09:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000886272 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-10-18 04:20 - 2017-09-13 09:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-10-18 04:20 - 2017-09-13 09:05 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-18 04:20 - 2017-09-13 09:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-10-18 04:20 - 2017-09-13 09:00 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-10-18 04:20 - 2017-09-13 09:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-10-18 04:20 - 2017-09-13 09:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-10-18 04:20 - 2017-09-13 08:57 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-10-18 04:20 - 2017-09-13 08:56 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-10-18 04:20 - 2017-09-13 08:53 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-18 04:20 - 2017-09-13 08:53 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-18 04:20 - 2017-09-13 08:53 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-18 04:20 - 2017-09-13 08:52 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-10-18 04:20 - 2017-09-13 08:52 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-18 04:20 - 2017-09-08 09:30 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-18 04:20 - 2017-09-07 09:31 - 002851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2017-10-18 04:20 - 2017-09-07 08:55 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-18 04:20 - 2017-09-07 08:55 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-18 04:20 - 2017-09-07 08:55 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-18 04:20 - 2017-08-19 09:28 - 004121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-10-18 04:20 - 2017-08-19 09:28 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-18 04:20 - 2017-08-19 09:28 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-10-18 04:20 - 2017-08-19 09:28 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-10-18 04:20 - 2017-08-19 09:08 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-10-18 04:20 - 2017-08-19 09:08 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-10-18 04:20 - 2017-08-16 09:29 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-10-18 04:20 - 2017-08-15 09:29 - 014182400 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-18 04:20 - 2017-08-15 09:29 - 001867264 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-10-18 04:20 - 2017-08-14 11:35 - 003203584 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2017-10-18 04:20 - 2017-08-14 11:35 - 001032192 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-18 04:20 - 2017-08-14 11:35 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2017-10-18 04:20 - 2017-08-14 11:35 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2017-10-18 04:20 - 2017-08-14 11:35 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-10-18 04:20 - 2017-08-14 11:34 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2017-10-18 04:20 - 2017-08-13 15:45 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-10-18 04:20 - 2017-08-13 15:37 - 002144256 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-10-18 04:20 - 2017-08-11 00:35 - 002065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000757248 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2017-10-18 04:20 - 2017-08-11 00:35 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2017-10-18 04:20 - 2017-08-11 00:34 - 000971776 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-10-18 04:20 - 2017-08-11 00:34 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-10-18 04:20 - 2017-08-11 00:34 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2017-10-18 04:20 - 2017-08-11 00:34 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-10-18 04:20 - 2017-08-11 00:20 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-10-18 04:20 - 2017-08-11 00:20 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-10-18 04:20 - 2017-08-11 00:12 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2017-10-18 04:20 - 2017-08-11 00:00 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-10-18 04:20 - 2017-08-10 23:58 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2017-10-18 04:20 - 2017-07-29 08:56 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-10-18 04:20 - 2017-07-14 09:29 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-10-18 04:20 - 2017-07-14 09:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-10-18 04:20 - 2017-07-14 08:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-10-18 04:20 - 2017-07-08 09:34 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-10-18 04:20 - 2017-07-07 09:33 - 000363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-10-18 04:20 - 2017-07-07 09:29 - 001143296 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2017-10-18 04:20 - 2017-07-05 22:56 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2017-10-18 04:20 - 2017-06-15 14:23 - 000753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-10-18 04:20 - 2017-06-12 16:49 - 001363456 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2017-10-18 04:20 - 2017-06-12 16:49 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2017-10-18 04:20 - 2017-06-12 16:49 - 000475136 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2017-10-18 04:20 - 2017-06-12 16:49 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2017-10-18 04:20 - 2017-06-12 16:14 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2017-10-18 04:20 - 2017-06-12 16:14 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2017-10-18 04:20 - 2017-06-12 16:14 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2017-10-18 04:20 - 2017-06-02 02:10 - 000733696 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-10-18 04:20 - 2017-05-29 22:56 - 001895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-10-18 04:20 - 2017-05-29 22:56 - 000377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-10-18 04:20 - 2017-05-29 22:56 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-10-18 04:20 - 2017-05-20 22:24 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-10-18 04:20 - 2017-05-16 09:35 - 000986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-10-18 04:20 - 2017-05-16 09:35 - 000265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-10-18 04:20 - 2017-05-16 09:30 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-10-18 04:20 - 2017-05-10 09:33 - 000091368 _____ (Microsoft Corporation) C:\Windows\system32\MigAutoPlay.exe
2017-10-18 04:20 - 2017-05-10 09:29 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-10-18 04:20 - 2017-05-10 09:29 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-10-18 04:20 - 2017-05-10 09:29 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-10-18 04:20 - 2017-05-10 09:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-10-18 04:20 - 2017-05-10 09:14 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-18 04:20 - 2017-05-10 09:13 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-10-18 04:20 - 2017-05-10 09:13 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-10-18 04:20 - 2017-05-10 09:13 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-10-18 04:20 - 2017-05-10 09:13 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-10-18 04:20 - 2017-05-10 09:13 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-10-18 04:20 - 2017-05-10 09:13 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-10-18 04:20 - 2017-05-07 09:33 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2017-10-18 04:20 - 2017-05-07 09:29 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2017-10-18 04:20 - 2017-04-21 09:34 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-10-18 04:20 - 2017-04-17 09:37 - 000876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-10-18 04:20 - 2017-04-12 09:32 - 001483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-10-18 04:20 - 2017-04-12 09:32 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-10-18 04:20 - 2017-04-12 09:32 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-10-18 04:20 - 2017-04-12 09:32 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-10-18 04:20 - 2017-04-04 08:53 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-10-18 04:20 - 2017-03-30 09:03 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2017-10-18 04:20 - 2017-03-10 10:32 - 001389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-10-18 04:20 - 2017-03-10 10:32 - 000300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-10-18 04:20 - 2017-03-10 09:57 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-10-18 04:20 - 2017-03-10 09:55 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-10-18 04:20 - 2017-03-10 09:55 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-10-18 04:20 - 2017-03-07 10:30 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-10-18 04:20 - 2017-03-03 19:27 - 001574912 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-10-18 04:20 - 2017-03-03 19:27 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2017-10-18 04:20 - 2017-02-09 10:32 - 000769536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-10-18 04:20 - 2017-02-09 10:32 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2017-10-18 04:20 - 2017-02-09 10:32 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2017-10-18 04:20 - 2017-02-09 10:31 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2017-10-18 