API tools faq
paste
Guest User

FRST

a guest
Aug 14th, 2015
644
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 154.85 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01
  2. Ran by Administrator (administrator) on ROOT (14-08-2015 21:55:49)
  3. Running from C:\Users\Administrator\Desktop
  4. Loaded Profiles: Administrator (Available Profiles: tyler_000 & ty_va_000 & zLocal & Administrator)
  5. Platform: Windows 10 Home (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
  15. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  16. (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
  17. (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  18. (brother Industries Ltd) C:\Windows\SysWOW64\BRSVC01A.EXE
  19. (brother Industries Ltd) C:\Windows\SysWOW64\BRSS01A.EXE
  20. (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  21. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  22. (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
  23. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
  24. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
  25. (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  26. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\pg_ctl.exe
  27. (http://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe
  28. (http://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe
  29. (http://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe
  30. (SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
  31. (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
  32. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  33. (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
  34. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  35. (CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
  36. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  37. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  38. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  39. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  40. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  41. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  42. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  43. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  44. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  45. () C:\Windows\System32\igfxTray.exe
  46. (Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
  47. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
  48. (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
  49. (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
  50. (Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
  51. (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
  52. (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
  53. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  54. (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
  55. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  56. (Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
  57. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  58. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  59. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  60. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  61. (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
  62. (VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
  63. (Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
  64. (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
  65. (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
  66. (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe
  67. (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
  68. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
  69. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  70. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  71. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  72. (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe
  73. (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
  74. () C:\metasploit\apps\pro\engine\arch-lib\win32\nginx\bin\nginxr7.exe
  75. () C:\metasploit\apps\pro\engine\arch-lib\win32\nginx\bin\nginxr7.exe
  76. (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
  77. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  78. (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
  79.  
  80.  
  81. ==================== Registry (Whitelisted) ===========================
  82.  
  83. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  84.  
  85. HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [396688 2015-07-18] ()
  86. HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
  87. HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-13] (IDT, Inc.)
  88. HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-22] (Hewlett-Packard )
  89. HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  90. HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-31] (AVAST Software)
  91. HKLM-x32\...\Run: [] => [X]
  92. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590656 2015-05-15] (Razer Inc.)
  93. HKLM-x32\...\Run: [SystemExplorerAutoStart] => C:\Program Files (x86)\System Explorer\SystemExplorer.exe [3391720 2015-05-21] (Mister Group)
  94. HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [509216 2015-07-28] (QFX Software Corporation)
  95. HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [114368 2015-05-31] (VMware, Inc.)
  96. HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632 2015-07-22] (BlueStack Systems, Inc.)
  97. HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
  98. HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
  99. HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
  100. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8204056 2015-04-23] (Piriform Ltd)
  101. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC)
  102. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\...\Run: [GoogleChromeAutoLaunch_361C1DD22E1256C6B68316A32E8B1949] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-07] (Google Inc.)
  103. Startup: C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Psi.lnk [2015-07-19]
  104. ShortcutTarget: Psi.lnk -> C:\Program Files (x86)\Psi\Psi.exe ()
  105. Startup: C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-07-01]
  106. ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
  107. Startup: C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2015-07-29] ()
  108. ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-31] (AVAST Software)
  109.  
  110. ==================== Internet (Whitelisted) ====================
  111.  
  112. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  113.  
  114. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK13/1
  115. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
  116. HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
  117. HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
  118. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK13/1
  119. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
  120. HKU\S-1-5-21-1593349770-2714411459-2019522330-500\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/HPDSK13/1
  121. SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
  122. SearchScopes: HKLM -> {FC461AA6-BDE2-45DE-ACF8-64E5FD393897} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
  123. SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
  124. SearchScopes: HKLM-x32 -> {FC461AA6-BDE2-45DE-ACF8-64E5FD393897} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
  125. BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  126. BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-31] (AVAST Software)
  127. BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  128. BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  129. BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
  130. BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
  131. BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
  132. BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  133. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-20] (Oracle Corporation)
  134. BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-31] (AVAST Software)
  135. BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  136. BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
  137. BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
  138. BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
  139. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-20] (Oracle Corporation)
  140. BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
  141. Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
  142. Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
  143. Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
  144. Tcpip\..\Interfaces\{3eabe412-4ae7-45b9-a94f-8a078c8cce15}: [DhcpNameServer] 192.168.1.1
  145.  
  146. FireFox:
  147. ========
  148. FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\83p265z8.default
  149. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
  150. FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
  151. FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
  152. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
  153. FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
  154. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
  155. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
  156. FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-20] (Oracle Corporation)
  157. FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-20] (Oracle Corporation)
  158. FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-16] ()
  159. FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-16] ()
  160. FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-16] ()
  161. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\npctrl.1.0.20926.0.dll [2007-09-25] ( Microsoft Corporation)
  162. FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
  163. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
  164. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
  165. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
  166. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
  167. FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
  168. FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
  169. FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-15]
  170. FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com
  171. FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-16]
  172. FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
  173. FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-16]
  174. FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com
  175. FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-16]
  176.  
  177. Chrome:
  178. =======
  179. CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default
  180. CHR Extension: (Google Slides) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-30]
  181. CHR Extension: (Google Docs) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-30]
  182. CHR Extension: (Google Drive) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-30]
  183. CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-30]
  184. CHR Extension: (Steam inventory helper) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-08-11]
  185. CHR Extension: (Google Search) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-30]
  186. CHR Extension: (Kaspersky Protection) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-07-30]
  187. CHR Extension: (Google Sheets) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-30]
  188. CHR Extension: (LoungeDestroyer) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-08-09]
  189. CHR Extension: (AdBlock) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-30]
  190. CHR Extension: (Avast Online Security) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-07-30]
  191. CHR Extension: (CS:GO Lounge Bump Bot) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfkidfnhjcjjamcbdepeohblphlamgk [2015-08-12]
  192. CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-30]
  193. CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
  194. CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-30]
  195. CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
  196. CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
  197. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-15]
  198. CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
  199.  
  200. ==================== Services (Whitelisted) ========================
  201.  
  202. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  203.  
  204. S3 Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDevice.exe [55336 2015-07-19] ()
  205. R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
  206. R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-31] (AVAST Software)
  207. S3 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\avp.exe [194000 2015-06-27] (Kaspersky Lab ZAO)
  208. R2 Brother XP spl Service; C:\WINDOWS\SysWOW64\brsvc01a.exe [57344 2004-06-13] (brother Industries Ltd)
  209. S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (BlueStack Systems, Inc.)
  210. S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (BlueStack Systems, Inc.)
  211. R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (BlueStack Systems, Inc.)
  212. S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
  213. R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
  214. R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
  215. S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
  216. R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63968 2015-05-21] (CyberGhost S.R.L)
  217. R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-30] (Microsoft Corporation)
  218. R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-30] (Microsoft Corporation)
  219. S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
  220. S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
  221. S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
  222. S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
  223. S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
  224. S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-07-30] (Microsoft Corporation)
  225. R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
  226. R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
  227. S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
  228. R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129336 2013-01-30] (Intel Corporation)
  229. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
  230. S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
  231. S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
  232. S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
  233. R2 metasploitPostgreSQL; C:\metasploit\postgresql\bin\pg_ctl.exe [76288 2015-07-27] (PostgreSQL Global Development Group) [File not signed]
  234. R2 metasploitProSvc; C:\metasploit\ruby\bin\ruby.exe [107178 2015-07-27] (http://www.ruby-lang.org/) [File not signed]
  235. R2 metasploitThin; C:\metasploit\ruby\bin\ruby.exe [107178 2015-07-27] (http://www.ruby-lang.org/) [File not signed]
  236. R2 metasploitWorker; C:\metasploit\ruby\bin\ruby.exe [107178 2015-07-27] (http://www.ruby-lang.org/) [File not signed]
  237. S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4466688 2007-11-07] (Microsoft Corporation)
  238. S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
  239. R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  240. R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  241. U2 OneSyncSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  242. U2 OneSyncSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  243. S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1000688 2015-06-21] (Overwolf LTD)
  244. S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
  245. S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  246. S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  247. U3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  248. U3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  249. S2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
  250. S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-02] (Microsoft Corporation)
  251. R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175752 2015-06-23] (Sandboxie Holdings, LLC)
  252. S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-30] (Microsoft Corporation)
  253. R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5189176 2015-05-04] (SoftEther VPN Project at University of Tsukuba, Japan.)
  254. R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-13] (IDT, Inc.) [File not signed]
  255. R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
  256. R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
  257. R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
  258. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5448976 2015-04-17] (TeamViewer GmbH)
  259. S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-30] (Microsoft Corporation)
  260. S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-30] (Microsoft Corporation)
  261. S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  262. S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  263. U3 UnistoreSvc_Session11; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  264. U3 UnistoreSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  265. S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-29] (Microsoft Corporation)
  266. S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  267. S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  268. U3 UserDataSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
  269. U3 UserDataSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
  270. S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
  271. S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12732608 2015-05-31] ()
  272. S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-30] (Microsoft Corporation)
  273. S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
  274. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
  275. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
  276. S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe [256912 2015-05-27] (Wondershare)
  277. S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [100752 2015-07-06] (Wondershare)
  278. S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
  279. S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
  280. S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)
  281.  
  282. ===================== Drivers (Whitelisted) ==========================
  283.  
  284. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  285.  
  286. R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-07-31] (AVAST Software)
  287. R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-07-31] (AVAST Software)
  288. R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-07-31] (AVAST Software)
  289. R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-31] (AVAST Software)
  290. R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-07-31] (AVAST Software)
  291. R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-13] (AVAST Software)
  292. R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-07-31] (AVAST Software)
  293. R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-07-31] (AVAST Software)
  294. S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [44640 2015-06-15] (The OpenVPN Project)
  295. R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-07-31] (AVAST Software)
  296. R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (BlueStack Systems)
  297. R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
  298. R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
  299. R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-06-27] (Kaspersky Lab UK Ltd)
  300. R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
  301. S3 CV2K1; C:\Windows\system32\DRIVERS\cv2k1.sys [22728 2014-07-23] (TamoSoft Limited)
  302. S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
  303. R1 ElRawDisk; C:\WINDOWS\system32\drivers\ElRawDsk.sys [30752 2013-12-03] (EldoS Corporation)
  304. R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
  305. R3 fwdrv; C:\Windows\system32\DRIVERS\fwdrv.sys [27840 2014-03-22] (Web Solution Mart)
  306. S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
  307. R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
  308. S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
  309. S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
  310. R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [224208 2015-06-03] (QFX Software Corporation)
  311. R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-27] (Kaspersky Lab ZAO)
  312. R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-06-27] (Kaspersky Lab ZAO)
  313. S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
  314. R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-06-27] (Kaspersky Lab ZAO)
  315. R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-06-27] (Kaspersky Lab ZAO)
  316. R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [831664 2015-06-27] (Kaspersky Lab ZAO)
  317. R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-06-27] (Kaspersky Lab ZAO)
  318. R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-06-27] (Kaspersky Lab ZAO)
  319. R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-06-27] (Kaspersky Lab ZAO)
  320. R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-06-27] (Kaspersky Lab ZAO)
  321. R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-06-27] (Kaspersky Lab ZAO)
  322. R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-06-27] (Kaspersky Lab ZAO)
  323. R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-06-27] (Kaspersky Lab ZAO)
  324. S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
  325. S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
  326. S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
  327. R3 NdisImPlatformMp; C:\Windows\System32\drivers\NdisImPlatform.sys [129024 2015-07-10] (Microsoft Corporation)
  328. S3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28640 2015-05-04] (SoftEther VPN Project at University of Tsukuba, Japan.)
  329. R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
  330. R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2014-08-18] (Riverbed Technology, Inc.)
  331. R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
  332. R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-12-30] (Razer Inc)
  333. R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
  334. R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129472 2015-06-26] (Razer, Inc.)
  335. R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [190088 2015-06-23] (Sandboxie Holdings, LLC)
  336. R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
  337. R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
  338. S3 tapSF0901; C:\Windows\system32\DRIVERS\tapSF0901.sys [39104 2015-01-23] (Spotflux, Inc.)
  339. S3 TsVlb; C:\Windows\system32\DRIVERS\tsvlb.sys [22120 2012-10-06] (TamoSoft)
  340. R1 TsVp; C:\Windows\system32\DRIVERS\tsvp.sys [26256 2012-10-06] (TamoSoft)
  341. S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
  342. S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-30] (Microsoft Corporation)
  343. S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
  344. R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-07-09] (Oracle Corporation)
  345. R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-07-24] (IDRIX)
  346. R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2015-05-21] (VMware, Inc.)
  347. R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-08-28] (VMware, Inc.)
  348. R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
  349. R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
  350. S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
  351. S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
  352. S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
  353. S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
  354. R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)
  355. S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
  356.  
  357. ==================== NetSvcs (Whitelisted) ===================
  358.  
  359. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  360.  
  361. NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
  362. NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
  363. NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
  364. NETSVC: dmwappushservice -> no path.
  365. NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
  366. NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
  367. NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
  368. NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
  369. NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
  370. NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
  371. NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
  372. NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
  373. NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File
  374.  
  375. ==================== One Month Created files and folders ========
  376.  
  377. (If an entry is included in the fixlist, the file/folder will be moved.)
  378.  
