Inactive-A kbdclass.sys malware

marcusdk · 2015/06/20

part 2
C:\Windows\system32\Drivers\BdfNdisf6.sys
2015-06-17 21:58 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz01
2015-06-17 21:58 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2015-06-17 21:56 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2015-06-17 21:19 - 2015-06-17 21:19 - 14260928 _____ (Microsoft Corporation) C:\Users\Gamer\Downloads\mseinstall (1).exe
2015-06-17 21:15 - 2015-06-17 21:15 - 00044335 _____ C:\Users\Gamer\Downloads\Regdelnull.zip
2015-06-17 19:22 - 2015-06-17 19:22 - 00000000 ____D C:\ProgramData\Synaptics
2015-06-17 19:19 - 2015-06-17 19:19 - 00000756 _____ C:\Users\Public\Desktop\Speccy.lnk
2015-06-17 19:19 - 2015-06-17 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-06-17 19:19 - 2015-06-17 19:19 - 00000000 ____D C:\Program Files\Speccy
2015-06-17 19:18 - 2015-06-17 19:18 - 05127432 _____ (Piriform Ltd) C:\Users\Gamer\Downloads\spsetup128 (1).exe
2015-06-17 19:09 - 2015-06-17 19:09 - 05127432 _____ (Piriform Ltd) C:\Users\Gamer\Downloads\spsetup128.exe
2015-06-17 18:40 - 2015-06-17 18:40 - 02262621 _____ C:\Users\Gamer\Downloads\cpu-z_172.zip
2015-06-17 18:35 - 2015-06-17 18:35 - 00156854 _____ C:\Users\Gamer\Downloads\Motherboard_ID_Tool.zip
2015-06-17 17:59 - 2015-06-17 17:59 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-06-17 17:58 - 2015-03-10 18:24 - 04430808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-06-17 17:58 - 2015-03-10 18:04 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-06-17 17:58 - 2015-03-10 11:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-06-17 17:58 - 2015-03-10 11:00 - 02812632 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-06-17 17:58 - 2015-03-10 11:00 - 02501848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2015-06-17 17:58 - 2015-03-09 17:16 - 01954478 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-06-17 17:58 - 2015-03-04 17:53 - 01709272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-06-17 17:58 - 2015-02-28 01:10 - 05615552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2015-06-17 17:58 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2015-06-17 17:58 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2015-06-17 17:58 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2015-06-17 17:58 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2015-06-17 17:58 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2015-06-17 17:58 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2015-06-17 17:58 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2015-06-17 17:58 - 2015-02-04 00:23 - 00542352 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2015-06-17 17:58 - 2015-02-04 00:22 - 00836240 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2015-06-17 17:58 - 2015-02-04 00:22 - 00650384 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2015-06-17 17:58 - 2015-02-04 00:22 - 00434832 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2015-06-17 17:58 - 2015-01-30 10:58 - 02421480 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2015-06-17 17:58 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2015-06-17 17:58 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-06-17 17:58 - 2015-01-19 09:08 - 12975360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2015-06-17 17:58 - 2014-12-24 19:02 - 01298136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-06-17 17:58 - 2014-12-15 14:02 - 00306288 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2015-06-17 17:58 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2015-06-17 17:58 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2015-06-17 17:58 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2015-06-17 17:58 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2015-06-17 17:58 - 2014-12-02 18:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-06-17 17:58 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-06-17 17:58 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2015-06-17 17:58 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2015-06-17 17:58 - 2014-10-20 15:49 - 01360640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2015-06-17 17:58 - 2014-08-14 19:16 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2015-06-17 17:58 - 2014-07-03 14:44 - 01499984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2015-06-17 17:58 - 2014-07-03 14:44 - 00979280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2015-06-17 17:58 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2015-06-17 17:58 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2015-06-17 17:58 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-06-17 17:58 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-06-17 17:58 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2015-06-17 17:58 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2015-06-17 17:58 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-06-17 17:58 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-06-17 17:58 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-06-17 17:58 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2015-06-17 17:58 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-06-17 17:58 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2015-06-17 17:58 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2015-06-17 17:58 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2015-06-17 17:58 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2015-06-17 17:58 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-06-17 17:58 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-06-17 17:58 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-06-17 17:58 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-06-17 17:58 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-06-17 17:58 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2015-06-17 17:58 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-06-17 17:58 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-06-17 17:58 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2015-06-17 17:58 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2015-06-17 17:58 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2015-06-17 17:58 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2015-06-17 17:58 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2015-06-17 