04:20 - 2017-02-09 10:31 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-10-18 04:20 - 2017-01-13 12:00 - 000976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-10-18 04:20 - 2017-01-13 12:00 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-10-18 04:20 - 2017-01-11 12:01 - 001887744 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-10-18 04:20 - 2017-01-11 12:01 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2017-10-18 04:20 - 2016-11-21 12:12 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2017-10-18 04:20 - 2016-11-20 08:07 - 000467392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-18 04:20 - 2016-11-10 10:32 - 001009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-18 04:20 - 2016-11-09 10:41 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2017-10-18 04:20 - 2016-11-09 10:33 - 003244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2017-10-18 04:20 - 2016-11-09 10:33 - 001941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-10-18 04:20 - 2016-11-09 10:33 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2017-10-18 04:20 - 2016-11-09 10:33 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2017-10-18 04:20 - 2016-11-09 10:33 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2017-10-18 04:20 - 2016-11-09 10:02 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2017-10-18 04:20 - 2016-10-11 09:32 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2017-10-18 04:20 - 2016-10-11 09:31 - 001148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2017-10-18 04:20 - 2016-10-11 09:31 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2017-10-18 04:20 - 2016-10-11 09:31 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-10-18 04:20 - 2016-10-11 09:31 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2017-10-18 04:20 - 2016-10-11 09:31 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2017-10-18 04:20 - 2016-10-11 08:55 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2017-10-18 04:20 - 2016-10-11 07:17 - 000419648 _____ C:\Windows\system32\locale.nls
2017-10-18 04:20 - 2016-10-08 07:06 - 000633296 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-10-18 04:20 - 2016-10-07 09:32 - 003649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2017-10-18 04:20 - 2016-10-05 08:54 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2017-10-18 04:20 - 2016-09-15 08:56 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2017-10-18 04:20 - 2016-09-12 15:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2017-10-18 04:20 - 2016-09-08 14:34 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2017-10-18 04:20 - 2016-09-08 14:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2017-10-18 04:20 - 2016-09-08 08:55 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2017-10-18 04:20 - 2016-09-08 08:55 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-10-18 04:20 - 2016-08-22 10:19 - 001386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-10-18 04:20 - 2016-08-12 10:26 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 002023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 000347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2017-10-18 04:20 - 2016-08-06 09:31 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2017-10-18 04:20 - 2016-08-06 09:01 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2017-10-18 04:20 - 2016-08-06 09:01 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2017-10-18 04:20 - 2016-06-14 11:16 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2017-10-18 04:20 - 2016-06-14 11:16 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2017-10-18 04:20 - 2016-06-14 11:11 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2017-10-18 04:20 - 2016-06-14 09:15 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2017-10-18 04:20 - 2016-06-14 09:00 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2017-10-18 04:20 - 2016-06-14 09:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2017-10-18 04:20 - 2016-05-12 07:05 - 000297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-10-18 04:20 - 2016-04-14 07:49 - 000603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2017-10-18 04:20 - 2016-04-14 07:21 - 000647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-10-18 04:20 - 2015-12-08 15:54 - 002285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-10-18 04:20 - 2015-12-08 13:07 - 002777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-10-18 04:20 - 2015-07-30 12:06 - 002565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-10-18 04:20 - 2015-07-30 11:57 - 001987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2017-10-18 04:15 - 2016-04-08 22:20 - 001230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2017-10-18 04:15 - 2016-04-08 21:52 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-10-18 04:15 - 2015-02-03 21:16 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-10-18 04:15 - 2015-02-03 20:54 - 000417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2017-10-18 03:28 - 2015-07-30 07:13 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-18 03:28 - 2015-07-30 07:13 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-18 03:27 - 2013-10-14 17:00 - 000028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2017-10-18 03:23 - 2017-10-18 03:23 - 000942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2017-10-18 03:23 - 2017-10-18 03:23 - 000616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2017-10-18 03:23 - 2017-10-18 03:23 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2017-10-18 03:23 - 2017-10-18 03:23 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2017-10-18 03:23 - 2017-10-18 03:23 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2017-10-18 03:17 - 2017-10-18 03:17 - 001682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 001238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 001158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 001080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-10-18 03:17 - 2017-10-18 03:17 - 000002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-10-18 02:10 - 2012-03-01 00:46 - 000023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2017-10-18 02:10 - 2012-03-01 00:28 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2017-10-18 02:10 - 2012-02-29 23:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2017-10-18 02:08 - 2017-04-27 16:50 - 003550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-10-18 02:08 - 2017-04-12 07:05 - 004296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-10-18 02:00 - 2014-06-30 16:24 - 000008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2017-10-18 02:00 - 2014-06-30 16:14 - 000008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2017-10-18 02:00 - 2014-06-06 00:16 - 000035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2017-10-18 02:00 - 2014-06-06 00:12 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2017-10-18 02:00 - 2014-03-09 15:48 - 001389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2017-10-18 02:00 - 2014-03-09 15:48 - 000171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2017-10-18 02:00 - 2014-03-09 15:47 - 000619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2017-10-18 02:00 - 2014-03-09 15:47 - 000099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2017-10-17 19:31 - 2017-10-17 19:31 - 000001025 _____ C:\Users\Kerry\Desktop\bigsol.exe - Shortcut.lnk
2017-10-17 06:16 - 2017-10-27 09:27 - 000003826 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1508242614
2017-10-17 06:16 - 2017-10-17 06:16 - 000001093 _____ C:\Users\Public\Desktop\Opera Browser.lnk
2017-10-17 06:16 - 2017-10-17 06:16 - 000001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2017-10-17 06:02 - 2015-01-08 21:14 - 000950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2017-10-17 06:02 - 2015-01-08 21:14 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2017-10-17 06:02 - 2015-01-08 21:14 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2017-10-17 06:02 - 2015-01-08 20:48 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2017-10-17 06:01 - 2016-03-16 12:50 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2017-10-17 06:01 - 2016-03-16 12:28 - 000176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2017-10-17 06:01 - 2016-03-16 12:28 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2017-10-17 06:01 - 2015-11-13 17:09 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2017-10-17 06:01 - 2015-11-13 17:09 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2017-10-17 06:01 - 2015-11-13 17:08 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2017-10-17 06:01 - 2015-11-13 16:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2017-10-17 06:01 - 2015-11-13 16:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2017-10-17 06:01 - 2015-11-13 16:49 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2017-10-17 06:01 - 2015-08-05 11:56 - 001110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2017-10-17 06:01 - 2015-07-15 12:10 - 001743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2017-10-17 06:01 - 2015-06-03 14:22 - 000457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-10-17 06:01 - 2015-06-03 14:17 - 000546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-10-17 06:01 - 2015-06-01 18:07 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2017-10-17 