  379. 2015-08-14 21:55 - 2015-08-14 21:56 - 00038770 _____ C:\Users\Administrator\Desktop\FRST.txt
  380. 2015-08-14 21:55 - 2015-08-14 21:55 - 00000000 ____D C:\Users\Administrator\Desktop\FRST-OlderVersion
  381. 2015-08-14 21:48 - 2015-08-14 21:48 - 00016148 _____ C:\WINDOWS\system32\ROOT_Administrator_HistoryPrediction.bin
  382. 2015-08-14 20:19 - 2015-08-14 20:19 - 00115304 _____ C:\Users\Administrator\Downloads\Unconfirmed 437315.crdownload
  383. 2015-08-14 02:49 - 2015-08-14 02:49 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Wargaming.net
  384. 2015-08-14 02:07 - 2015-08-14 02:07 - 06038392 _____ (Wargaming.net ) C:\Users\Administrator\Downloads\WoT_internet_install_na.exe
  385. 2015-08-14 02:07 - 2015-08-14 02:07 - 00000817 _____ C:\Users\Public\Desktop\World of Tanks.lnk
  386. 2015-08-14 02:07 - 2015-08-14 02:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
  387. 2015-08-14 02:03 - 2015-08-14 02:03 - 00160340 _____ C:\Users\Administrator\Downloads\IFUD.WS.rar
  388. 2015-08-14 01:11 - 2015-08-14 01:13 - 00000000 ____D C:\Users\Administrator\AppData\Local\Gif Recorder
  389. 2015-08-14 01:11 - 2015-08-14 01:11 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Gif Recorder
  390. 2015-08-13 19:31 - 2015-08-13 23:08 - 00000109 _____ C:\Users\Administrator\Desktop\bhop.ahk
  391. 2015-08-13 19:29 - 2015-08-13 19:29 - 02869078 _____ C:\Users\Administrator\Downloads\AutoHotkey112203_Install.exe
  392. 2015-08-13 19:29 - 2015-08-13 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
  393. 2015-08-13 19:10 - 2015-08-13 19:10 - 00000000 ____D C:\Users\Administrator\AppData\Local\Razer
  394. 2015-08-13 17:49 - 2015-08-13 17:49 - 00034480 _____ C:\Users\Administrator\Downloads\Hash_ID_v1.1.py
  395. 2015-08-13 17:22 - 2015-08-13 17:23 - 00000000 ____D C:\Program Files\Defraggler
  396. 2015-08-13 17:22 - 2015-08-13 17:22 - 04532776 _____ (Piriform Ltd) C:\Users\Administrator\Downloads\dfsetup219.exe
  397. 2015-08-13 17:22 - 2015-08-13 17:22 - 00001772 _____ C:\Users\Public\Desktop\Defraggler.lnk
  398. 2015-08-13 14:46 - 2015-08-13 15:09 - 00055761 _____ C:\WINDOWS\DirectX.log
  399. 2015-08-13 00:24 - 2015-08-13 15:01 - 00000878 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
  400. 2015-08-13 00:24 - 2015-08-13 15:01 - 00000000 ____D C:\ProgramData\TinyWall
  401. 2015-08-13 00:24 - 2015-08-13 15:01 - 00000000 ____D C:\Program Files (x86)\TinyWall
  402. 2015-08-13 00:23 - 2015-08-13 00:23 - 01134592 _____ C:\Users\Administrator\Downloads\TinyWallInstaller.msi
  403. 2015-08-12 23:45 - 2015-08-12 23:45 - 00000622 _____ C:\Users\Administrator\Downloads\TakeOwnership.zip
  404. 2015-08-12 16:15 - 2015-08-12 16:15 - 00140734 _____ C:\Users\Administrator\Downloads\download (1).htm
  405. 2015-08-12 16:15 - 2015-08-12 16:15 - 00138710 _____ C:\Users\Administrator\Downloads\download.htm
  406. 2015-08-11 23:49 - 2015-08-03 23:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
  407. 2015-08-11 23:49 - 2015-08-02 22:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
  408. 2015-08-11 23:49 - 2015-08-02 21:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
  409. 2015-08-11 23:48 - 2015-08-08 03:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  410. 2015-08-11 23:48 - 2015-08-08 03:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
  411. 2015-08-11 23:48 - 2015-08-08 03:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
  412. 2015-08-11 23:48 - 2015-08-08 03:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
  413. 2015-08-11 23:48 - 2015-08-08 02:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
  414. 2015-08-11 23:48 - 2015-08-08 02:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
  415. 2015-08-11 23:48 - 2015-08-08 02:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
  416. 2015-08-11 23:48 - 2015-08-08 02:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
  417. 2015-08-11 23:48 - 2015-08-08 02:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
  418. 2015-08-11 23:48 - 2015-08-08 02:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
  419. 2015-08-11 23:48 - 2015-08-08 02:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
  420. 2015-08-11 23:48 - 2015-08-08 02:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
  421. 2015-08-11 23:48 - 2015-08-05 23:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
  422. 2015-08-11 23:48 - 2015-08-05 23:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
  423. 2015-08-11 23:48 - 2015-08-05 23:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
  424. 2015-08-11 23:48 - 2015-08-05 22:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  425. 2015-08-11 23:48 - 2015-08-05 22:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
  426. 2015-08-11 23:48 - 2015-08-05 22:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  427. 2015-08-11 23:48 - 2015-08-05 00:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
  428. 2015-08-11 23:48 - 2015-08-05 00:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
  429. 2015-08-11 23:48 - 2015-08-05 00:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
  430. 2015-08-11 23:48 - 2015-08-05 00:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
  431. 2015-08-11 23:48 - 2015-08-04 23:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
  432. 2015-08-11 23:48 - 2015-08-04 23:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  433. 2015-08-11 23:48 - 2015-08-04 23:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
  434. 2015-08-11 23:48 - 2015-08-04 23:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
  435. 2015-08-11 23:48 - 2015-08-04 23:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
  436. 2015-08-11 23:48 - 2015-08-04 00:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
  437. 2015-08-11 23:48 - 2015-08-04 00:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
  438. 2015-08-11 23:48 - 2015-08-04 00:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
  439. 2015-08-11 23:48 - 2015-08-04 00:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
  440. 2015-08-11 23:48 - 2015-08-03 23:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
  441. 2015-08-11 23:48 - 2015-08-03 23:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
  442. 2015-08-11 23:48 - 2015-08-03 23:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
  443. 2015-08-11 23:48 - 2015-08-03 22:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
  444. 2015-08-11 23:48 - 2015-08-03 22:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
  445. 2015-08-11 23:48 - 2015-08-02 22:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
  446. 2015-08-11 23:48 - 2015-08-02 22:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
  447. 2015-08-11 23:48 - 2015-08-02 22:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
  448. 2015-08-11 23:48 - 2015-08-02 22:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
  449. 2015-08-11 23:48 - 2015-08-02 22:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
  450. 2015-08-11 23:48 - 2015-08-02 22:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
  451. 2015-08-11 23:48 - 2015-08-02 22:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
  452. 2015-08-11 23:48 - 2015-08-02 22:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
  453. 2015-08-11 23:48 - 2015-08-02 22:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
  454. 2015-08-11 23:48 - 2015-08-02 22:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  455. 2015-08-11 23:48 - 2015-08-02 22:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
  456. 2015-08-11 23:48 - 2015-08-02 21:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
  457. 2015-08-11 23:48 - 2015-08-02 21:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
  458. 2015-08-11 23:48 - 2015-08-02 21:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
  459. 2015-08-11 23:48 - 2015-08-02 21:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
  460. 2015-08-11 23:48 - 2015-08-02 21:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  461. 2015-08-11 23:48 - 2015-08-02 21:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
  462. 2015-08-11 23:48 - 2015-08-02 21:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
  463. 2015-08-11 23:48 - 2015-08-02 21:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
  464. 2015-08-11 23:48 - 2015-08-02 21:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
  465. 2015-08-11 23:48 - 2015-08-02 21:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
  466. 2015-08-11 23:48 - 2015-08-02 21:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
  467. 2015-08-11 23:48 - 2015-08-02 21:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
  468. 2015-08-11 23:48 - 2015-08-02 21:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
  469. 2015-08-11 23:48 - 2015-08-02 21:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
  470. 2015-08-11 23:48 - 2015-08-02 21:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
  471. 2015-08-11 23:48 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
  472. 2015-08-11 23:48 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
  473. 2015-08-11 23:48 - 2015-08-02 21:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  474. 2015-08-11 23:48 - 2015-08-02 21:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
  475. 2015-08-11 23:48 - 2015-08-02 21:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
  476. 2015-08-11 23:48 - 2015-08-02 21:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
  477. 2015-08-11 23:48 - 2015-08-02 21:15 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  478. 2015-08-11 23:48 - 2015-08-02 21:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
  479. 2015-08-11 23:48 - 2015-08-02 21:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
  480. 2015-08-11 23:48 - 2015-08-02 21:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
  481. 2015-08-11 23:48 - 2015-08-02 21:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
  482. 2015-08-11 23:48 - 2015-08-02 21:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
  483. 2015-08-11 23:48 - 2015-08-02 21:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
  484. 2015-08-11 23:48 - 2015-08-02 21:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
  485. 2015-08-11 23:48 - 2015-08-02 21:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
  486. 2015-08-11 23:48 - 2015-08-02 21:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  487. 2015-08-11 23:48 - 2015-08-02 21:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
  488. 2015-08-11 23:48 - 2015-08-02 21:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
  489. 2015-08-11 23:48 - 2015-08-02 21:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
  490. 2015-08-11 23:48 - 2015-08-02 21:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
  491. 2015-08-11 23:48 - 2015-08-02 21:11 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
  492. 2015-08-11 23:48 - 2015-08-02 21:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
  493. 2015-08-11 23:48 - 2015-08-02 21:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
  494. 2015-08-11 23:48 - 2015-08-02 21:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
  495. 2015-08-11 23:48 - 2015-08-02 21:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
  496. 2015-08-11 23:48 - 2015-08-02 21:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
  497. 2015-08-11 23:48 - 2015-08-02 21:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
  498. 2015-08-11 23:48 - 2015-08-02 21:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
  499. 2015-08-11 23:48 - 2015-08-02 21:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  500. 2015-08-11 23:48 - 2015-08-02 21:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
  501. 2015-08-11 23:48 - 2015-08-02 20:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
  502. 2015-08-11 14:11 - 2015-08-11 14:12 - 00000000 ____D C:\Users\Administrator\.msf4
  503. 2015-08-11 14:07 - 2015-08-11 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metasploit
  504. 2015-08-11 13:59 - 2015-08-11 14:07 - 00000000 ____D C:\metasploit
  505. 2015-08-11 13:58 - 2015-08-11 13:59 - 195199312 _____ (Rapid7) C:\Users\Administrator\Downloads\metasploit-latest-windows-installer.exe
  506. 2015-08-10 22:11 - 2015-08-10 22:11 - 00006324 _____ C:\WINDOWS\PFRO.log
  507. 2015-08-10 21:49 - 2015-08-10 22:29 - 00000000 ____D C:\Users\Administrator\Documents\Wizard101
  508. 2015-08-10 15:57 - 2015-08-10 15:57 - 00000793 _____ C:\Users\Public\Desktop\Play Wizard101.lnk
  509. 2015-08-10 15:57 - 2015-08-10 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KingsIsle Entertainment
  510. 2015-08-10 15:57 - 2015-08-10 15:57 - 00000000 ____D C:\ProgramData\KingsIsle Entertainment
  511. 2015-08-10 15:55 - 2015-08-10 15:56 - 12257624 _____ (Acresso Software Inc.) C:\Users\Administrator\Downloads\InstallWizard101.exe
  512. 2015-08-10 12:43 - 2015-08-10 12:51 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Electrum
  513. 2015-08-10 12:42 - 2015-08-10 12:42 - 18723436 _____ C:\Users\Administrator\Desktop\wallet.exe
  514. 2015-08-10 12:41 - 2015-08-10 12:41 - 18723436 _____ C:\Users\Administrator\Downloads\electrum-2.3.2.exe
  515. 2015-08-10 12:37 - 2015-08-10 12:39 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Armory
  516. 2015-08-10 12:36 - 2015-08-10 12:37 - 22778005 _____ (Armory Technologies Inc.) C:\Users\Administrator\Downloads\armory_0.93.2_winAll.exe
  517. 2015-08-09 20:25 - 2015-08-14 20:16 - 00000414 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1593349770-2714411459-2019522330-500.job
  518. 2015-08-09 20:25 - 2015-08-09 20:25 - 02511360 _____ (Skillbrains ) C:\Users\Administrator\Downloads\setup-lightshot.exe
  519. 2015-08-09 20:25 - 2015-08-09 20:25 - 00003418 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-1593349770-2714411459-2019522330-500
  520. 2015-08-09 20:25 - 2015-08-09 20:25 - 00000424 _____ C:\Users\Administrator\AppData\Local\UserProducts.xml
  521. 2015-08-09 20:25 - 2015-08-09 20:25 - 00000003 _____ C:\Users\Administrator\AppData\Local\updater.log
  522. 2015-08-09 20:25 - 2015-08-09 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
  523. 2015-08-09 20:07 - 2015-08-09 20:07 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Opera Software
  524. 2015-08-09 20:07 - 2015-08-09 20:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\Opera Software
  525. 2015-08-09 17:26 - 2015-08-09 17:26 - 11359089 _____ C:\Users\Administrator\Downloads\Unconfirmed 93993.crdownload
  526. 2015-08-09 17:26 - 2015-08-09 17:26 - 11359089 _____ C:\Users\Administrator\Downloads\Hearthbuddy 0.3.1008.181.zip
  527. 2015-08-09 17:08 - 2015-08-14 21:49 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
  528. 2015-08-09 16:05 - 2015-08-14 01:29 - 00000000 ____D C:\Users\Administrator\AppData\Local\Adobe
  529. 2015-08-09 15:37 - 2015-08-12 23:48 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Notepad++
  530. 2015-08-09 13:40 - 2015-08-10 16:07 - 00000672 _____ C:\Users\Administrator\Desktop\How to.txt
  531. 2015-08-09 13:40 - 2015-08-09 19:39 - 00000273 _____ C:\Users\Administrator\Desktop\Install.reg
  532. 2015-08-09 13:40 - 2015-08-09 19:39 - 00000202 _____ C:\Users\Administrator\Desktop\Remove Proxy.reg
  533. 2015-08-09 13:40 - 2015-08-09 13:40 - 00001035 _____ C:\Users\Administrator\Downloads\tl-64983972.zip
  534. 2015-08-09 13:15 - 2015-08-09 13:15 - 00000114 _____ C:\Users\Administrator\Downloads\listen.pls
  535. 2015-08-08 22:43 - 2015-08-08 22:47 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Mp3tag