06:01 - 2015-06-01 17:47 - 000210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2017-10-17 06:01 - 2015-04-12 21:28 - 000328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-10-17 06:01 - 2014-12-11 11:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-10-17 06:01 - 2014-01-27 20:32 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-17 06:01 - 2013-10-29 20:32 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2017-10-17 06:01 - 2013-10-29 20:19 - 000301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2017-10-17 06:01 - 2013-03-18 23:53 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2017-10-17 06:01 - 2012-10-09 12:17 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-10-17 06:01 - 2012-10-09 12:17 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2017-10-17 06:01 - 2012-10-09 11:40 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2017-10-17 06:01 - 2012-10-09 11:40 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2017-10-17 06:01 - 2011-06-15 23:49 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2017-10-17 06:01 - 2011-06-15 22:33 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2017-10-17 06:01 - 2011-06-15 04:02 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2017-10-17 06:01 - 2011-06-15 04:02 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2017-10-17 06:01 - 2011-06-15 04:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2017-10-17 06:01 - 2011-06-15 04:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2017-10-17 06:01 - 2011-06-15 02:55 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2017-10-17 06:01 - 2011-06-15 02:55 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2017-10-17 06:01 - 2011-06-15 02:55 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2017-10-17 06:01 - 2011-06-15 02:55 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2017-10-17 06:01 - 2011-06-15 02:55 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2017-10-17 06:01 - 2010-12-23 04:42 - 001118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-10-17 06:01 - 2010-12-23 04:36 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2017-10-17 06:01 - 2010-12-22 23:54 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-10-17 06:01 - 2010-12-22 23:50 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2017-10-17 06:00 - 2016-01-20 18:51 - 000073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2017-10-17 06:00 - 2015-07-10 11:51 - 003722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-17 06:00 - 2015-07-10 11:51 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2017-10-17 06:00 - 2015-07-10 11:51 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-10-17 06:00 - 2015-07-10 11:34 - 003221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-17 06:00 - 2015-07-10 11:34 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-10-17 06:00 - 2015-07-10 11:33 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2017-10-17 06:00 - 2015-05-25 12:19 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2017-10-17 06:00 - 2015-05-25 12:18 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2017-10-17 06:00 - 2015-05-25 12:18 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2017-10-17 06:00 - 2015-05-25 12:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2017-10-17 06:00 - 2015-05-25 12:18 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2017-10-17 06:00 - 2015-05-25 12:18 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2017-10-17 06:00 - 2015-05-25 12:01 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2017-10-17 06:00 - 2015-05-25 12:00 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2017-10-17 06:00 - 2015-05-25 12:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2017-10-17 06:00 - 2015-05-25 12:00 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2017-10-17 06:00 - 2015-05-25 12:00 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2017-10-17 06:00 - 2015-05-25 12:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2017-10-17 06:00 - 2014-08-01 05:53 - 001031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-10-17 06:00 - 2014-08-01 05:35 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-10-17 06:00 - 2012-01-04 04:44 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2017-10-17 06:00 - 2012-01-04 02:58 - 000442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2017-10-17 05:59 - 2014-12-18 21:06 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 001943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 001131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 000156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 000156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 000081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2017-10-17 05:59 - 2014-06-18 16:23 - 000073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2017-10-17 05:58 - 2015-07-09 11:58 - 001632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-10-17 05:58 - 2015-07-09 11:58 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2017-10-17 05:58 - 2015-07-09 11:42 - 001372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-10-17 05:58 - 2015-07-09 11:42 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2017-10-17 05:58 - 2013-10-18 20:18 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2017-10-17 05:58 - 2013-10-18 19:36 - 000159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2017-10-17 05:57 - 2016-02-05 12:56 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2017-10-17 05:57 - 2016-02-05 12:54 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2017-10-17 05:57 - 2016-02-05 11:33 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2017-10-17 05:57 - 2016-02-04 19:19 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-10-17 05:57 - 2016-02-04 12:41 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-10-17 05:57 - 2016-02-03 12:07 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2017-10-17 05:57 - 2015-11-11 12:53 - 001735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-10-17 05:57 - 2015-11-11 12:53 - 000525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2017-10-17 05:57 - 2015-11-11 12:39 - 001242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2017-10-17 05:57 - 2015-11-11 12:39 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2017-10-17 05:57 - 2015-11-05 13:05 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2017-10-17 05:57 - 2015-11-05 13:02 - 000014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2017-10-17 05:57 - 2015-11-05 03:53 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2017-10-17 05:57 - 2015-07-14 21:19 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2017-10-17 05:57 - 2015-06-03 14:21 - 000451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2017-10-17 05:57 - 2015-04-24 12:17 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2017-10-17 05:57 - 2015-04-24 11:56 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2017-10-17 05:57 - 2015-02-02 21:31 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-10-17 05:57 - 2015-02-02 21:12 - 000171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2017-10-17 05:57 - 2015-01-28 21:19 - 002543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2017-10-17 05:57 - 2015-01-28 21:02 - 002311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2017-10-17 05:57 - 2014-12-05 22:17 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2017-10-17 05:57 - 2014-12-05 21:50 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2017-10-17 05:57 - 2014-12-05 21:50 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2017-10-17 05:57 - 2014-10-13 20:13 - 000683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-10-17 05:57 - 2014-06-17 20:18 - 000692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2017-10-17 05:57 - 2014-06-17 19:51 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2017-10-17 05:57 - 2013-12-03 20:27 - 000488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2017-10-17 05:57 - 2013-12-03 20:27 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2017-10-17 05:57 - 2013-12-03 20:27 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2017-10-17 05:57 - 2013-12-03 20:27 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2017-10-17 05:57 - 2013-12-03 20:26 - 000528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2017-10-17 05:57 - 2013-12-03 20:16 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2017-10-17 05:57 - 2013-12-03 20:16 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2017-10-17 05:57 - 2013-12-03 20:16 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2017-10-17 05:57 - 2013-12-03 20:16 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2017-10-17 05:57 - 2013-12-03 20:03 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2017-10-17 05:57 - 2013-12-03 20:03 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2017-10-17 05:57 - 2013-12-03 20:03 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2017-10-17 05:57 - 2013-12-03 20:03 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2017-10-17 05:57 - 2013-12-03 20:02 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2017-10-17 05:57 - 2013-12-03 19:54 - 000594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2017-10-17 05:57 - 2013-12-03 19:54 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2017-10-17 05:57 - 