  536. 2015-08-08 22:43 - 2015-08-08 22:43 - 02906912 _____ C:\Users\Administrator\Downloads\mp3tagv271setup.exe
  537. 2015-08-08 22:43 - 2015-08-08 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
  538. 2015-08-08 22:43 - 2015-08-08 22:43 - 00000000 ____D C:\Program Files (x86)\Mp3tag
  539. 2015-08-08 22:38 - 2015-08-08 22:38 - 00001074 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lol.lnk
  540. 2015-08-08 18:47 - 2015-07-30 02:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
  541. 2015-08-08 18:47 - 2015-07-30 02:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
  542. 2015-08-08 18:47 - 2015-07-30 02:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
  543. 2015-08-08 18:47 - 2015-07-30 02:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
  544. 2015-08-08 18:47 - 2015-07-30 02:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
  545. 2015-08-08 18:47 - 2015-07-30 02:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
  546. 2015-08-08 18:47 - 2015-07-30 02:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
  547. 2015-08-08 18:47 - 2015-07-30 02:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
  548. 2015-08-08 18:47 - 2015-07-30 02:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
  549. 2015-08-08 18:47 - 2015-07-30 02:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
  550. 2015-08-08 18:47 - 2015-07-30 02:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
  551. 2015-08-08 18:47 - 2015-07-30 02:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
  552. 2015-08-08 18:47 - 2015-07-30 02:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
  553. 2015-08-08 18:47 - 2015-07-30 02:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
  554. 2015-08-08 18:47 - 2015-07-30 01:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
  555. 2015-08-08 18:47 - 2015-07-30 00:42 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
  556. 2015-08-08 18:47 - 2015-07-30 00:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
  557. 2015-08-08 18:47 - 2015-07-30 00:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
  558. 2015-08-08 18:47 - 2015-07-30 00:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
  559. 2015-08-08 18:47 - 2015-07-30 00:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
  560. 2015-08-08 18:47 - 2015-07-30 00:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
  561. 2015-08-08 18:47 - 2015-07-30 00:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
  562. 2015-08-08 18:47 - 2015-07-30 00:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
  563. 2015-08-08 18:47 - 2015-07-30 00:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
  564. 2015-08-08 18:47 - 2015-07-30 00:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
  565. 2015-08-08 18:47 - 2015-07-30 00:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
  566. 2015-08-08 18:47 - 2015-07-30 00:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
  567. 2015-08-08 18:47 - 2015-07-30 00:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
  568. 2015-08-08 18:47 - 2015-07-30 00:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
  569. 2015-08-08 18:47 - 2015-07-30 00:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
  570. 2015-08-08 18:47 - 2015-07-30 00:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
  571. 2015-08-08 18:47 - 2015-07-30 00:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
  572. 2015-08-08 18:47 - 2015-07-30 00:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
  573. 2015-08-08 18:47 - 2015-07-30 00:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
  574. 2015-08-08 18:47 - 2015-07-29 23:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
  575. 2015-08-08 18:47 - 2015-07-29 23:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
  576. 2015-08-08 18:47 - 2015-07-29 23:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
  577. 2015-08-08 18:47 - 2015-07-29 23:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
  578. 2015-08-08 18:47 - 2015-07-29 23:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
  579. 2015-08-08 18:47 - 2015-07-29 23:49 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
  580. 2015-08-08 18:47 - 2015-07-29 23:49 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
  581. 2015-08-08 18:47 - 2015-07-29 23:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
  582. 2015-08-08 18:47 - 2015-07-29 23:46 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
  583. 2015-08-08 18:47 - 2015-07-29 23:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
  584. 2015-08-08 18:47 - 2015-07-29 23:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
  585. 2015-08-08 18:47 - 2015-07-29 23:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
  586. 2015-08-08 18:47 - 2015-07-29 23:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
  587. 2015-08-08 18:47 - 2015-07-29 23:44 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
  588. 2015-08-08 18:47 - 2015-07-29 23:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
  589. 2015-08-08 18:47 - 2015-07-29 23:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
  590. 2015-08-08 18:47 - 2015-07-29 23:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
  591. 2015-08-08 18:47 - 2015-07-29 23:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
  592. 2015-08-08 18:47 - 2015-07-29 23:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
  593. 2015-08-08 18:47 - 2015-07-29 23:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
  594. 2015-08-08 18:47 - 2015-07-29 23:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
  595. 2015-08-08 18:47 - 2015-07-29 23:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
  596. 2015-08-08 18:47 - 2015-07-29 23:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
  597. 2015-08-08 18:47 - 2015-07-29 23:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
  598. 2015-08-08 18:47 - 2015-07-29 23:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
  599. 2015-08-08 18:47 - 2015-07-29 23:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
  600. 2015-08-08 18:47 - 2015-07-29 23:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
  601. 2015-08-08 18:47 - 2015-07-29 23:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
  602. 2015-08-08 18:47 - 2015-07-29 23:10 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
  603. 2015-08-08 18:47 - 2015-07-29 23:10 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
  604. 2015-08-08 18:47 - 2015-07-29 23:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
  605. 2015-08-08 18:47 - 2015-07-29 23:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
  606. 2015-08-08 18:47 - 2015-07-29 23:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
  607. 2015-08-08 18:47 - 2015-07-29 23:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
  608. 2015-08-08 18:47 - 2015-07-29 23:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
  609. 2015-08-08 18:47 - 2015-07-29 23:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
  610. 2015-08-08 18:47 - 2015-07-29 23:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
  611. 2015-08-08 18:47 - 2015-07-29 22:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
  612. 2015-08-08 18:47 - 2015-07-29 22:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
  613. 2015-08-08 18:19 - 2015-08-10 12:43 - 00000225 _____ C:\Users\Administrator\Desktop\New Text Document.txt
  614. 2015-08-08 17:53 - 2015-08-08 17:55 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\MultiDoge
  615. 2015-08-08 17:50 - 2015-08-08 17:50 - 09974784 _____ C:\Users\Administrator\Downloads\multidoge-0.1.4-windows-setup.exe
  616. 2015-08-08 17:50 - 2015-08-08 17:50 - 00000000 ____D C:\Program Files (x86)\MultiDoge-0.1.4
  617. 2015-08-08 16:53 - 2015-08-08 16:53 - 00000000 ____D C:\Users\Administrator\AppData\Local\Hewlett-Packard
  618. 2015-08-08 16:50 - 2015-08-08 16:50 - 00000000 ____D C:\Users\Administrator\AppData\Local\openvr
  619. 2015-07-31 22:54 - 2015-08-08 16:46 - 00000000 ___HD C:\Users\Administrator\AppData\Roaming\ConfigsEx
  620. 2015-07-31 22:53 - 2015-08-09 15:28 - 00000000 ____D C:\ProgramData\update
  621. 2015-07-31 22:45 - 2015-07-31 22:45 - 04558906 _____ C:\Users\Administrator\Downloads\Babylon 1.6.0.0.rar
  622. 2015-07-31 21:39 - 2015-07-31 21:39 - 00061801 _____ C:\Users\Administrator\Downloads\Fast MC Checker_mpgh.net.rar
  623. 2015-07-31 19:23 - 2015-07-31 19:23 - 00016148 _____ C:\WINDOWS\system32\TYLER-DESKTOP_Administrator_HistoryPrediction.bin
  624. 2015-07-31 16:01 - 2015-07-31 16:01 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
  625. 2015-07-31 14:39 - 2015-07-31 14:39 - 00000000 ____D C:\Users\Administrator\Desktop\UnitySuite
  626. 2015-07-31 14:00 - 2015-07-31 14:00 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
  627. 2015-07-31 14:00 - 2015-07-31 14:00 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
  628. 2015-07-31 02:46 - 2015-07-31 02:48 - 00000000 ____D C:\Perl64
  629. 2015-07-31 02:46 - 2015-07-31 02:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ActivePerl 5.20.2 Build 2002 (64-bit)
  630. 2015-07-31 02:45 - 2015-07-31 02:45 - 29398503 _____ C:\Users\Administrator\Downloads\ActivePerl-5.20.2.2002-MSWin32-x64-299195.msi
  631. 2015-07-31 02:45 - 2015-07-31 02:45 - 17139371 _____ C:\Users\Administrator\Downloads\perl-5.22.0.tar.gz
  632. 2015-07-31 02:21 - 2015-07-31 02:28 - 00000000 ____D C:\Users\Administrator\Documents\Virtual Machines
  633. 2015-07-31 02:20 - 2015-07-31 22:31 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\VMware
  634. 2015-07-31 02:20 - 2015-07-31 21:40 - 00000000 ____D C:\Users\Administrator\AppData\Local\VMware
  635. 2015-07-31 01:57 - 2015-07-31 01:57 - 00000000 ____D C:\Users\Administrator\.android
  636. 2015-07-31 01:37 - 2015-07-31 02:23 - 00000000 ____D C:\Program Files (x86)\BlueStacks
  637. 2015-07-31 01:37 - 2015-07-31 01:37 - 00001900 _____ C:\Users\Public\Desktop\Apps.lnk
  638. 2015-07-31 01:37 - 2015-07-31 01:37 - 00001883 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
  639. 2015-07-31 01:37 - 2015-07-31 01:37 - 00000000 ____D C:\Users\Administrator\AppData\Local\Bluestacks
  640. 2015-07-31 01:37 - 2015-07-31 01:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
  641. 2015-07-31 01:37 - 2015-07-31 01:37 - 00000000 ____D C:\ProgramData\BlueStacks
  642. 2015-07-31 01:23 - 2015-07-31 01:37 - 14246072 _____ (BlueStack Systems Inc.) C:\Users\Administrator\Downloads\BlueStacks-ThinInstaller-17f8d33209995816f6d4c6176aca2bfe (1).exe
  643. 2015-07-31 01:19 - 2015-07-31 01:19 - 14246072 _____ (BlueStack Systems Inc.) C:\Users\Administrator\Downloads\BlueStacks-ThinInstaller-17f8d33209995816f6d4c6176aca2bfe.exe
  644. 2015-07-31 00:54 - 2015-07-31 01:15 - 00000000 ____D C:\Users\Administrator\.gimp-2.8
  645. 2015-07-31 00:54 - 2015-07-31 00:54 - 00000000 ____D C:\Users\Administrator\AppData\Local\gegl-0.2
  646. 2015-07-31 00:15 - 2015-07-31 00:15 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\QFX Software
  647. 2015-07-31 00:15 - 2015-07-31 00:15 - 00000000 ____D C:\ProgramData\QFX Software
  648. 2015-07-30 23:55 - 2015-05-31 07:59 - 00931520 _____ (VMware, Inc.) C:\WINDOWS\system32\vnetlib64.dll
  649. 2015-07-30 23:55 - 2015-05-31 07:59 - 00359104 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vmnetdhcp.exe
  650. 2015-07-30 23:55 - 2015-05-31 07:59 - 00066752 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmx86.sys
  651. 2015-07-30 23:55 - 2015-05-31 07:59 - 00026816 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmnetuserif.sys
  652. 2015-07-30 23:55 - 2015-05-31 07:58 - 00438464 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vmnat.exe
  653. 2015-07-30 23:55 - 2015-05-21 17:36 - 00076480 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vsock.sys
  654. 2015-07-30 23:55 - 2015-05-21 17:35 - 00068288 _____ (VMware, Inc.) C:\WINDOWS\system32\vsocklib.dll
  655. 2015-07-30 23:55 - 2015-05-21 17:35 - 00064192 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vsocklib.dll
  656. 2015-07-30 23:54 - 2015-08-14 21:48 - 00000000 ____D C:\ProgramData\VMware
  657. 2015-07-30 23:54 - 2015-07-30 23:54 - 00002207 _____ C:\Users\Public\Desktop\VMware Workstation.lnk
  658. 2015-07-30 23:54 - 2015-07-30 23:54 - 00001024 _____ C:\WINDOWS\SysWOW64\%TMP%
  659. 2015-07-30 23:54 - 2015-07-30 23:54 - 00000000 ____D C:\Program Files\Common Files\VMware
  660. 2015-07-30 23:54 - 2015-07-30 23:54 - 00000000 ____D C:\Program Files (x86)\VMware
  661. 2015-07-30 23:54 - 2015-05-22 08:03 - 00055488 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\hcmon.sys
  662. 2015-07-30 23:50 - 2015-07-30 23:50 - 00000944 _____ C:\Users\Administrator\Desktop\Sandboxed Web Browser.lnk
  663. 2015-07-30 23:50 - 2015-07-30 23:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
  664. 2015-07-30 23:49 - 2015-07-30 23:50 - 06979208 _____ (Sandboxie Holdings, LLC) C:\Users\Administrator\Downloads\SandboxieInstall-420.exe
  665. 2015-07-30 23:48 - 2015-07-30 23:53 - 317645824 _____ (VMware, Inc.) C:\Users\Administrator\Downloads\VMware-workstation-full-11.1.2-2780323.exe
  666. 2015-07-30 23:46 - 2015-07-09 12:09 - 00958736 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
  667. 2015-07-30 23:45 - 2015-07-30 23:46 - 116511944 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\VirtualBox-5.0.0-101573-Win (1).exe
  668. 2015-07-30 23:45 - 2015-07-30 23:45 - 18028050 _____ C:\Users\Administrator\Downloads\Oracle_VM_VirtualBox_Extension_Pack-5.0.0-101573.vbox-extpack
  669. 2015-07-30 23:45 - 2015-07-09 12:09 - 00138904 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
  670. 2015-07-30 23:42 - 2015-07-30 23:43 - 116511944 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\VirtualBox-5.0.0-101573-Win.exe
  671. 2015-07-30 21:44 - 2015-07-30 21:44 - 00592431 _____ C:\Users\Administrator\Downloads\xRAT.2.0.RELEASE4.1.zip
  672. 2015-07-30 21:44 - 2015-07-30 21:44 - 00592431 _____ C:\Users\Administrator\Downloads\xRAT.2.0.RELEASE4.1 (1).zip
  673. 2015-07-30 21:42 - 2015-07-30 21:42 - 00019492 _____ C:\Users\Administrator\Downloads\Download.rar
  674. 2015-07-30 21:20 - 2015-08-14 21:55 - 00000000 ____D C:\Users\Administrator\Desktop\wh
  675. 2015-07-30 19:58 - 2015-08-13 21:58 - 00000328 _____ C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job
  676. 2015-07-30 19:58 - 2015-08-13 17:04 - 00003168 _____ C:\WINDOWS\System32\Tasks\RDReminder
  677. 2015-07-30 19:58 - 2015-08-09 15:22 - 00000302 _____ C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job
  678. 2015-07-30 19:58 - 2015-08-09 14:31 - 00000318 _____ C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job
  679. 2015-07-30 19:58 - 2015-08-08 19:58 - 00003136 _____ C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates
  680. 2015-07-30 19:58 - 2015-08-08 19:58 - 00003122 _____ C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
  681. 2015-07-30 19:58 - 2015-07-30 19:58 - 05403720 _____ (Dll-Files.com ) C:\Users\Administrator\Downloads\dffsetup-vcruntime140.exe
  682. 2015-07-30 19:58 - 2015-07-30 19:58 - 00084816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
  683. 2015-07-30 19:58 - 2015-07-30 19:58 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\dll-files.com
  684. 2015-07-30 19:53 - 2015-07-30 19:53 - 00031747 _____ C:\Users\Administrator\Downloads\UnitySuite_mpgh.net.rar
  685. 2015-07-30 19:52 - 2015-07-30 19:52 - 00005247 _____ C:\Users\Administrator\Downloads\Bankrollmafia v1.1_mpgh.net.rar
  686. 2015-07-30 19:39 - 2015-07-30 19:39 - 00000000 ____D C:\Users\Administrator\AppData\Local\NetworkTiles
  687. 2015-07-30 18:47 - 2015-07-30 18:47 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\WinRAR
  688. 2015-07-30 18:47 - 2015-07-30 18:47 - 00000000 _____ C:\Recovery.txt
  689. 2015-07-30 18:17 - 2015-07-30 18:17 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\LolClient
  690. 2015-07-30 18:16 - 2015-07-30 18:16 - 00000000 ____D C:\Users\Administrator\Tracing
  691. 2015-07-30 18:15 - 2015-08-14 21:52 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Skype
  692. 2015-07-30 18:15 - 2015-07-30 18:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Skype
  693. 2015-07-30 18:02 - 2015-07-30 18:02 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
  694. 2015-07-30 18:02 - 2015-07-30 18:02 - 00000000 ____D C:\Users\Administrator\AppData\Local\Macromedia
  695. 2015-07-30 18:01 - 2015-07-30 18:01 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Mozilla
  696. 2015-07-30 18:01 - 2015-07-30 18:01 - 00000000 ____D C:\Users\Administrator\AppData\Local\Mozilla
  697. 2015-07-30 18:00 - 2015-07-30 18:00 - 00242712 _____ C:\Users\Administrator\Downloads\Firefox Setup Stub 39.0.exe
  698. 2015-07-30 18:00 - 2015-07-30 18:00 - 00001223 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
  699. 2015-07-30 17:55 - 2015-07-30 17:55 - 01555824 _____ C:\Users\Administrator\Downloads\KeyScrambler_Setup.exe
  700. 2015-07-30 17:55 - 2015-07-30 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
  701. 2015-07-30 17:55 - 2015-07-30 17:55 - 00000000 ____D C:\Program Files (x86)\KeyScrambler
  702. 2015-07-30 17:55 - 2015-06-03 09:43 - 00224208 _____ (QFX Software Corporation) C:\WINDOWS\system32\Drivers\keyscrambler.sys
  703. 2015-07-30 17:18 - 2015-07-30 17:19 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\VeraCrypt
  704. 2015-07-30 14:04 - 2015-07-30 14:04 - 00000000 ___HD C:\$WINDOWS.~BT
  705. 2015-07-30 14:02 - 2015-07-30 14:02 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
  706. 2015-07-30 13:16 - 2015-07-30 13:16 - 00000000 ____D C:\Users\Administrator\AppData\Local\Comms
  707. 2015-07-30 12:53 - 2015-07-30 12:53 - 00000000 __SHD C:\found.003
  708. 2015-07-30 12:40 - 2015-07-30 12:41 - 3532521472 _____ C:\Users\tyler_000\Downloads\Windows8.iso
  709. 2015-07-30 12:10 - 2015-07-30 12:10 - 00000000 __RHD C:\ESD
  710. 2015-07-30 12:09 - 2015-07-30 12:09 - 01483336 _____ (Microsoft Corporation) C:\Users\tyler_000\Downloads\mediacreationtool (1).exe
  711. 2015-07-30 12:09 - 2015-07-30 12:09 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\ImgBurn
  712. 2015-07-30 12:02 - 2015-07-30 12:02 - 00001957 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
  713. 2015-07-30 12:02 - 2015-07-30 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
  714. 2015-07-30 12:02 - 2015-07-30 12:02 - 00000000 ____D C:\Program Files (x86)\ImgBurn
  715. 2015-07-30 12:01 - 2015-07-30 12:01 - 03469871 _____ (LIGHTNING UK!) C:\Users\tyler_000\Downloads\SetupImgBurn_2.5.8.0.exe
  716. 2015-07-30 11:55 - 2015-07-30 11:55 - 00016148 _____ C:\WINDOWS\system32\TYLER-DESKTOP_tyler_000_HistoryPrediction.bin
  717. 2015-07-30 02:39 - 2015-07-31 00:13 - 00000258 __RSH C:\ProgramData\ntuser.pol
  718. 2015-07-30 02:39 - 2015-07-30 02:39 - 00827816 _____ (Akeo Consulting (http://akeo.ie)) C:\Users\tyler_000\Downloads\rufus-2.2.exe
  719. 2015-07-30 02:38 - 2015-07-30 03:05 - 3900907520 ____R C:\Users\tyler_000\Downloads\Windows_8.1_Pro_X64_Activated.iso
  720. 2015-07-30 02:34 - 2015-07-30 02:34 - 00000000 _____ C:\Users\tyler_000\Desktop\New Text Document.txt
  721. 2015-07-30 02:30 - 2015-07-30 02:30 - 00016148 _____ C:\WINDOWS\system32\TYLER-DESKTOP_zLocal_HistoryPrediction.bin
  722. 2015-07-30 02:24 - 2015-07-30 02:24 - 00000000 ____D C:\Users\zLocal\AppData\Roaming\Adobe
  723. 2015-07-30 02:22 - 2015-07-30 02:22 - 00000000 ____D C:\Users\zLocal\AppData\Local\TileDataLayer
  724. 2015-07-30 02:21 - 2015-07-30 02:21 - 00016148 _____ C:\WINDOWS\system32\TYLER-DESKTOP_ty_va_000_HistoryPrediction.bin
  725. 2015-07-30 02:11 - 2015-07-30 02:11 - 00000000 ____D C:\Users\zLocal\AppData\Local\Power2Go8
  726. 2015-07-30 02:10 - 2015-07-30 02:10 - 00000020 ___SH C:\Users\zLocal\ntuser.ini
  727. 2015-07-30 02:10 - 2015-07-30 02:10 - 00000000 ___RD C:\Users\zLocal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  728. 2015-07-30 02:10 - 2015-07-29 20:50 - 00000000 ____D C:\Users\zLocal\Documents\hp.system.package.metadata
  729. 2015-07-30 02:10 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\zLocal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
  730. 2015-07-30 02:10 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\zLocal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
  731. 2015-07-30 02:10 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\zLocal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
  732. 2015-07-30 02:10 - 2015-07-10 07:04 - 00000000 ____D C:\Users\zLocal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  733. 2015-07-30 02:08 - 2015-07-30 02:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\Steam
  734. 2015-07-30 02:08 - 2015-07-30 02:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\CEF
  735. 2015-07-30 02:07 - 2015-07-30 02:07 - 00002365 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  736. 2015-07-30 02:07 - 2015-07-30 02:07 - 00000000 ___RD C:\Users\Administrator\OneDrive
  737. 2015-07-30 02:06 - 2015-07-30 02:06 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\AVAST Software
  738. 2015-07-30 02:06 - 2015-07-30 02:06 - 00000000 ____D C:\Users\Administrator\AppData\Local\Publishers
  739. 2015-07-30 02:05 - 2015-07-30 02:05 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
  740. 2015-07-30 02:05 - 2015-07-30 02:05 - 00000000 ____D C:\Users\Administrator\AppData\Local\TileDataLayer
  741. 2015-07-30 02:05 - 2015-07-30 02:05 - 00000000 ____D C:\Users\Administrator\AppData\Local\Power2Go8
  742. 2015-07-30 01:42 - 2015-07-30 01:55 - 00001285 _____ C:\Users\tyler_000\Desktop\cmd.exe.lnk
  743. 2015-07-30 01:18 - 2015-07-30 02:21 - 00000000 ____D C:\Users\ty_va_000
  744. 2015-07-30 01:18 - 2015-07-30 01:18 - 00000020 ___SH C:\Users\ty_va_000\ntuser.ini
  745. 2015-07-30 01:18 - 2015-07-29 20:50 - 00000000 ____D C:\Users\ty_va_000\Documents\hp.system.package.metadata
  746. 2015-07-30 01:18 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
  747. 2015-07-30 01:18 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
  748. 2015-07-30 01:18 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  749. 2015-07-30 01:18 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
  750. 2015-07-30 01:18 - 2015-07-10 07:04 - 00000000 ____D C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  751. 2015-07-30 01:18 - 2014-11-21 04:52 - 00000369 _____ C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
  752. 2015-07-30 01:18 - 2014-11-21 04:52 - 00000369 _____ C:\Users\ty_va_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
  753. 2015-07-30 01:16 - 2015-08-13 17:16 - 00000000 ____D C:\WINDOWS\Minidump
  754. 2015-07-30 00:45 - 2015-07-30 00:45 - 19646888 _____ (Microsoft Corporation) C:\Users\tyler_000\Downloads\MediaCreationToolx64 (2).exe
  755. 2015-07-30 00:45 - 2015-07-30 00:45 - 00000000 ___HD C:\$Windows.~WS
  756. 2015-07-30 00:35 - 2015-08-09 15:33 - 00000000 ___DC C:\WINDOWS\Panther
  757. 2015-07-30 00:33 - 2015-07-30 00:33 - 00000000 ____D C:\Windows.old
  758. 2015-07-30 00:32 - 2015-07-30 00:32 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
  759. 2015-07-30 00:32 - 2015-07-30 00:32 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
  760. 2015-07-30 00:32 - 2015-07-30 00:32 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
  761. 2015-07-30 00:32 - 2015-07-30 00:32 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  762. 2015-07-30 00:32 - 2015-07-30 00:32 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
  763. 2015-07-30 00:32 - 2015-07-30 00:32 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
  764. 2015-07-30 00:32 - 2015-07-30 00:32 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
  765. 2015-07-30 00:32 - 2015-07-30 00:32 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
  766. 2015-07-30 00:32 - 2015-07-30 00:32 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  767. 2015-07-30 00:32 - 2015-07-30 00:32 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
  768. 2015-07-30 00:32 - 2015-07-30 00:32 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
  769. 2015-07-30 00:32 - 2015-07-30 00:32 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  770. 2015-07-30 00:32 - 2015-07-30 00:32 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
  771. 2015-07-30 00:32 - 2015-07-30 00:32 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
  772. 2015-07-30 00:32 - 2015-07-30 00:32 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
  773. 2015-07-30 00:32 - 2015-07-30 00:32 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
  774. 2015-07-30 00:32 - 2015-07-30 00:32 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
  775. 2015-07-30 00:32 - 2015-07-30 00:32 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
  776. 2015-07-30 00:32 - 2015-07-30 00:32 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
  777. 2015-07-30 00:32 - 2015-07-30 00:32 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
  778. 2015-07-30 00:32 - 2015-07-30 00:32 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
  779. 2015-07-30 00:32 - 2015-07-30 00:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  780. 2015-07-30 00:32 - 2015-07-30 00:32 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
  781. 2015-07-30 00:32 - 2015-07-30 00:32 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
  782. 2015-07-30 00:32 - 2015-07-30 00:32 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
  783. 2015-07-30 00:32 - 2015-07-30 00:32 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
  784. 2015-07-30 00:32 - 2015-07-30 00:32 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
  785. 2015-07-30 00:32 - 2015-07-30 00:32 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
  786. 2015-07-30 00:32 - 2015-07-30 00:32 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
  787. 2015-07-30 00:32 - 2015-07-30 00:32 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
  788. 2015-07-30 00:32 - 2015-07-30 00:32 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
  789. 2015-07-30 00:32 - 2015-07-30 00:32 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  790. 2015-07-30 00:32 - 2015-07-30 00:32 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
  791. 2015-07-30 00:32 - 2015-07-30 00:32 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
  792. 2015-07-30 00:32 - 2015-07-30 00:32 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
  793. 2015-07-30 00:32 - 2015-07-30 00:32 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
  794. 2015-07-30 00:32 - 2015-07-30 00:32 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
  795. 2015-07-30 00:32 - 2015-07-30 00:32 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
  796. 2015-07-30 00:32 - 2015-07-30 00:32 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
  797. 2015-07-30 00:32 - 2015-07-30 00:32 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
  798. 2015-07-30 00:32 - 2015-07-30 00:32 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
  799. 2015-07-30 00:32 - 2015-07-30 00:32 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
  800. 2015-07-30 00:32 - 2015-07-30 00:32 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
  801. 2015-07-30 00:32 - 2015-07-30 00:32 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
  802. 2015-07-30 00:32 - 2015-07-30 00:32 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
  803. 2015-07-30 00:32 - 2015-07-30 00:32 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
  804. 2015-07-30 00:32 - 2015-07-30 00:32 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
  805. 2015-07-30 00:32 - 2015-07-30 00:32 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
  806. 2015-07-30 00:32 - 2015-07-30 00:32 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
  807. 2015-07-30 00:32 - 2015-07-30 00:32 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
  808. 2015-07-30 00:32 - 2015-07-30 00:32 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
  809. 2015-07-30 00:32 - 2015-07-30 00:32 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
  810. 2015-07-30 00:32 - 2015-07-30 00:32 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
  811. 2015-07-30 00:32 - 2015-07-30 00:32 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
  812. 2015-07-30 00:32 - 2015-07-30 00:32 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
  813. 2015-07-30 00:32 - 2015-07-30 00:32 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
  814. 2015-07-30 00:32 - 2015-07-30 00:32 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
  815. 2015-07-30 00:32 - 2015-07-30 00:32 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
  816. 2015-07-30 00:32 - 2015-07-30 00:32 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
  817. 2015-07-30 00:32 - 2015-07-30 00:32 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
  818. 2015-07-30 00:32 - 2015-07-30 00:32 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
  819. 2015-07-30 00:32 - 2015-07-30 00:32 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
  820. 2015-07-30 00:32 - 2015-07-30 00:32 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
  821. 2015-07-30 00:32 - 2015-07-30 00:32 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
  822. 2015-07-30 00:32 - 2015-07-30 00:32 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
  823. 2015-07-30 00:32 - 2015-07-30 00:32 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
  824. 2015-07-30 00:32 - 2015-07-30 00:32 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
  825. 2015-07-30 00:32 - 2015-07-30 00:32 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
  826. 2015-07-30 00:32 - 2015-07-30 00:32 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
  827. 2015-07-30 00:32 - 2015-07-30 00:32 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
  828. 2015-07-30 00:32 - 2015-07-30 00:32 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
  829. 2015-07-30 00:32 - 2015-07-30 00:32 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
  830. 2015-07-30 00:32 - 2015-07-30 00:32 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
  831. 2015-07-30 00:32 - 2015-07-30 00:32 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
  832. 2015-07-30 00:32 - 2015-07-30 00:32 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
  833. 2015-07-30 00:32 - 2015-07-30 00:32 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
  834. 2015-07-30 00:32 - 2015-07-30 00:32 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
  835. 2015-07-30 00:32 - 2015-07-30 00:32 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
  836. 2015-07-30 00:32 - 2015-07-30 00:32 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
  837. 2015-07-30 00:32 - 2015-07-30 00:32 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
  838. 2015-07-30 00:32 - 2015-07-30 00:32 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
  839. 2015-07-30 00:32 - 2015-07-30 00:32 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
  840. 2015-07-30 00:32 - 2015-07-30 00:32 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
  841. 2015-07-30 00:32 - 2015-07-30 00:32 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
  842. 2015-07-30 00:32 - 2015-07-30 00:32 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