2013-12-03 19:54 - 000510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2017-10-17 05:57 - 2013-12-03 19:54 - 000508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2017-10-17 05:57 - 2013-10-03 20:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-10-17 05:57 - 2013-10-03 20:25 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2017-10-17 05:57 - 2013-10-03 19:58 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-10-17 05:57 - 2013-10-03 19:56 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2017-10-17 05:57 - 2013-08-04 20:25 - 000155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2017-10-17 05:57 - 2013-07-12 04:41 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2017-10-17 05:57 - 2013-07-02 22:05 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2017-10-17 05:57 - 2013-07-02 22:05 - 000032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2017-10-17 05:57 - 2013-06-25 16:55 - 000785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-10-17 05:57 - 2013-04-25 17:30 - 001505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-10-17 05:57 - 2013-03-31 16:52 - 001887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-10-17 05:57 - 2013-02-11 22:12 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2017-10-17 05:57 - 2012-11-28 16:56 - 000054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-10-17 05:57 - 2012-11-28 16:56 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-10-17 05:57 - 2012-11-28 16:56 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-10-17 05:57 - 2012-10-03 11:44 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2017-10-17 05:57 - 2012-10-03 11:44 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2017-10-17 05:57 - 2012-10-03 11:44 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2017-10-17 05:57 - 2012-10-03 11:44 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2017-10-17 05:57 - 2012-10-03 11:42 - 000569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-10-17 05:57 - 2012-10-03 10:42 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2017-10-17 05:57 - 2012-10-03 10:42 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2017-10-17 05:57 - 2012-07-04 14:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2017-10-17 05:57 - 2011-12-30 00:26 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2017-10-17 05:57 - 2011-12-29 23:27 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2017-10-17 05:57 - 2011-03-11 00:34 - 001395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2017-10-17 05:57 - 2011-03-11 00:34 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2017-10-17 05:57 - 2011-03-10 23:33 - 001164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2017-10-17 05:57 - 2011-03-10 23:33 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2017-10-17 05:57 - 2011-03-03 00:24 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-17 05:57 - 2011-03-03 00:24 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-10-17 05:57 - 2011-03-03 00:21 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2017-10-17 05:57 - 2011-03-02 23:38 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-17 05:57 - 2011-03-02 23:36 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2017-10-17 05:56 - 2016-07-07 09:08 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-10-17 05:56 - 2016-05-11 11:02 - 000483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-10-17 05:56 - 2016-05-11 09:19 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-10-17 05:56 - 2015-12-08 15:53 - 000509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2017-10-17 05:56 - 2015-12-08 13:07 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-10-17 05:56 - 2015-10-29 11:50 - 000342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2017-10-17 05:56 - 2015-10-29 11:50 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2017-10-17 05:56 - 2015-10-29 11:50 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2017-10-17 05:56 - 2015-10-29 11:50 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2017-10-17 05:56 - 2015-10-29 11:50 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2017-10-17 05:56 - 2015-10-29 11:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2017-10-17 05:56 - 2015-10-29 11:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2017-10-17 05:56 - 2015-07-22 18:02 - 000879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2017-10-17 05:56 - 2015-07-22 11:53 - 000635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2017-10-17 05:56 - 2015-07-09 11:57 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2017-10-17 05:56 - 2015-07-09 11:57 - 000193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2017-10-17 05:56 - 2015-07-09 11:42 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2017-10-17 05:56 - 2014-11-10 21:08 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2017-10-17 05:56 - 2014-11-10 20:44 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2017-10-17 05:56 - 2014-03-04 03:44 - 000722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2017-10-17 05:56 - 2014-03-04 03:44 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2017-10-17 05:56 - 2014-03-04 03:43 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2017-10-17 05:56 - 2014-03-04 03:43 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2017-10-17 05:56 - 2014-03-04 03:43 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2017-10-17 05:56 - 2014-03-04 03:43 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2017-10-17 05:56 - 2014-03-04 03:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2017-10-17 05:56 - 2014-03-04 03:17 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2017-10-17 05:56 - 2012-12-07 07:20 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2017-10-17 05:56 - 2012-12-07 07:15 - 002746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2017-10-17 05:56 - 2012-12-07 06:26 - 000308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2017-10-17 05:56 - 2012-12-07 06:20 - 002576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2017-10-17 05:56 - 2012-12-07 05:20 - 000045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2017-10-17 05:56 - 2012-12-07 05:20 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2017-10-17 05:56 - 2012-12-07 05:19 - 000015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2017-10-17 05:56 - 2012-12-07 04:46 - 000015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2017-10-17 05:56 - 2012-11-01 23:59 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2017-10-17 05:56 - 2012-11-01 23:11 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2017-10-17 05:56 - 2012-08-21 15:01 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2017-10-17 05:56 - 2012-03-17 01:58 - 000075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-10-17 05:56 - 2011-08-16 23:26 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2017-10-17 05:56 - 2011-08-16 23:25 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2017-10-17 05:56 - 2011-08-16 22:24 - 000465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2017-10-17 05:56 - 2011-08-16 22:19 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2017-10-17 05:55 - 2016-08-29 09:04 - 003229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-10-17 05:55 - 2016-08-29 08:55 - 002972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-10-17 05:55 - 2016-02-09 03:55 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2017-10-17 05:55 - 2015-12-08 15:54 - 001620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 001568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 001325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-10-17 05:55 - 2015-12-08 15:54 - 000739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2017-10-17 05:55 - 2015-12-08 15:54 - 000154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2017-10-17 05:55 - 2015-12-08 15:53 - 000829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2017-10-17 05:55 - 2015-12-08 15:53 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2017-10-17 05:55 - 2015-12-08 15:53 - 000153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2017-10-17 05:55 - 2015-12-08 15:53 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2017-10-17 05:55 - 2015-12-08 15:53 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2017-10-17 05:55 - 2015-12-08 15:53 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 001955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 001307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 001232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 001026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 000978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 000292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2017-10-17 05:55 - 2015-12-08 13:07 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2017-10-17 05:55 - 2015-12-08 13:07 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2017-10-17 05:55 - 2015-12-08 13:06 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2017-10-17 05:55 - 2015-12-08 12:54 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2017-10-17 05:55 - 2015-12-08 12:12 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2017-10-17 05:55 - 2015-12-08 12:11 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2017-10-17 05:55 - 2015-04-10 21:19 - 000069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2017-10-17 