  843. 2015-07-30 00:32 - 2015-07-30 00:32 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
  844. 2015-07-30 00:32 - 2015-07-30 00:32 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
  845. 2015-07-30 00:32 - 2015-07-30 00:32 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
  846. 2015-07-30 00:32 - 2015-07-30 00:32 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
  847. 2015-07-30 00:32 - 2015-07-30 00:32 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
  848. 2015-07-30 00:32 - 2015-07-30 00:32 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
  849. 2015-07-30 00:32 - 2015-07-30 00:32 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
  850. 2015-07-30 00:32 - 2015-07-30 00:32 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
  851. 2015-07-30 00:32 - 2015-07-30 00:32 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
  852. 2015-07-30 00:32 - 2015-07-30 00:32 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
  853. 2015-07-30 00:32 - 2015-07-30 00:32 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
  854. 2015-07-30 00:32 - 2015-07-30 00:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
  855. 2015-07-30 00:32 - 2015-07-30 00:32 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
  856. 2015-07-30 00:32 - 2015-07-30 00:32 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
  857. 2015-07-30 00:32 - 2015-07-30 00:32 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
  858. 2015-07-30 00:32 - 2015-07-30 00:32 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
  859. 2015-07-30 00:32 - 2015-07-30 00:32 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
  860. 2015-07-30 00:32 - 2015-07-30 00:32 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
  861. 2015-07-30 00:32 - 2015-07-30 00:32 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
  862. 2015-07-30 00:32 - 2015-07-30 00:32 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
  863. 2015-07-30 00:32 - 2015-07-30 00:32 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
  864. 2015-07-30 00:32 - 2015-07-30 00:32 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
  865. 2015-07-30 00:32 - 2015-07-30 00:32 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
  866. 2015-07-30 00:32 - 2015-07-30 00:32 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
  867. 2015-07-30 00:32 - 2015-07-30 00:32 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
  868. 2015-07-30 00:32 - 2015-07-30 00:32 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
  869. 2015-07-30 00:32 - 2015-07-30 00:32 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
  870. 2015-07-30 00:32 - 2015-07-30 00:32 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
  871. 2015-07-30 00:32 - 2015-07-30 00:32 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
  872. 2015-07-30 00:32 - 2015-07-30 00:32 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
  873. 2015-07-30 00:32 - 2015-07-30 00:32 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
  874. 2015-07-30 00:32 - 2015-07-30 00:32 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
  875. 2015-07-30 00:32 - 2015-07-30 00:32 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
  876. 2015-07-30 00:32 - 2015-07-30 00:32 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
  877. 2015-07-30 00:32 - 2015-07-30 00:32 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
  878. 2015-07-30 00:32 - 2015-07-30 00:32 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
  879. 2015-07-30 00:32 - 2015-07-30 00:32 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
  880. 2015-07-30 00:32 - 2015-07-30 00:32 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
  881. 2015-07-30 00:32 - 2015-07-30 00:32 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
  882. 2015-07-30 00:32 - 2015-07-30 00:32 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
  883. 2015-07-30 00:32 - 2015-07-30 00:32 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
  884. 2015-07-30 00:32 - 2015-07-30 00:32 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
  885. 2015-07-30 00:32 - 2015-07-30 00:32 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
  886. 2015-07-30 00:32 - 2015-07-30 00:32 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
  887. 2015-07-30 00:32 - 2015-07-30 00:32 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
  888. 2015-07-30 00:32 - 2015-07-30 00:32 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
  889. 2015-07-30 00:32 - 2015-07-30 00:32 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
  890. 2015-07-30 00:32 - 2015-07-30 00:32 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
  891. 2015-07-30 00:32 - 2015-07-30 00:32 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
  892. 2015-07-30 00:32 - 2015-07-30 00:32 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
  893. 2015-07-30 00:32 - 2015-07-30 00:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
  894. 2015-07-30 00:32 - 2015-07-30 00:32 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
  895. 2015-07-30 00:32 - 2015-07-30 00:32 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
  896. 2015-07-30 00:32 - 2015-07-30 00:32 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
  897. 2015-07-30 00:32 - 2015-07-30 00:32 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
  898. 2015-07-30 00:32 - 2015-07-30 00:32 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
  899. 2015-07-30 00:32 - 2015-07-30 00:32 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
  900. 2015-07-30 00:32 - 2015-07-30 00:32 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
  901. 2015-07-30 00:32 - 2015-07-30 00:32 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
  902. 2015-07-30 00:32 - 2015-07-30 00:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
  903. 2015-07-30 00:32 - 2015-07-30 00:32 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
  904. 2015-07-30 00:32 - 2015-07-30 00:32 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
  905. 2015-07-30 00:32 - 2015-07-30 00:32 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
  906. 2015-07-30 00:32 - 2015-07-30 00:32 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
  907. 2015-07-30 00:32 - 2015-07-30 00:32 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
  908. 2015-07-30 00:32 - 2015-07-30 00:32 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
  909. 2015-07-30 00:32 - 2015-07-30 00:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
  910. 2015-07-30 00:32 - 2015-07-30 00:32 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
  911. 2015-07-30 00:32 - 2015-07-30 00:32 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
  912. 2015-07-30 00:32 - 2015-07-30 00:32 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
  913. 2015-07-30 00:32 - 2015-07-30 00:32 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
  914. 2015-07-30 00:32 - 2015-07-30 00:32 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
  915. 2015-07-30 00:32 - 2015-07-30 00:32 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
  916. 2015-07-30 00:32 - 2015-07-30 00:32 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
  917. 2015-07-30 00:32 - 2015-07-30 00:32 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
  918. 2015-07-30 00:32 - 2015-07-30 00:32 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
  919. 2015-07-30 00:32 - 2015-07-30 00:32 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
  920. 2015-07-30 00:32 - 2015-07-30 00:32 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
  921. 2015-07-30 00:32 - 2015-07-30 00:32 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
  922. 2015-07-30 00:32 - 2015-07-30 00:32 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
  923. 2015-07-30 00:32 - 2015-07-30 00:32 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
  924. 2015-07-30 00:32 - 2015-07-30 00:32 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
  925. 2015-07-30 00:32 - 2015-07-30 00:32 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
  926. 2015-07-30 00:32 - 2015-07-30 00:32 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
  927. 2015-07-30 00:32 - 2015-07-30 00:32 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
  928. 2015-07-30 00:32 - 2015-07-30 00:32 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
  929. 2015-07-30 00:32 - 2015-07-30 00:32 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
  930. 2015-07-30 00:32 - 2015-07-30 00:32 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
  931. 2015-07-30 00:32 - 2015-07-30 00:32 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
  932. 2015-07-30 00:32 - 2015-07-30 00:32 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
  933. 2015-07-30 00:32 - 2015-07-30 00:32 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
  934. 2015-07-30 00:32 - 2015-07-30 00:32 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
  935. 2015-07-30 00:32 - 2015-07-30 00:32 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
  936. 2015-07-30 00:32 - 2015-07-30 00:32 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
  937. 2015-07-30 00:32 - 2015-07-30 00:32 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
  938. 2015-07-30 00:32 - 2015-07-30 00:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
  939. 2015-07-30 00:32 - 2015-07-30 00:32 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
  940. 2015-07-30 00:32 - 2015-07-30 00:32 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
  941. 2015-07-30 00:32 - 2015-07-30 00:32 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
  942. 2015-07-30 00:32 - 2015-07-30 00:32 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
  943. 2015-07-30 00:32 - 2015-07-30 00:32 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
  944. 2015-07-30 00:32 - 2015-07-30 00:32 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
  945. 2015-07-30 00:32 - 2015-07-30 00:32 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
  946. 2015-07-30 00:32 - 2015-07-30 00:32 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
  947. 2015-07-30 00:32 - 2015-07-30 00:32 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
  948. 2015-07-30 00:32 - 2015-07-30 00:32 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
  949. 2015-07-30 00:32 - 2015-07-30 00:32 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
  950. 2015-07-30 00:32 - 2015-07-30 00:32 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
  951. 2015-07-30 00:32 - 2015-07-30 00:32 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
  952. 2015-07-30 00:32 - 2015-07-30 00:32 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
  953. 2015-07-30 00:32 - 2015-07-30 00:32 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
  954. 2015-07-30 00:32 - 2015-07-30 00:32 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
  955. 2015-07-30 00:32 - 2015-07-30 00:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
  956. 2015-07-30 00:32 - 2015-07-30 00:32 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
  957. 2015-07-30 00:32 - 2015-07-30 00:32 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
  958. 2015-07-30 00:32 - 2015-07-30 00:32 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
  959. 2015-07-30 00:32 - 2015-07-30 00:32 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
  960. 2015-07-30 00:32 - 2015-07-30 00:32 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
  961. 2015-07-30 00:32 - 2015-07-30 00:32 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
  962. 2015-07-30 00:32 - 2015-07-30 00:32 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
  963. 2015-07-30 00:32 - 2015-07-30 00:32 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
  964. 2015-07-30 00:32 - 2015-07-30 00:32 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
  965. 2015-07-30 00:32 - 2015-07-30 00:32 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
  966. 2015-07-30 00:32 - 2015-07-30 00:32 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
  967. 2015-07-30 00:32 - 2015-07-30 00:32 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
  968. 2015-07-30 00:32 - 2015-07-30 00:32 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
  969. 2015-07-30 00:32 - 2015-07-30 00:32 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
  970. 2015-07-30 00:32 - 2015-07-30 00:32 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
  971. 2015-07-30 00:32 - 2015-07-30 00:32 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
  972. 2015-07-30 00:32 - 2015-07-30 00:32 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
  973. 2015-07-30 00:32 - 2015-07-30 00:32 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
  974. 2015-07-30 00:30 - 2015-07-30 00:30 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
  975. 2015-07-30 00:28 - 2015-07-30 00:28 - 00000000 ____D C:\Program Files\Reference Assemblies
  976. 2015-07-30 00:28 - 2015-07-30 00:28 - 00000000 ____D C:\Program Files\MSBuild
  977. 2015-07-30 00:28 - 2015-07-30 00:28 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
  978. 2015-07-30 00:28 - 2015-07-30 00:28 - 00000000 ____D C:\Program Files (x86)\MSBuild
  979. 2015-07-30 00:28 - 2015-07-30 00:28 - 00000000 ____D C:\inetpub
  980. 2015-07-30 00:27 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
  981. 2015-07-30 00:27 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
  982. 2015-07-30 00:27 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
  983. 2015-07-30 00:27 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
  984. 2015-07-30 00:27 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
  985. 2015-07-30 00:27 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
  986. 2015-07-29 22:51 - 2015-07-29 22:51 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Software
  987. 2015-07-29 22:42 - 2015-07-29 22:42 - 00000000 ____D C:\Users\tyler_000\AppData\Local\MicrosoftEdge
  988. 2015-07-29 22:24 - 2015-07-31 00:19 - 00015360 _____ () C:\Users\Administrator\Desktop\File.exe
  989. 2015-07-29 22:24 - 2015-07-29 22:25 - 00015360 _____ () C:\Users\tyler_000\Downloads\FileDestroyer (1).exe
  990. 2015-07-29 21:17 - 2015-07-29 21:17 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Publishers
  991. 2015-07-29 21:14 - 2015-07-29 21:14 - 00002357 _____ C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  992. 2015-07-29 21:05 - 2015-07-29 21:07 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Comms
  993. 2015-07-29 21:04 - 2015-07-29 21:04 - 00000020 ___SH C:\Users\tyler_000\ntuser.ini
  994. 2015-07-29 21:04 - 2015-07-29 21:04 - 00000000 ____D C:\Users\tyler_000\AppData\Local\TileDataLayer
  995. 2015-07-29 21:03 - 2015-07-29 21:03 - 00000000 __SHD C:\Recovery
  996. 2015-07-29 20:55 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
  997. 2015-07-29 20:50 - 2015-07-29 20:50 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
  998. 2015-07-29 20:50 - 2015-07-29 20:50 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata
  999. 2015-07-29 20:50 - 2015-07-29 20:50 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata
  1000. 2015-07-29 20:44 - 2015-07-29 20:44 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
  1001. 2015-07-29 20:43 - 2015-07-30 18:00 - 00000000 ____D C:\Users\tyler_000
  1002. 2015-07-29 20:43 - 2015-07-29 21:04 - 00000000 ___RD C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  1003. 2015-07-29 20:43 - 2015-07-29 20:44 - 00000000 ___RD C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
  1004. 2015-07-29 20:43 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
  1005. 2015-07-29 20:43 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
  1006. 2015-07-29 20:43 - 2015-07-10 07:04 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  1007. 2015-07-29 20:42 - 2015-08-14 21:24 - 00006730 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  1008. 2015-07-29 20:42 - 2015-08-12 22:03 - 00000000 ____D C:\Users\Administrator
  1009. 2015-07-29 20:42 - 2015-07-30 23:54 - 00984760 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
  1010. 2015-07-29 20:42 - 2015-07-30 02:05 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  1011. 2015-07-29 20:42 - 2015-07-29 20:43 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
  1012. 2015-07-29 20:42 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
  1013. 2015-07-29 20:42 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
  1014. 2015-07-29 20:42 - 2015-07-10 07:04 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  1015. 2015-07-29 20:40 - 2015-08-09 15:23 - 00000000 ____D C:\Program Files (x86)\Razer
  1016. 2015-07-29 20:40 - 2015-07-29 20:45 - 00000000 ____D C:\ProgramData\Razer
  1017. 2015-07-29 20:40 - 2015-07-29 20:40 - 00001751 _____ C:\WINDOWS\system32\RaCoInst.log
  1018. 2015-07-29 20:39 - 2015-07-29 20:45 - 00000000 ____D C:\Program Files\Intel
  1019. 2015-07-29 20:39 - 2015-07-29 20:39 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
  1020. 2015-07-29 20:39 - 2015-07-29 20:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
  1021. 2015-07-29 20:39 - 2015-07-29 20:39 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
  1022. 2015-07-29 20:39 - 2015-07-17 23:58 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
  1023. 2015-07-29 20:39 - 2015-07-17 23:58 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
  1024. 2015-07-29 20:37 - 2015-07-29 20:38 - 00038274 _____ C:\WINDOWS\system32\NetSetupMig.log
  1025. 2015-07-29 16:25 - 2015-07-29 16:38 - 00000000 ____D C:\sysos
  1026. 2015-07-29 01:02 - 2015-07-29 01:03 - 19646888 _____ (Microsoft Corporation) C:\Users\tyler_000\Downloads\MediaCreationToolx64 (1).exe
  1027. 2015-07-29 00:55 - 2015-07-29 00:55 - 19646888 _____ (Microsoft Corporation) C:\Users\tyler_000\Downloads\MediaCreationToolx64.exe
  1028. 2015-07-29 00:55 - 2015-07-29 00:55 - 18191960 _____ (Microsoft Corporation) C:\Users\tyler_000\Downloads\MediaCreationTool.exe
  1029. 2015-07-28 00:48 - 2015-07-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
  1030. 2015-07-28 00:48 - 2015-07-28 00:48 - 00000000 ____D C:\Program Files (x86)\Windows Kits
  1031. 2015-07-27 23:08 - 2015-07-27 23:08 - 27967669 _____ C:\Users\tyler_000\Downloads\Pokemon Diamond (v05) (US).zip
  1032. 2015-07-27 23:07 - 2015-07-27 23:08 - 00000000 ____D C:\Users\tyler_000\Documents\DeSmu
  1033. 2015-07-27 23:07 - 2015-07-27 23:07 - 01194684 _____ C:\Users\tyler_000\Downloads\desmume-0.9.11-win32.zip
  1034. 2015-07-27 19:05 - 2015-07-29 02:01 - 00472673 _____ C:\Users\tyler_000\Downloads\xRAT.2.0.RELEASE4.1.zip
  1035. 2015-07-27 19:02 - 2015-07-27 19:02 - 00473428 _____ C:\Users\tyler_000\Downloads\Simple Protector -- Beta.rar
  1036. 2015-07-27 16:59 - 2015-07-27 16:59 - 00033988 _____ C:\Users\tyler_000\Downloads\UnitySuite_[www.unknowncheats.me]_.zip
  1037. 2015-07-27 16:52 - 2015-07-27 16:52 - 00005247 _____ C:\Users\tyler_000\Downloads\Bankrollmafia v1.1_mpgh.net.rar
  1038. 2015-07-27 16:52 - 2015-07-27 16:52 - 00005247 _____ C:\Users\tyler_000\Downloads\Bankrollmafia v1.1_mpgh.net (2).rar
  1039. 2015-07-27 16:52 - 2015-07-27 16:52 - 00005247 _____ C:\Users\tyler_000\Downloads\Bankrollmafia v1.1_mpgh.net (1).rar
  1040. 2015-07-27 16:27 - 2015-08-14 21:55 - 02173952 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
  1041. 2015-07-27 16:27 - 2015-07-27 16:27 - 02146816 _____ (Farbar) C:\Users\tyler_000\Downloads\FRST64.exe
  1042. 2015-07-27 15:22 - 2015-07-27 15:22 - 00917969 _____ C:\Users\tyler_000\Downloads\Unturned Editor 2.2.0 (1)_mpgh.net.rar
  1043. 2015-07-27 15:04 - 2015-07-27 15:04 - 00015360 _____ () C:\Users\tyler_000\Downloads\FileDestroyer.exe
  1044. 2015-07-26 22:44 - 2015-07-26 22:44 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
  1045. 2015-07-26 22:44 - 2015-01-16 19:09 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
  1046. 2015-07-26 22:44 - 2015-01-16 19:09 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
  1047. 2015-07-26 22:44 - 2015-01-16 19:09 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
  1048. 2015-07-26 22:44 - 2015-01-16 19:09 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
  1049. 2015-07-26 22:44 - 2015-01-16 19:09 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
  1050. 2015-07-26 22:44 - 2015-01-16 19:09 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
  1051. 2015-07-26 22:44 - 2015-01-16 19:09 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
  1052. 2015-07-26 22:44 - 2015-01-16 19:09 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
  1053. 2015-07-26 22:44 - 2015-01-16 19:09 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
  1054. 2015-07-26 22:44 - 2015-01-16 19:09 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
  1055. 2015-07-26 22:44 - 2015-01-16 19:09 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
  1056. 2015-07-26 22:44 - 2015-01-16 19:09 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
  1057. 2015-07-26 22:44 - 2015-01-16 19:09 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
  1058. 2015-07-26 22:44 - 2015-01-16 19:09 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
  1059. 2015-07-26 22:44 - 2015-01-16 19:09 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
  1060. 2015-07-26 22:44 - 2015-01-16 19:09 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
  1061. 2015-07-26 22:44 - 2015-01-16 19:09 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
  1062. 2015-07-26 22:44 - 2015-01-16 19:09 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
  1063. 2015-07-26 22:44 - 2015-01-16 19:09 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
  1064. 2015-07-26 22:44 - 2015-01-16 19:09 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
  1065. 2015-07-26 22:44 - 2015-01-16 19:09 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
  1066. 2015-07-26 22:44 - 2015-01-16 19:09 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
  1067. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
  1068. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
  1069. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
  1070. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
  1071. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
  1072. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
  1073. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
  1074. 2015-07-26 22:44 - 2015-01-16 19:09 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
  1075. 2015-07-26 22:33 - 2015-07-27 17:00 - 00000000 ____D C:\UnitySuite
  1076. 2015-07-26 22:10 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
  1077. 2015-07-26 22:10 - 2015-07-26 22:11 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Notepad++
  1078. 2015-07-26 22:10 - 2015-07-26 22:10 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
  1079. 2015-07-26 22:10 - 2015-07-26 22:10 - 00000000 ____D C:\Users\tyler_000\AppData\Local\openvr
  1080. 2015-07-26 22:10 - 2015-07-26 22:10 - 00000000 ____D C:\Program Files (x86)\Notepad++
  1081. 2015-07-26 19:15 - 2015-07-26 19:15 - 00000000 ____D C:\Users\tyler_000\AppData\Local\CEF
  1082. 2015-07-25 16:02 - 2015-07-25 16:02 - 00000000 ____D C:\Users\Administrator\Desktop\sk
  1083. 2015-07-24 11:58 - 2015-07-24 12:01 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\VeraCrypt
  1084. 2015-07-24 11:56 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt
  1085. 2015-07-24 11:56 - 2015-07-24 11:56 - 00192344 _____ (IDRIX) C:\WINDOWS\system32\Drivers\veracrypt.sys
  1086. 2015-07-24 11:55 - 2015-07-24 11:56 - 00000000 ____D C:\Program Files\VeraCrypt
  1087. 2015-07-23 20:49 - 2015-07-23 20:49 - 00000532 _____ C:\Users\tyler_000\Documents\jord.txt
  1088. 2015-07-23 15:41 - 2015-08-08 20:04 - 00000000 ___RD C:\Users\Administrator\Desktop\ 
  1089. 2015-07-23 02:33 - 2015-08-11 14:00 - 00000000 ____D C:\Program Files\WinPcap
  1090. 2015-07-22 18:30 - 2015-07-22 18:30 - 00000000 ____D C:\Users\tyler_000\AppData\Local\AAA_Internet_Publishing,_
  1091. 2015-07-22 18:30 - 2015-04-02 08:19 - 00027392 ____N (AAA Internet Publishing, Inc.) C:\WINDOWS\system32\Drivers\WtfEngineDrv.sys
  1092. 2015-07-21 19:19 - 2015-07-21 19:19 - 00000000 ____D C:\Users\tyler_000\Documents\Wondershare
  1093. 2015-07-21 19:18 - 2015-07-21 19:19 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Wondershare
  1094. 2015-07-21 19:18 - 2015-07-21 19:18 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\HMYGSetting
  1095. 2015-07-21 19:18 - 2015-07-21 19:18 - 00000000 ____D C:\ProgramData\wondershare
  1096. 2015-07-21 19:17 - 2015-07-21 19:18 - 00000000 ____D C:\Users\Public\Documents\Wondershare
  1097. 2015-07-21 01:23 - 2015-07-21 01:23 - 00000000 ____D C:\Program Files (x86)\Web Solution Mart
  1098. 2015-07-21 01:23 - 2012-05-18 09:53 - 00148992 _____ ( ) C:\WINDOWS\system32\LAGARITH.DLL
  1099. 2015-07-21 01:21 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fake Webcam 7.4
  1100. 2015-07-21 01:21 - 2004-03-09 01:00 - 00662288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCOMCT2.OCX
  1101. 2015-07-20 19:46 - 2015-07-20 19:46 - 00000791 _____ C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
  1102. 2015-07-20 19:46 - 2015-07-20 19:46 - 00000000 ____D C:\Tor Browser
  1103. 2015-07-20 19:36 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
  1104. 2015-07-20 19:36 - 2015-07-29 01:47 - 00000000 ____D C:\ProgramData\SystemExplorer
  1105. 2015-07-20 19:36 - 2015-07-20 19:36 - 00000000 ____D C:\Program Files (x86)\System Explorer
  1106. 2015-07-20 14:39 - 2015-07-20 14:39 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Aeria Games
  1107. 2015-07-20 14:39 - 2015-07-20 14:39 - 00000000 ____D C:\ProgramData\Aeria Games
  1108. 2015-07-20 01:22 - 2015-07-20 01:22 - 00001569 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
  1109. 2015-07-20 01:00 - 2015-07-20 01:00 - 00000218 _____ C:\Users\tyler_000\.recently-used.xbel
  1110. 2015-07-19 22:05 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Psi
  1111. 2015-07-19 22:05 - 2015-07-19 22:05 - 00000958 _____ C:\Users\Administrator\Desktop\Psi.lnk
  1112. 2015-07-19 19:41 - 2015-07-20 14:40 - 00000000 ____D C:\Users\tyler_000\Downloads\MaxISploit
  1113. 2015-07-19 18:24 - 2015-07-29 20:44 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
  1114. 2015-07-19 18:19 - 2015-07-29 20:46 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
  1115. 2015-07-19 18:19 - 2015-07-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
  1116. 2015-07-19 18:19 - 2015-07-19 18:19 - 00000000 ____D C:\Program Files (x86)\Aeria Games
  1117. 2015-07-19 17:53 - 2015-07-19 17:53 - 00000000 ____D C:\Users\tyler_000\AppData\Local\gtk-2.0
  1118. 2015-07-19 15:16 - 2015-07-20 01:00 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\.purple
  1119. 2015-07-19 15:13 - 2015-07-19 15:13 - 00001014 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
  1120. 2015-07-19 15:13 - 2015-07-19 15:13 - 00000000 ____D C:\Program Files (x86)\Pidgin
  1121. 2015-07-19 14:35 - 2015-07-29 23:53 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Akamai
  1122. 2015-07-19 14:35 - 2015-07-19 18:19 - 00000000 ____D C:\AeriaGames
  1123. 2015-07-19 01:41 - 2015-07-22 03:09 - 00000000 ____D C:\Users\Administrator\Desktop\iPhone Shit
  1124. 2015-07-19 01:32 - 2015-07-19 01:33 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\TaiG
  1125. 2015-07-19 01:24 - 2015-07-19 01:24 - 00000000 ____D C:\win-data
  1126. 2015-07-18 23:27 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
  1127. 2015-07-18 23:26 - 2015-07-23 01:56 - 00000000 ____D C:\Program Files (x86)\iTunes
  1128. 2015-07-18 23:26 - 2015-07-18 23:27 - 00000000 ____D C:\Program Files\iTunes
  1129. 2015-07-18 23:26 - 2015-07-18 23:26 - 00000000 ____D C:\Program Files\iPod
  1130. 2015-07-18 01:35 - 2015-07-18 01:35 - 00019724 _____ C:\Users\tyler_000\Documents\Nachash.txt
  1131. 2015-07-18 00:36 - 2015-07-18 00:36 - 06389688 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
  1132. 2015-07-18 00:36 - 2015-07-18 00:36 - 00519056 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
  1133. 2015-07-18 00:36 - 2015-07-18 00:36 - 00283024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
  1134. 2015-07-18 00:35 - 2015-07-18 00:35 - 01008016 _____ C:\WINDOWS\system32\igfxSDK.exe
  1135. 2015-07-18 00:35 - 2015-07-18 00:35 - 00927120 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
  1136. 2015-07-18 00:35 - 2015-07-18 00:35 - 00923536 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
  1137. 2015-07-18 00:35 - 2015-07-18 00:35 - 00589712 _____ C:\WINDOWS\system32\IntelCpHDCPSvc.exe
  1138. 2015-07-18 00:35 - 2015-07-18 00:35 - 00448912 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
  1139. 2015-07-18 00:35 - 2015-07-18 00:35 - 00396688 _____ C:\WINDOWS\system32\igfxTray.exe
  1140. 2015-07-18 00:35 - 2015-07-18 00:35 - 00351120 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
  1141. 2015-07-18 00:35 - 2015-07-18 00:35 - 00328080 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
  1142. 2015-07-18 00:35 - 2015-07-18 00:35 - 00249232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
  1143. 2015-07-18 00:35 - 2015-07-18 00:35 - 00219024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
  1144. 2015-07-18 00:35 - 2015-07-18 00:35 - 00214416 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
  1145. 2015-07-18 00:35 - 2015-07-18 00:35 - 00213904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
  1146. 2015-07-18 00:35 - 2015-07-18 00:35 - 00157072 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
  1147. 2015-07-18 00:34 - 2015-07-18 00:34 - 36681912 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
  1148. 2015-07-18 00:34 - 2015-07-18 00:34 - 35768808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
  1149. 2015-07-18 00:34 - 2015-07-18 00:34 - 30404056 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
  1150. 2015-07-18 00:34 - 2015-07-18 00:34 - 29613040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
  1151. 2015-07-18 00:34 - 2015-07-18 00:34 - 13727296 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
  1152. 2015-07-18 00:34 - 2015-07-18 00:34 - 12880160 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
  1153. 2015-07-18 00:34 - 2015-07-18 00:34 - 11276968 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
  1154. 2015-07-18 00:34 - 2015-07-18 00:34 - 10528136 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
  1155. 2015-07-18 00:34 - 2015-07-18 00:34 - 06305696 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
  1156. 2015-07-18 00:34 - 2015-07-18 00:34 - 05121136 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
  1157. 2015-07-18 00:34 - 2015-07-18 00:34 - 05092320 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
  1158. 2015-07-18 00:34 - 2015-07-18 00:34 - 04841488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
  1159. 2015-07-18 00:34 - 2015-07-18 00:34 - 01858632 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
  1160. 2015-07-18 00:34 - 2015-07-18 00:34 - 01767992 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
  1161. 2015-07-18 00:34 - 2015-07-18 00:34 - 01765408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