05:54 - 2016-05-12 11:15 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2017-10-17 05:54 - 2016-05-12 11:14 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2017-10-17 05:54 - 2016-05-12 11:14 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2017-10-17 05:54 - 2016-05-12 11:14 - 000373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2017-10-17 05:54 - 2016-05-12 11:14 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2017-10-17 05:54 - 2016-05-12 11:14 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2017-10-17 05:54 - 2016-05-12 09:18 - 000274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2017-10-17 05:54 - 2016-05-12 09:18 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-10-17 05:54 - 2016-05-12 09:18 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2017-10-17 05:54 - 2016-05-12 09:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2017-10-17 05:54 - 2016-05-11 11:02 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-10-17 05:54 - 2016-05-11 11:02 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2017-10-17 05:54 - 2016-05-11 11:02 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2017-10-17 05:54 - 2016-05-11 09:19 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-10-17 05:54 - 2016-05-11 09:19 - 000231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2017-10-17 05:54 - 2016-05-11 09:19 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2017-10-17 05:54 - 2016-03-09 13:00 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-17 05:54 - 2016-03-09 12:40 - 000316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-17 05:54 - 2016-01-22 00:18 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-10-17 05:54 - 2016-01-22 00:18 - 000723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2017-10-17 05:54 - 2016-01-22 00:04 - 000642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-10-17 05:54 - 2016-01-22 00:04 - 000535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2017-10-17 05:54 - 2015-10-12 22:57 - 000950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-10-17 05:54 - 2015-08-27 12:18 - 002004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-10-17 05:54 - 2015-08-27 12:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2017-10-17 05:54 - 2015-08-27 11:58 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-10-17 05:54 - 2015-08-27 11:51 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2017-10-17 05:54 - 2014-10-29 20:03 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2017-10-17 05:54 - 2014-10-29 19:45 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2017-10-17 05:54 - 2014-10-24 19:57 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2017-10-17 05:54 - 2014-10-24 19:32 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2017-10-17 05:54 - 2014-09-03 23:23 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-10-17 05:54 - 2014-09-03 23:04 - 000372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2017-10-17 05:54 - 2014-07-16 20:07 - 001118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-17 05:54 - 2014-07-16 20:07 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-10-17 05:54 - 2014-07-16 20:07 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2017-10-17 05:54 - 2014-07-16 20:07 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2017-10-17 05:54 - 2014-07-16 19:40 - 000157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2017-10-17 05:54 - 2014-07-16 19:39 - 001051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-17 05:54 - 2014-07-16 19:21 - 000212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2017-10-17 05:54 - 2014-02-03 20:35 - 000274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-10-17 05:54 - 2014-02-03 20:35 - 000190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-10-17 05:54 - 2014-02-03 20:35 - 000027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2017-10-17 05:54 - 2014-02-03 20:28 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2017-10-17 05:54 - 2014-02-03 20:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2017-10-17 05:54 - 2013-05-09 23:49 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2017-10-17 05:54 - 2013-05-09 21:20 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2017-10-17 05:54 - 2012-11-22 21:13 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2017-10-17 05:54 - 2012-09-25 16:47 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2017-10-17 05:54 - 2012-09-25 16:46 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2017-10-17 05:54 - 2012-07-04 16:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2017-10-17 05:54 - 2012-07-04 16:13 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2017-10-17 05:54 - 2012-07-04 16:13 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2017-10-17 05:54 - 2012-07-04 15:16 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2017-10-17 05:54 - 2012-07-04 15:14 - 000041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2017-10-17 05:54 - 2012-04-25 23:41 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2017-10-17 05:54 - 2012-04-25 23:34 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2017-10-17 05:54 - 2011-05-24 05:42 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2017-10-17 05:54 - 2011-05-24 04:40 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2017-10-17 05:54 - 2011-05-24 04:40 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2017-10-17 05:54 - 2011-05-24 04:39 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2017-10-17 05:54 - 2011-05-24 04:37 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2017-10-17 05:54 - 2011-02-05 11:10 - 000020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2017-10-17 05:54 - 2011-02-05 11:10 - 000019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2017-10-17 05:54 - 2011-02-05 11:10 - 000017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2017-10-17 05:53 - 2016-07-22 08:58 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-10-17 05:53 - 2016-07-22 08:51 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2017-10-17 05:53 - 2016-03-09 12:54 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2017-10-17 05:53 - 2016-03-09 12:34 - 000216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2017-10-17 05:53 - 2015-11-03 13:04 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2017-10-17 05:53 - 2015-11-03 12:55 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2017-10-17 05:53 - 2015-03-03 22:41 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2017-10-17 05:53 - 2015-03-03 22:10 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2017-10-17 05:53 - 2014-12-07 21:09 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2017-10-17 05:53 - 2014-12-07 20:46 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2017-10-17 05:53 - 2013-10-11 20:32 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2017-10-17 05:53 - 2013-10-11 20:31 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2017-10-17 05:53 - 2013-10-11 20:30 - 000830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-10-17 05:53 - 2013-10-11 20:29 - 000859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-10-17 05:53 - 2013-10-11 20:29 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2017-10-17 05:53 - 2013-10-11 20:04 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2017-10-17 05:53 - 2013-10-11 20:03 - 000656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-10-17 05:53 - 2013-10-11 20:03 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2017-10-17 05:53 - 2013-10-11 20:01 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2017-10-17 05:53 - 2013-10-11 19:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2017-10-17 05:53 - 2013-10-11 19:33 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2017-10-17 05:53 - 2013-10-11 19:15 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2017-10-17 05:53 - 2013-10-11 19:15 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2017-10-17 05:53 - 2013-05-12 23:50 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2017-10-17 05:53 - 2013-05-12 21:43 - 001192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-10-17 05:53 - 2013-05-12 21:08 - 000903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-10-17 05:53 - 2013-05-12 21:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2017-10-17 05:53 - 2013-01-24 00:01 - 000223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-10-17 05:53 - 2011-12-16 02:46 - 000634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2017-10-17 05:53 - 2011-12-16 01:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2017-10-17 05:53 - 2011-08-26 23:37 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-10-17 05:53 - 2011-08-26 22:26 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-10-17 05:53 - 2011-02-18 04:51 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2017-10-17 05:53 - 2011-02-17 23:39 - 000031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2017-10-17 05:53 - 2011-02-12 05:34 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2017-10-17 05:34 - 2012-02-16 22:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2017-10-17 02:36 - 2017-10-17 02:36 - 000000000 __SHD C:\found.000
2017-10-17 02:04 - 2017-10-17 02:04 - 000000000 ____D C:\Windows\system32\SPReview
2017-10-17 02:04 - 2017-10-17 02:04 - 000000000 ____D C:\Windows\system32\EventProviders