  1162. 2015-07-18 00:34 - 2015-07-18 00:34 - 01456408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
  1163. 2015-07-18 00:34 - 2015-07-18 00:34 - 00284280 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
  1164. 2015-07-18 00:34 - 2015-07-18 00:34 - 00269360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
  1165. 2015-07-18 00:34 - 2015-07-18 00:34 - 00220432 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
  1166. 2015-07-18 00:34 - 2015-07-18 00:34 - 00200856 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
  1167. 2015-07-18 00:34 - 2015-07-18 00:34 - 00184352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
  1168. 2015-07-18 00:34 - 2015-07-18 00:34 - 00163776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
  1169. 2015-07-18 00:34 - 2015-07-18 00:34 - 00162752 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
  1170. 2015-07-18 00:34 - 2015-07-18 00:34 - 00160680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
  1171. 2015-07-18 00:34 - 2015-07-18 00:34 - 00141080 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
  1172. 2015-07-18 00:34 - 2015-07-18 00:34 - 00140056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
  1173. 2015-07-18 00:34 - 2015-07-18 00:34 - 00036616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
  1174. 2015-07-18 00:34 - 2015-07-18 00:34 - 00004682 _____ C:\WINDOWS\system32\iglhxs64.vp
  1175. 2015-07-18 00:29 - 2015-07-18 00:29 - 11384832 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
  1176. 2015-07-18 00:29 - 2015-07-18 00:29 - 04443136 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
  1177. 2015-07-18 00:29 - 2015-07-18 00:29 - 00425472 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
  1178. 2015-07-18 00:29 - 2015-07-18 00:29 - 00397824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
  1179. 2015-07-18 00:28 - 2015-07-18 00:28 - 29084160 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
  1180. 2015-07-18 00:28 - 2015-07-18 00:28 - 06741482 _____ C:\WINDOWS\system32\igdclbif.bin
  1181. 2015-07-18 00:28 - 2015-07-18 00:28 - 05467648 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
  1182. 2015-07-18 00:28 - 2015-07-18 00:28 - 05245440 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
  1183. 2015-07-18 00:28 - 2015-07-18 00:28 - 02028032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
  1184. 2015-07-18 00:28 - 2015-07-18 00:28 - 01216000 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
  1185. 2015-07-18 00:28 - 2015-07-18 00:28 - 00723456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
  1186. 2015-07-18 00:28 - 2015-07-18 00:28 - 00641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
  1187. 2015-07-18 00:28 - 2015-07-18 00:28 - 00624128 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
  1188. 2015-07-18 00:28 - 2015-07-18 00:28 - 00403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
  1189. 2015-07-18 00:28 - 2015-07-18 00:28 - 00386048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
  1190. 2015-07-18 00:28 - 2015-07-18 00:28 - 00375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
  1191. 2015-07-18 00:28 - 2015-07-18 00:28 - 00353280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
  1192. 2015-07-18 00:28 - 2015-07-18 00:28 - 00256000 _____ C:\WINDOWS\system32\igfxCPL.cpl
  1193. 2015-07-18 00:28 - 2015-07-18 00:28 - 00243200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
  1194. 2015-07-18 00:28 - 2015-07-18 00:28 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
  1195. 2015-07-18 00:28 - 2015-07-18 00:28 - 00090112 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
  1196. 2015-07-18 00:28 - 2015-07-18 00:28 - 00086016 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
  1197. 2015-07-18 00:28 - 2015-07-18 00:28 - 00082944 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
  1198. 2015-07-18 00:28 - 2015-07-18 00:28 - 00073728 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
  1199. 2015-07-18 00:28 - 2015-07-18 00:28 - 00064512 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
  1200. 2015-07-18 00:28 - 2015-07-18 00:28 - 00011776 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
  1201. 2015-07-18 00:28 - 2015-07-18 00:28 - 00011264 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
  1202. 2015-07-18 00:28 - 2015-07-18 00:28 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
  1203. 2015-07-18 00:28 - 2015-07-18 00:28 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
  1204. 2015-07-18 00:28 - 2015-07-18 00:28 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
  1205. 2015-07-18 00:28 - 2015-07-18 00:28 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
  1206. 2015-07-18 00:24 - 2015-07-18 00:24 - 00153600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
  1207. 2015-07-18 00:18 - 2015-07-18 00:18 - 03873280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
  1208. 2015-07-18 00:17 - 2015-07-18 00:17 - 00373248 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
  1209. 2015-07-18 00:17 - 2015-07-18 00:17 - 00300032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
  1210. 2015-07-18 00:16 - 2015-07-18 00:16 - 03801600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
  1211. 2015-07-18 00:16 - 2015-07-18 00:16 - 00970752 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
  1212. 2015-07-18 00:09 - 2015-07-18 00:09 - 08507392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
  1213. 2015-07-18 00:03 - 2015-07-18 00:03 - 00035328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
  1214. 2015-07-17 23:58 - 2015-07-17 23:58 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
  1215. 2015-07-17 23:58 - 2015-07-17 23:58 - 01565696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
  1216. 2015-07-17 23:58 - 2015-07-17 23:58 - 01156608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
  1217. 2015-07-17 23:58 - 2015-07-17 23:58 - 00803113 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
  1218. 2015-07-17 23:58 - 2015-07-17 23:58 - 00511260 _____ C:\WINDOWS\system32\cp_resources.bin
  1219. 2015-07-17 23:58 - 2015-07-17 23:58 - 00331808 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
  1220. 2015-07-17 23:58 - 2015-07-17 23:58 - 00313888 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
  1221. 2015-07-17 23:58 - 2015-07-17 23:58 - 00143904 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
  1222. 2015-07-17 23:58 - 2015-07-17 23:58 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
  1223. 2015-07-17 23:58 - 2015-07-17 23:58 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
  1224. 2015-07-17 23:58 - 2015-07-17 23:58 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
  1225. 2015-07-17 23:58 - 2015-07-17 23:58 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
  1226. 2015-07-17 23:58 - 2015-07-17 23:58 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
  1227. 2015-07-17 23:58 - 2015-07-17 23:58 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
  1228. 2015-07-17 23:58 - 2015-07-17 23:58 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
  1229. 2015-07-17 23:58 - 2015-07-17 23:58 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
  1230. 2015-07-17 23:58 - 2015-07-17 23:58 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
  1231. 2015-07-16 17:55 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
  1232. 2015-07-16 17:55 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
  1233. 2015-07-16 17:54 - 2015-07-29 01:07 - 00000000 ____D C:\ProgramData\Kaspersky Lab
  1234. 2015-07-16 17:54 - 2015-07-16 17:54 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
  1235. 2015-07-16 17:54 - 2015-06-27 22:14 - 00831664 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
  1236. 2015-07-16 17:54 - 2015-06-27 22:14 - 00226480 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys
  1237. 2015-07-16 17:54 - 2015-06-27 22:14 - 00159960 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
  1238. 2015-07-15 19:37 - 2015-07-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ITSecTeam
  1239. 2015-07-15 19:37 - 2015-07-15 19:37 - 00000000 ____D C:\Program Files (x86)\ITSecTeam
  1240. 2015-07-15 19:12 - 2015-07-15 19:12 - 00000000 ____D C:\Users\tyler_000\Documents\Skype Voice Records
  1241. 2015-07-15 19:12 - 2015-07-15 19:12 - 00000000 ____D C:\Users\tyler_000\Documents\Clownfish Avatars
  1242. 2015-07-15 19:11 - 2015-07-29 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish
  1243. 2015-07-15 19:11 - 2015-07-15 19:11 - 00000000 ____D C:\Program Files (x86)\Clownfish
  1244. 2015-07-15 00:35 - 2015-07-15 00:35 - 00000000 ____D C:\Users\tyler_000\Documents\My Games
  1245. 2015-07-15 00:35 - 2015-07-15 00:35 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
  1246.  
  1247. ==================== One Month Modified files and folders ========
  1248.  
  1249. (If an entry is included in the fixlist, the file/folder will be moved.)
  1250.  
  1251. 2015-08-14 21:55 - 2015-04-26 12:51 - 00000000 ____D C:\FRST
  1252. 2015-08-14 21:49 - 2015-04-21 18:24 - 00000930 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
  1253. 2015-08-14 21:48 - 2015-05-04 19:33 - 00000000 ____D C:\Program Files\SoftEther VPN Client
  1254. 2015-08-14 21:47 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
  1255. 2015-08-14 21:42 - 2015-04-21 18:24 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
  1256. 2015-08-14 21:27 - 2015-06-05 23:01 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
  1257. 2015-08-14 21:26 - 2015-04-21 18:26 - 00000000 ____D C:\Program Files (x86)\Steam
  1258. 2015-08-14 21:15 - 2015-04-23 00:18 - 00000376 _____ C:\WINDOWS\Tasks\HPCeeScheduleFortyler_000.job
  1259. 2015-08-14 20:47 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
  1260. 2015-08-14 20:14 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
  1261. 2015-08-14 03:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
  1262. 2015-08-14 02:07 - 2014-09-09 22:03 - 00000000 ____D C:\Games
  1263. 2015-08-13 17:16 - 2013-09-12 14:55 - 00150590 ____N C:\WINDOWS\Minidump\081315-29531-01.dmp
  1264. 2015-08-13 16:58 - 2013-09-12 14:55 - 00148798 ____N C:\WINDOWS\Minidump\081315-35109-01.dmp
  1265. 2015-08-13 16:36 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
  1266. 2015-08-13 15:24 - 2015-04-21 18:54 - 00000000 ___RD C:\Program Files (x86)\Skype
  1267. 2015-08-13 15:24 - 2015-04-21 18:54 - 00000000 ____D C:\ProgramData\Skype
  1268. 2015-08-13 14:00 - 2015-06-15 15:19 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
  1269. 2015-08-12 22:08 - 2015-04-23 00:18 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
  1270. 2015-08-12 09:25 - 2015-07-10 08:20 - 04844568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  1271. 2015-08-12 09:24 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  1272. 2015-08-12 09:24 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  1273. 2015-08-12 09:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  1274. 2015-08-12 09:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
  1275. 2015-08-12 09:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
  1276. 2015-08-12 09:24 - 2015-07-10 05:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
  1277. 2015-08-12 04:23 - 2015-04-25 02:25 - 00000000 ____D C:\WINDOWS\system32\MRT
  1278. 2015-08-11 20:27 - 2015-06-05 23:01 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
  1279. 2015-08-11 18:05 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
  1280. 2015-08-10 15:57 - 2013-08-19 19:57 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
  1281. 2015-08-09 17:09 - 2015-06-15 15:19 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
  1282. 2015-08-09 16:05 - 2013-08-19 20:16 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
  1283. 2015-08-09 15:34 - 2015-04-24 21:19 - 00000000 ____D C:\ProgramData\BlueStacksSetup
  1284. 2015-08-09 15:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
  1285. 2015-08-08 22:25 - 2015-04-24 16:20 - 00002816 _____ C:\WINDOWS\Sandboxie.ini
  1286. 2015-08-08 16:51 - 2015-05-01 20:15 - 00000000 ____D C:\Program Files (x86)\Opera
  1287. 2015-08-08 16:50 - 2015-05-01 20:15 - 00001127 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
  1288. 2015-08-08 11:38 - 2015-07-10 07:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  1289. 2015-08-08 11:38 - 2015-07-10 07:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  1290. 2015-07-31 14:00 - 2015-06-15 15:22 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
  1291. 2015-07-31 14:00 - 2015-06-15 15:19 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
  1292. 2015-07-31 14:00 - 2015-06-15 15:19 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
  1293. 2015-07-31 14:00 - 2015-06-15 15:19 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
  1294. 2015-07-31 14:00 - 2015-06-15 15:19 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
  1295. 2015-07-31 14:00 - 2015-06-15 15:19 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
  1296. 2015-07-31 14:00 - 2015-06-15 15:19 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
  1297. 2015-07-31 14:00 - 2015-06-15 15:19 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
  1298. 2015-07-31 01:37 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
  1299. 2015-07-31 00:12 - 2015-05-04 18:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  1300. 2015-07-30 23:52 - 2014-06-15 19:05 - 00000000 ___RD C:\Sandbox
  1301. 2015-07-30 21:43 - 2015-04-25 18:14 - 00000000 ____D C:\ProgramData\Nimoru
  1302. 2015-07-30 19:58 - 2015-02-08 23:59 - 00088248 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
  1303. 2015-07-30 19:58 - 2013-08-19 20:00 - 00000000 ____D C:\ProgramData\Temp
  1304. 2015-07-30 18:00 - 2015-07-12 16:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
  1305. 2015-07-30 18:00 - 2015-05-04 18:10 - 00001235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
  1306. 2015-07-30 17:54 - 2013-08-19 20:10 - 00000000 ___RD C:\Users\Administrator\SkyDrive
  1307. 2015-07-30 16:47 - 2015-04-21 17:42 - 00000000 ___HD C:\$SysReset
  1308. 2015-07-30 14:05 - 2015-05-03 17:14 - 00001908 _____ C:\WINDOWS\diagwrn.xml
  1309. 2015-07-30 14:05 - 2015-05-03 17:14 - 00001908 _____ C:\WINDOWS\diagerr.xml
  1310. 2015-07-30 13:16 - 2013-04-03 20:13 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
  1311. 2015-07-30 12:46 - 2015-05-02 15:54 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\BitTorrent
  1312. 2015-07-30 04:23 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
  1313. 2015-07-30 02:39 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
  1314. 2015-07-30 02:39 - 2013-08-22 11:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
  1315. 2015-07-30 02:07 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
  1316. 2015-07-30 00:35 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
  1317. 2015-07-30 00:33 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
  1318. 2015-07-30 00:33 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
  1319. 2015-07-30 00:33 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
  1320. 2015-07-30 00:33 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
  1321. 2015-07-30 00:28 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
  1322. 2015-07-30 00:28 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
  1323. 2015-07-30 00:28 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
  1324. 2015-07-30 00:28 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
  1325. 2015-07-30 00:28 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
  1326. 2015-07-30 00:28 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
  1327. 2015-07-30 00:28 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
  1328. 2015-07-30 00:28 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
  1329. 2015-07-30 00:28 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
  1330. 2015-07-30 00:28 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
  1331. 2015-07-30 00:28 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
  1332. 2015-07-30 00:28 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
  1333. 2015-07-30 00:28 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
  1334. 2015-07-30 00:28 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
  1335. 2015-07-29 23:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\restore
  1336. 2015-07-29 22:57 - 2015-04-21 18:26 - 00002880 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1593349770-2714411459-2019522330-1001
  1337. 2015-07-29 22:42 - 2015-04-21 18:54 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Skype
  1338. 2015-07-29 21:19 - 2015-04-21 18:15 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Packages
  1339. 2015-07-29 21:14 - 2015-05-03 17:35 - 00000000 __RDO C:\Users\tyler_000\OneDrive
  1340. 2015-07-29 21:05 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
  1341. 2015-07-29 21:05 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
  1342. 2015-07-29 21:05 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
  1343. 2015-07-29 21:05 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  1344. 2015-07-29 21:04 - 2013-08-19 19:52 - 00000000 ____D C:\Intel
  1345. 2015-07-29 21:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
  1346. 2015-07-29 21:01 - 2015-06-15 16:29 - 00004018 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1593349770-2714411459-2019522330-1001UA
  1347. 2015-07-29 21:01 - 2015-06-15 16:29 - 00003638 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1593349770-2714411459-2019522330-1001Core
  1348. 2015-07-29 21:01 - 2015-06-15 16:29 - 00000952 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1593349770-2714411459-2019522330-1001UA.job
  1349. 2015-07-29 21:01 - 2015-06-15 16:29 - 00000900 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1593349770-2714411459-2019522330-1001Core.job
  1350. 2015-07-29 21:01 - 2015-05-03 17:28 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
  1351. 2015-07-29 21:01 - 2015-04-27 16:34 - 00002918 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
  1352. 2015-07-29 21:01 - 2015-04-23 00:18 - 00003308 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFortyler_000
  1353. 2015-07-29 21:01 - 2015-04-21 18:24 - 00004016 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  1354. 2015-07-29 21:01 - 2015-04-21 18:24 - 00003780 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  1355. 2015-07-29 21:01 - 2015-04-21 18:17 - 00004072 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EFF186D7-F674-44D8-B91F-1834CA490A65}
  1356. 2015-07-29 21:01 - 2013-08-19 20:03 - 00003270 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
  1357. 2015-07-29 21:01 - 2013-08-19 20:03 - 00003270 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
  1358. 2015-07-29 20:53 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
  1359. 2015-07-29 20:52 - 2015-07-14 01:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
  1360. 2015-07-29 20:52 - 2015-07-10 09:14 - 00000000 ____D C:\WINDOWS\ShellNew
  1361. 2015-07-29 20:52 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
  1362. 2015-07-29 20:52 - 2015-07-09 23:34 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
  1363. 2015-07-29 20:52 - 2015-07-09 18:10 - 00000000 ____D C:\WINDOWS\SysWOW64\ComIntRepair
  1364. 2015-07-29 20:52 - 2015-07-09 16:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desktop Cleaner
  1365. 2015-07-29 20:52 - 2015-07-07 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proxifier
  1366. 2015-07-29 20:52 - 2015-07-06 18:44 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
  1367. 2015-07-29 20:52 - 2015-07-03 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
  1368. 2015-07-29 20:52 - 2015-06-15 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
  1369. 2015-07-29 20:52 - 2015-05-31 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gif Recorder
  1370. 2015-07-29 20:52 - 2015-05-28 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
  1371. 2015-07-29 20:52 - 2015-05-24 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CommView
  1372. 2015-07-29 20:52 - 2015-05-23 23:30 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
  1373. 2015-07-29 20:52 - 2015-05-22 15:41 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
  1374. 2015-07-29 20:52 - 2015-05-22 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
  1375. 2015-07-29 20:52 - 2015-05-04 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
  1376. 2015-07-29 20:52 - 2015-05-03 14:53 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
  1377. 2015-07-29 20:52 - 2015-04-30 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
  1378. 2015-07-29 20:52 - 2015-04-30 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
  1379. 2015-07-29 20:52 - 2015-04-28 17:06 - 00000000 ____D C:\WINDOWS\SysWOW64\HavijPro
  1380. 2015-07-29 20:52 - 2015-04-28 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
  1381. 2015-07-29 20:52 - 2015-04-28 11:07 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
  1382. 2015-07-29 20:52 - 2015-04-27 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  1383. 2015-07-29 20:52 - 2015-04-24 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  1384. 2015-07-29 20:52 - 2015-04-23 15:51 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  1385. 2015-07-29 20:52 - 2015-04-23 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  1386. 2015-07-29 20:52 - 2015-04-21 19:53 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
  1387. 2015-07-29 20:52 - 2015-04-21 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  1388. 2015-07-29 20:52 - 2015-04-21 18:36 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  1389. 2015-07-29 20:52 - 2015-04-21 18:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
  1390. 2015-07-29 20:52 - 2015-04-21 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
  1391. 2015-07-29 20:52 - 2013-08-19 20:11 - 00000000 ____D C:\WINDOWS\en
  1392. 2015-07-29 20:52 - 2013-08-19 20:10 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
  1393. 2015-07-29 20:52 - 2013-08-19 20:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
  1394. 2015-07-29 20:52 - 2013-08-19 20:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
  1395. 2015-07-29 20:50 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
  1396. 2015-07-29 20:50 - 2013-08-22 09:36 - 00000000 ____D C:\Users\Default.migrated
  1397. 2015-07-29 20:50 - 2013-08-19 19:52 - 00000000 ____D C:\ProgramData\SoundResearch
  1398. 2015-07-29 20:47 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
  1399. 2015-07-29 20:47 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA
  1400. 2015-07-29 20:47 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
  1401. 2015-07-29 20:47 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH
  1402. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
  1403. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI
  1404. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
  1405. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO
  1406. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
  1407. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
  1408. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
  1409. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
  1410. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR
  1411. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL
  1412. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
  1413. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
  1414. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG
  1415. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA
  1416. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
  1417. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\uk-UA
  1418. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
  1419. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\th-TH
  1420. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
  1421. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
  1422. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sl-SI
  1423. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sk-SK
  1424. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\ro-RO
  1425. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\lv-LV
  1426. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\lt-LT
  1427. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
  1428. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
  1429. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\hr-HR
  1430. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\he-IL
  1431. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\et-EE
  1432. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\en-GB
  1433. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\bg-BG
  1434. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\ar-SA
  1435. 2015-07-29 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
  1436. 2015-07-29 20:46 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
  1437. 2015-07-29 20:46 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
  1438. 2015-07-29 20:46 - 2013-08-19 19:59 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
  1439. 2015-07-29 20:45 - 2015-07-10 07:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
  1440. 2015-07-29 20:45 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
  1441. 2015-07-29 20:45 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\InputMethod
  1442. 2015-07-29 20:45 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
  1443. 2015-07-29 20:45 - 2015-06-26 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
  1444. 2015-07-29 20:45 - 2015-05-28 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
  1445. 2015-07-29 20:45 - 2015-05-13 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
  1446. 2015-07-29 20:45 - 2015-04-21 18:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
  1447. 2015-07-29 20:45 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\MediaViewer
  1448. 2015-07-29 20:45 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\ADFS
  1449. 2015-07-29 20:45 - 2013-08-19 20:00 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
  1450. 2015-07-29 20:45 - 2013-04-03 20:13 - 00000000 ____D C:\ProgramData\PRICache
  1451. 2015-07-29 20:44 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
  1452. 2015-07-29 20:44 - 2015-05-16 19:21 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Charles
  1453. 2015-07-29 20:44 - 2015-04-28 12:07 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
  1454. 2015-07-29 20:42 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
  1455. 2015-07-29 20:22 - 2013-08-19 20:14 - 00003620 _____ C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
  1456. 2015-07-29 01:56 - 2015-07-12 03:38 - 00000000 ____D C:\Users\tyler_000\Downloads\xRAT 2.0 RELEASE4.1
  1457. 2015-07-28 10:59 - 2015-04-25 02:25 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  1458. 2015-07-27 16:45 - 2015-04-23 15:26 - 00000000 ____D C:\Users\tyler_000\AppData\Local\CrashDumps
  1459. 2015-07-27 00:44 - 2015-07-06 18:45 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Curse Client
  1460. 2015-07-26 23:22 - 2013-08-19 20:14 - 00000088 _____ C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
  1461. 2015-07-26 22:44 - 2013-04-03 20:17 - 00000000 ____D C:\ProgramData\Package Cache
  1462. 2015-07-26 19:11 - 2015-07-09 23:34 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\OBS
  1463. 2015-07-26 18:30 - 2015-05-26 15:51 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Psi
  1464. 2015-07-24 22:53 - 2015-04-28 10:55 - 00002256 ____H C:\Users\tyler_000\Documents\Default.rdp
  1465. 2015-07-23 02:33 - 2015-05-05 16:42 - 00000000 ____D C:\Program Files (x86)\Nmap
  1466. 2015-07-21 19:18 - 2015-05-13 17:11 - 00000000 ____D C:\Program Files (x86)\Wondershare
  1467. 2015-07-21 19:18 - 2015-05-06 16:09 - 00000000 ____D C:\Users\tyler_000\.android
  1468. 2015-07-21 03:20 - 2015-07-10 16:51 - 00003050 _____ C:\Users\tyler_000\Documents\Untitled.wallet
  1469. 2015-07-21 03:20 - 2015-07-10 16:51 - 00000789 _____ C:\Users\tyler_000\Documents\Untitled.info
  1470. 2015-07-21 02:17 - 2015-05-03 14:44 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Adobe
  1471. 2015-07-21 01:37 - 2015-05-31 19:28 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Gif Recorder
  1472. 2015-07-21 01:37 - 2015-05-31 19:28 - 00000000 ____D C:\Users\tyler_000\AppData\Local\Gif Recorder
  1473. 2015-07-21 01:23 - 2015-06-22 17:24 - 00000000 ____D C:\Program Files\Web Solution Mart
  1474. 2015-07-20 01:24 - 2015-04-21 18:16 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\Adobe
  1475. 2015-07-20 01:02 - 2015-04-24 16:07 - 00000000 ____D C:\ProgramData\Oracle
  1476. 2015-07-20 01:02 - 2015-04-24 16:07 - 00000000 ____D C:\Program Files (x86)\Java
  1477. 2015-07-20 01:01 - 2015-04-24 16:07 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
  1478. 2015-07-19 22:05 - 2015-05-26 15:51 - 00000000 ____D C:\Program Files (x86)\Psi
  1479. 2015-07-19 01:38 - 2015-05-13 17:34 - 00000000 ____D C:\Program Files\Common Files\Apple
  1480. 2015-07-18 23:26 - 2015-05-13 17:36 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
  1481. 2015-07-17 14:54 - 2015-04-28 12:06 - 00000000 ____D C:\Users\tyler_000\AppData\Roaming\TS3Client
  1482. 2015-07-16 17:58 - 2015-07-11 22:39 - 00000000 ____D C:\ProgramData\iolo
  1483.  
  1484. ==================== Files in the root of some directories =======
  1485.  
  1486. 2015-08-09 20:25 - 2015-08-09 20:25 - 0000003 _____ () C:\Users\Administrator\AppData\Local\updater.log
  1487. 2015-08-09 20:25 - 2015-08-09 20:25 - 0000424 _____ () C:\Users\Administrator\AppData\Local\UserProducts.xml
  1488.  
  1489. Some files in TEMP:
  1490. ====================
  1491. C:\Users\Administrator\AppData\Local\Temp\SkypeSetup.exe
  1492.  
  1493.  
  1494. ==================== Bamital & volsnap =================
  1495.  
  1496. (There is no automatic fix for files that do not pass verification.)
  1497.  
  1498. C:\WINDOWS\system32\winlogon.exe => File is digitally signed
  1499. C:\WINDOWS\system32\wininit.exe => File is digitally signed
  1500. C:\WINDOWS\explorer.exe => File is digitally signed
  1501. C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
  1502. C:\WINDOWS\system32\svchost.exe => File is digitally signed
  1503. C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
  1504. C:\WINDOWS\system32\services.exe => File is digitally signed
  1505. C:\WINDOWS\system32\User32.dll => File is digitally signed
  1506. C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
  1507. C:\WINDOWS\system32\userinit.exe => File is digitally signed
  1508. C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
  1509. C:\WINDOWS\system32\rpcss.dll => File is digitally signed
  1510. C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
  1511. C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
  1512. C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
  1513.  
  1514.  
  1515. LastRegBack: 2015-08-09 04:29
  1516.  
  1517. ==================== End of log ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!