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-16 14:13 - 2009-07-13 22:45 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-16 14:13 - 2009-07-13 22:45 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-16 14:11 - 2017-10-15 12:19 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-11-16 14:11 - 2009-07-13 23:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-16 14:11 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\inf
2017-11-16 14:06 - 2017-10-16 05:49 - 000000000 ____D C:\Users\Kerry\AppData\Roaming\Skype
2017-11-16 14:05 - 2017-10-15 11:21 - 000025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2017-11-16 14:05 - 2009-07-13 23:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD
2017-11-16 14:05 - 2009-07-13 23:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-16 03:05 - 2017-10-15 15:12 - 000000000 ____D C:\Windows\system32\MRT
2017-11-16 03:00 - 2017-10-15 15:11 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-11-16 03:00 - 2017-10-15 15:11 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-11-15 05:01 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\rescache
2017-11-15 03:23 - 2009-07-13 22:45 - 000408144 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-15 03:04 - 2017-10-15 11:19 - 000773912 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-11-14 15:51 - 2017-10-15 09:23 - 000000000 ____D C:\Windows\system32\Drivers\NSBUx64
2017-11-14 14:07 - 2017-10-15 08:55 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-14 14:07 - 2017-10-15 08:55 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-14 10:41 - 2017-10-15 10:57 - 000000000 ____D C:\Users\Kerry\AppData\Local\Microsoft Help
2017-11-13 18:01 - 2017-10-15 08:55 - 000003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-13 18:01 - 2017-10-15 08:55 - 000003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-11 22:28 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\LiveKernelReports
2017-11-09 12:24 - 2017-10-15 07:43 - 000000000 ____D C:\Users\Kerry
2017-10-31 16:05 - 2017-10-15 12:19 - 000252232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-10-27 09:27 - 2017-10-15 12:21 - 000000000 ____D C:\Program Files\Opera
2017-10-26 12:03 - 2017-10-16 06:58 - 000000000 ____D C:\Users\Kerry\AppData\Local\ABBYY
2017-10-26 11:51 - 2017-10-15 12:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-10-26 11:51 - 2017-10-15 12:05 - 000000000 ____D C:\Program Files (x86)\Canon
2017-10-24 09:39 - 2017-10-16 06:58 - 000000000 ____D C:\ProgramData\ABBYY
2017-10-24 09:38 - 2017-10-15 11:16 - 000000000 ____D C:\Users\Kerry\AppData\Local\Adobe
2017-10-23 12:41 - 2017-10-15 12:05 - 000002009 _____ C:\Users\Public\Desktop\Canon IJ Network Tool.lnk
2017-10-23 12:41 - 2009-07-13 21:20 - 000000000 __RSD C:\Windows\Media
2017-10-21 11:10 - 2017-10-15 11:00 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2017-10-21 11:09 - 2009-07-13 21:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-10-21 02:35 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\AppCompat
2017-10-20 10:45 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files\Windows Defender
2017-10-20 10:45 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files\DVD Maker
2017-10-20 10:45 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\migwiz
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\Dism
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2017-10-20 10:45 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2017-10-18 04:09 - 2017-10-15 08:16 - 000108904 _____ C:\Users\Kerry\AppData\Local\GDIPFONTCACHEV1.DAT
2017-10-18 04:08 - 2017-10-15 07:43 - 000001413 _____ C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-18 04:05 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\tracing
2017-10-18 04:05 - 2009-07-13 21:20 - 000000000 ____D C:\Program Files\Common Files\System
2017-10-17 02:39 - 2009-07-13 21:20 - 000000000 __RHD C:\Users\Public\Libraries
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files\Windows Portable Devices
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2017-10-17 02:34 - 2009-07-13 23:32 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-17 02:34 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-10-17 02:34 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\oobe
2017-10-17 02:34 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\manifeststore
2017-10-17 02:34 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2017-10-17 02:34 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\servicing
2017-10-17 02:33 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\Setup
2017-10-17 02:33 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\oobe
2017-10-17 02:33 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\system32\manifeststore
2017-10-17 02:08 - 2009-07-13 20:36 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2017-10-17 02:08 - 2009-07-13 20:36 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll

Some files in TEMP:
====================
2006-05-23 23:10 - 2006-05-23 23:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Kerry\AppData\Local\Temp\_is80B3.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-09 17:09

==================== End of FRST.txt ============================

 

Additioon.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-11-2017
Ran by Kerry (16-11-2017 14:44:18)
Running from C:\Users\Kerry\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2017-10-15 13:43:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2957907037-1284653929-173307917-500 - Administrator - Disabled)
Guest (S-1-5-21-2957907037-1284653929-173307917-501 - Limited - Disabled)
Kerry (S-1-5-21-2957907037-1284653929-173307917-1000 - Administrator - Enabled) => C:\Users\Kerry

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Enabled - Up to date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
7-Zip 17.01 beta (x64) (HKLM\...\7-Zip) (Version: 17.01 beta - Igor Pavlov)
ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.724.5507 - ABBYY)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.5 - Arduino LLC)
AutoGreen B10.1021.1 (HKLM-x32\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
Big Solitaires 3D 1.4 (HKLM-x32\...\Big Solitaires 3D 1.4_is1) (Version:  - Felix Jose Cladellas)
BitTorrent (HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\BitTorrent) (Version: 7.10.0.44091 - BitTorrent Inc.)
Bullzip PDF Printer 11.4.0.2674 (HKLM\...\Bullzip PDF Printer_is1) (Version: 11.4.0.2674 - Bullzip)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MP Navigator EX 5.1 (HKLM-x32\...\MP Navigator EX 5.1) (Version:  - )
Canon MX410 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX410_series) (Version:  - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
DriverUpdate (HKLM\...\{DAAA600A-9F08-4BC8-ABE2-6763F93957C6}) (Version: 4.3.1 - Slimware Utilities Holdings, Inc.) Hidden
EAGLE 8.4.1 (HKLM\...\{AUTODESK-EAGLE-8-4-1}_is1) (Version: 8.4.1 - Autodesk, Inc.)
Easy Tune 6 B11.0512.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B11.0512.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Etcher 1.1.2 (only current user) (HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\573339af-d9e1-5dd3-804c-e0162fac1f41) (Version: 1.1.2 - Resin Inc.)
Etron USB3.0 Host Controller (HKLM-x32\...\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.98 - Etron Technology) Hidden
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.98 - Etron Technology)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hoyle Casino 2006 (remove only) (HKLM-x32\...\HCS10DL) (Version:  - )
Hoyle Puzzle Games 2004 (HKLM-x32\...\{12362BED-DF87-40CD-97AB-A6DA564E8B8F}) (Version: 1.00.0000 - Sierra) Hidden
Hoyle Puzzle Games 2004 (HKLM-x32\...\InstallShield_{12362BED-DF87-40CD-97AB-A6DA564E8B8F}) (Version: 1.00.0000 - Sierra)
Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2957907037-1284653929-173307917-1000\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.302 - Logitech)
Norton Security (HKLM-x32\...\NSBU) (Version: 22.11.0.41 - Symantec Corporation)
Opera Stable 48.0.2685.52 (HKLM-x32\...\Opera 48.0.2685.52) (Version: 48.0.2685.52 - Opera Software)
Pretty Good Solitaire 2k (HKLM-x32\...\Pretty Good Solitaire 2k) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6307 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Smart 6 B11.0512.1 (HKLM-x32\...\{3B35725F-C623-4A1E-B5CC-99C0868679E3}) (Version: 1.00.0000 - GIGABYTE)
SnagIt 8 (HKLM-x32\...\{A900E37C-AAE3-44FB-8EE7-7E61F7087CE7}) (Version: 8.0.0 - TechSmith Corporation)
TightVNC (HKLM\...\{DEE0B752-52D8-4615-9BEE-1EDA46628960}) (Version: 2.8.8.0 - GlavSoft LLC.)
Windows Home Server 2011 Connector (HKLM\...\{C1E4D639-4A33-4314-809E-89BD0EF48522}) (Version: 6.1.8800.16400 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2957907037-1284653929-173307917-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2957907037-1284653929-173307917-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2957907037-1284653929-173307917-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2957907037-1284653929-173307917-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2957907037-1284653929-173307917-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ContextMenuHandlers1-x32: [FineReader9ContextMenu] -> {59A3380E-5305-4cea-BD99-4F2FF510C91F} => C:\Program Files (x86)\ABBYY FineReader 9.0\FRIntegration.dll [2007-12-07] (ABBYY Software Ltd)
ContextMenuHandlers1-x32: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1-x32-x32: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItShellExt.dll [2005-12-22] (TechSmith Corporation)
ContextMenuHandlers1-x32-x32: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NavShExt.dll [2017-10-03] (Symantec Corporation)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NavShExt.dll [2017-10-03] (Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov)
ContextMenuHandlers4-x32: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItShellExt.dll [2005-12-22] (TechSmith Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2015-06-01] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-08-28] (Igor Pavlov)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\buShell.dll [2017-10-03] (Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\NavShExt.dll [2017-10-03] (Symantec Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {158A8CB4-DF03-47BF-AE67-67D2E60B5880} - System32\Tasks\{D6C61AE3-E101-45A8-85FC-5B698BD7ADE8} => C:\Windows\system32\pcalua.exe -a "C:\Users\Kerry\Downloads\Bookworm Virus Free Full Version Game No Brainer Installation.exe" -d C:\Users\Kerry\Downloads
Task: {1839229F-6C58-496C-91D5-B1B86D18D053} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-15] (Google Inc.)
Task: {1CAE832B-66F6-4D7D-AED4-2CB245C9F917} - System32\Tasks\Opera scheduled Autoupdate 1508242614 => C:\Program Files\Opera\launcher.exe [2017-10-24] (Opera Software)
Task: {1D299765-8E17-438A-93C9-299E0A233451} - System32\Tasks\Norton Security with Backup\Norton Security with Backup Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\SymErr.exe [2017-10-03] (Symantec Corporation)
Task: {252E13FC-A4EB-4DEA-A3F4-95B7C99DDB13} - System32\Tasks\Microsoft\Windows\Windows Server\Backup => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {3BE208CD-0754-487A-B4F3-57B6EE9B13D5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd)
Task: {3EC00715-8329-4733-A279-45C9C4FD86B4} - System32\Tasks\Microsoft\Windows\Windows Server\UploadCEIPData => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {5679B023-1FD4-4A33-9353-EDEF83617EE2} - System32\Tasks\{69325FE3-CE27-498F-B696-0CD22EDB1E17} => E:\24 Pop Cap Games\24 Pop Cap Games\Cracks\bookworm.deluxe.1.0.keygen-tsrh.exe
Task: {5FA34632-7CE9-475B-B661-18803A729717} - System32\Tasks\{0D64264D-D901-4EB0-B610-18C60BE2590C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\PopCap Games\Bejeweled Deluxe\PopUninstall.exe" -c "C:\Program Files\PopCap Games\Bejeweled Deluxe\Install.log"
Task: {70D2010C-6D2A-4489-B939-2D7305D6F5FA} - System32\Tasks\Microsoft\Windows\Windows Server\Health Definition Updates => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {76722B7E-E6E4-47CE-904B-3B5B6D610909} - System32\Tasks\Microsoft\Windows\Windows Server\SaveCEIPData => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {85D60BFD-5E19-4420-83D0-3B517B9F47A0} - System32\Tasks\Microsoft\Windows\Windows Server\Alert Evaluations => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {90A55F5B-5883-4216-BAE8-2E8C4CCEFCFA} - System32\Tasks\Microsoft\Windows\Windows Server\InstallAddIns => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {9AFD38E9-89A3-4572-92CC-B4A16B39916C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-15] (Google Inc.)
Task: {9FDDE42C-7339-4345-BF10-6AB51995C9C4} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\WSCStub.exe [2017-10-03] (Symantec Corporation)
Task: {B76CBEC2-7072-448E-A7B6-B1092165FF5F} - System32\Tasks\Microsoft\Windows\Windows Server\RenewClientCertificate => C:\Program Files\Windows Server\Bin\RunTask.exe [2012-11-02] (Microsoft Corporation)
Task: {D93D461A-4288-4E84-B691-63BFD38BC672} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2017-10-03] (Symantec Corporation)
Task: {EC19FB41-5385-45F7-9E07-F58141846D09} - System32\Tasks\{BEF1E75A-721D-4AE9-9278-FFFDBA736CF9} => E:\24 Pop Cap Games\24 Pop Cap Games\Cracks\bookworm.deluxe.1.0.keygen-tsrh.exe
Task: {ECCD2FFE-B7F4-437F-9C59-99BFB67B3BEA} - System32\Tasks\{FAD7673B-18F1-4862-91F8-C457268CE82A} => E:\24 Pop Cap Games\24 Pop Cap Games\Cracks\bookworm.deluxe.1.0.keygen-tsrh.exe
Task: {F039F236-6A00-4383-A036-E95A7AD789DF} - System32\Tasks\Norton Security with Backup\Norton Security with Backup Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.11.0.41\SymErr.exe [2017-10-03] (Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Kerry\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm

ShortcutWithArgument: C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\MP3 Player.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=kbiheleggoempookkoblhdgmlojbicob

==================== Loaded Modules (Whitelisted) ==============

2017-10-15 08:01 - 2017-10-15 08:01 - 000008704 _____ () C:\Windows\assembly\GAC_64\GBHO\1.0.0.0__709f1911357dc329\GBHO.dll
2017-10-15 12:19 - 2017-10-04 12:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-10-15 12:19 - 2017-10-04 12:15 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-10-15 08:01 - 2009-12-01 13:13 - 000035880 _____ () C:\Program Files (x86)\GIGABYTE\smart6\dbios\SDBMSG.exe
2017-10-15 07:54 - 2015-06-01 20:00 - 000102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-11-14 14:07 - 2017-11-10 03:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll
2017-11-14 14:07 - 2017-11-10 03:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll
2017-10-15 08:01 - 2009-06-10 15:28 - 000106496 _____ () C:\Program Files (x86)\GIGABYTE\smart6\dbios\DBIOS.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.scr: EAGLESCR => "C:\Program Files\EAGLE 8.4.1\eagle.exe" -C "" "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 20:34 - 2017-10-15 11:31 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2957907037-1284653929-173307917-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kerry\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: DriverUpdate => "C:\Program Files\DriverUpdate\DriverUpdate.exe" -boot

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{482AF744-00B3-4E7B-89F5-4BCBB7265448}] => (Allow) C:\Program Files\TightVNC\tvnserver.exe
FirewallRules: [{922F7201-36D8-4899-A06A-298DF4BF0BCD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4D6E0DC4-9B0B-41F7-B64F-53B8B1C6D171}] => (Allow) C:\Users\Kerry\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{588E1DBD-69AD-4431-9A38-417C69828D3F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{453FD19D-0E9A-46A2-AD73-CCDD3AFA90FB}] => (Allow) LPort=2869
FirewallRules: [{4155E841-8B2F-46B5-AAD4-CD14B5025357}] => (Allow) LPort=1900
FirewallRules: [{1A3ED6D3-67ED-40EB-9926-3D297A2C07C2}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{4EBEE59D-5E8B-4D4F-A699-34B3E85BEC91}] => (Allow) C:\Program Files\Opera\48.0.2685.50\opera.exe
FirewallRules: [{B8F289C7-DF61-45B7-8171-399065685768}] => (Allow) C:\Program Files\Opera\48.0.2685.52\opera.exe
FirewallRules: [{4B87FEA7-C2E3-4D76-AC80-9648AA40BB28}] => (Allow) C:\Users\Kerry\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{7A10D65E-D2EB-4247-8A3D-466923EB6DEF}] => (Allow) C:\Users\Kerry\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{AFD80B00-D100-45CD-804A-A0FACCACA3B2}] => (Allow) C:\Users\Kerry\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{56087F2C-9A9E-4C27-8BCC-E3A0D56DD0A5}] => (Allow) C:\Users\Kerry\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CBF94F7D-1A17-4176-BCD6-DD202C931A3C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

14-11-2017 21:14:38 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
15-11-2017 03:00:14 Windows Update
16-11-2017 03:00:10 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/16/2017 12:41:16 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {95c062dc-2784-484b-9906-ac188d033531}

Error: (11/08/2017 12:38:05 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}

Error: (11/08/2017 12:11:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddWin32ServiceFiles: Unable to back up image of service SlimWare Services since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (11/07/2017 12:35:05 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}

Error: (11/06/2017 12:41:27 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}

Error: (11/05/2017 12:41:28 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}

Error: (11/04/2017 01:28:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SharedServiceHost.exe, version: 6.1.1839.0, time stamp: 0x4d38a956
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23915, time stamp: 0x59b94f2a
Exception code: 0xe0434352
Fault offset: 0x000000000001a06d
Faulting process id: 0xc40
Faulting application start time: 0x01d352944cfdd06e
Faulting application path: C:\Program Files\Windows Server\Bin\SharedServiceHost.exe
Faulting module path: C:\Windows\system32\KERNELBASE.dll
Report Id: d03addf2-c131-11e7-87e9-001583edfd9b

Error: (11/04/2017 01:28:54 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: SharedServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Runtime.InteropServices.COMException
   at TaskSchedulerV2.ITaskFolder.DeleteTask(System.String, Int32)
   at Microsoft.WindowsServerSolutions.Common.ProviderFramework.SchedulerVersion2.DeleteTask(System.String)
   at Microsoft.WindowsServerSolutions.Common.ProviderFramework.Scheduler.RegisterTask(Microsoft.WindowsServerSolutions.Common.ProviderFramework.TaskDefinition, Boolean)
   at Microsoft.WindowsServerSolutions.DataProtection.PCBackup.Provider.ScheduledTaskManager.UpdateScheduledTask(Boolean)
   at Microsoft.WindowsServerSolutions.DataProtection.PCBackup.Provider.ScheduledTaskManager.CheckCompliance(Boolean)
   at Microsoft.WindowsServerSolutions.DataProtection.PCBackup.Provider.ScheduledTaskManager.<OnBackupCompletion>b__1(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()

Error: (11/04/2017 01:17:04 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}

Error: (11/02/2017 11:09:04 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e06c02fb-b3f5-4790-8279-2d5bfb4a029b}


System errors:
=============
Error: (11/15/2017 05:52:09 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 05:52:03 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 05:51:57 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 05:51:51 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 05:51:45 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 05:51:39 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (11/15/2017 03:22:37 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {C332C124-340D-4430-AA0D-C75602876FCC} did not register with DCOM within the required timeout.

Error: (11/15/2017 03:22:37 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {FE9617F6-E606-42AA-BECC-0E9CDA246D63} did not register with DCOM within the required timeout.

Error: (11/15/2017 03:22:37 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {C2BFE331-6739-4270-86C9-493D9A04CD38} did not register with DCOM within the required timeout.

Error: (11/15/2017 03:22:37 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} did not register with DCOM within the required timeout.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 19%
Total physical RAM: 16301.12 MB
Available physical RAM: 13164.42 MB
Total Virtual: 32600.42 MB
Available Virtual: 29423.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:117.55 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:698.64 GB) (Free:518.84 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 6766F099)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 775E42CE)
Partition 1: (Active) - (Size=698.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Link to post
Share on other sites
Aura

Aura

Posted
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.