17:58 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-06-17 17:58 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-06-17 17:58 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-06-17 17:58 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-06-17 17:58 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-06-17 17:58 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-06-17 17:58 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-06-17 17:58 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-06-17 17:58 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-06-17 17:57 - 2015-03-08 12:22 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-06-17 17:57 - 2015-03-02 11:20 - 01558720 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2015-06-17 17:57 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2015-06-17 17:57 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2015-06-17 17:57 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2015-06-17 17:57 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2015-06-17 17:57 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-06-17 17:57 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-06-17 17:57 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-06-17 17:57 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-06-17 17:57 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-06-17 17:57 - 2014-05-22 16:24 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2015-06-17 17:57 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-06-17 17:57 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2015-06-17 17:57 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2015-06-17 17:57 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2015-06-17 17:57 - 2013-06-21 11:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2015-06-17 17:57 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-06-17 17:57 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-06-17 17:41 - 2015-06-17 17:41 - 00000000 ____D C:\Users\Gamer\Downloads\Bitdefender Total Security 2015 Build 18.21.0.1497 (x86 & x64) Incl Trial Reset + Keys {B@tman}
2015-06-17 17:40 - 2015-06-17 17:40 - 00015353 _____ C:\Users\Gamer\Downloads\[happykitty.cf]bitdefender.total.security.2015.build.18.21.0.1497.x86.x64.incl.trial.reset.keys.b.tman.torrent
2015-06-17 17:38 - 2015-06-17 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 60-Second Virus Scanner
2015-06-17 17:34 - 2015-06-17 17:34 - 00007927 _____ C:\Users\Gamer\Downloads\[1080p-torrents.casa]dll.files.fixer.3.1.81.2919.multilingual.including.keygen.saw000.ctrg.torrent
2015-06-17 17:22 - 2015-06-17 17:22 - 02868840 _____ C:\Users\Gamer\Downloads\bitdefender_antivirus.exe
2015-06-17 17:21 - 2015-06-17 17:21 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\KSafe
2015-06-17 17:21 - 2015-06-17 17:21 - 00000000 ____D C:\ProgramData\KSafe
2015-06-17 17:20 - 2015-06-17 17:23 - 00000000 ____D C:\Program Files (x86)\DllTool
2015-06-17 17:19 - 2015-06-17 17:19 - 08466168 _____ ( ) C:\Users\Gamer\Downloads\DllTool.exe
2015-06-17 09:36 - 2015-06-17 09:36 - 00031631 _____ C:\Windows\Minidump\061615-32775-01.zip
2015-06-17 09:00 - 2015-06-17 09:00 - 00023936 _____ (Microsoft Corporation) C:\Users\Gamer\Downloads\kbdclass.sys
2015-06-17 01:51 - 2015-06-17 01:51 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2015-06-17 01:51 - 2015-06-17 01:51 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2015-06-17 01:50 - 2015-06-17 01:51 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2015-06-17 01:48 - 2015-06-17 16:51 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2015-06-17 01:48 - 2015-06-17 16:51 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2015-06-17 01:48 - 2015-06-17 16:51 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2015-06-17 01:48 - 2015-06-17 16:51 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2015-06-17 01:48 - 2015-06-17 16:50 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2015-06-17 01:48 - 2015-06-17 16:50 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2015-06-17 01:48 - 2015-06-17 16:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2015-06-17 01:48 - 2015-06-17 16:50 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2015-06-17 01:48 - 2015-06-17 16:50 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2015-06-17 01:47 - 2015-06-17 16:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-06-17 01:47 - 2015-06-17 16:50 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2015-06-17 01:36 - 2015-06-17 01:36 - 00000000 ____D C:\ProgramData\Weskysoft
2015-06-17 01:33 - 2015-06-17 12:39 - 00000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2015-06-17 01:32 - 2015-06-17 01:32 - 00021429 _____ C:\Users\Gamer\Downloads\[feelingluckypunk.gq]dll.suite.2013.0.0.2052.with.key.tordigger.torrent
2015-06-17 01:24 - 2015-06-17 17:24 - 00000000 ____D C:\Program Files (x86)\DLLSuite
2015-06-17 01:23 - 2015-06-17 01:24 - 16578402 _____ ( ) C:\Users\Gamer\Downloads\DLLSuite_Setup (1).exe
2015-06-17 01:22 - 2015-06-17 01:22 - 00065956 _____ C:\Users\Gamer\Downloads\DLLSuite_Setup.exe
2015-06-17 00:44 - 2015-06-17 00:44 - 03894696 _____ (solvusoft Corporation ) C:\Users\Gamer\Downloads\Setup_WinThruster_2015 (1).exe
2015-06-16 23:36 - 2015-06-16 23:36 - 00000000 _____ C:\Users\Gamer\Desktop\httpwww.solvusoft.comenfilesbsod-blue-screen-errorsyswindowsmicrosoftwindows-small-business-server-2011-essentialskbdclass-sys.txt
2015-06-16 23:28 - 2015-06-16 23:29 - 00000000 ____D C:\Users\Gamer\Downloads\SysTweak Regclean Pro v6.21.65.99 + Lifetime Key [S0ft4PC]
2015-06-16 23:18 - 2015-06-16 23:20 - 08790379 _____ C:\Users\Gamer\Downloads\WinThruster 1.79.69.2469 pl-FULL-32 bit.rar
2015-06-16 23:18 - 2015-06-16 23:18 - 00011292 _____ C:\Users\Gamer\Downloads\BBA98363D4580F394F9C9595E53A1F6AEA10DC41.torrent
2015-06-16 22:53 - 2015-06-16 22:53 - 03894696 _____ (solvusoft Corporation ) C:\Users\Gamer\Downloads\Setup_WinThruster_2015.exe
2015-06-16 22:14 - 2015-06-16 22:14 - 00041472 _____ C:\Users\Gamer\Downloads\launcher64.dll
2015-06-16 22:13 - 2015-06-16 22:13 - 00674944 _____ (Copyright © 2010 eSupport.com. All Rights Reserved.) C:\Users\Gamer\Downloads\biosagentplus_822.exe
2015-06-16 21:50 - 2015-06-16 21:51 - 11522399 _____ C:\Users\Gamer\Downloads\AMIBIOS_and_Aptio_AMI_Firmware_Update_Utility.zip
2015-06-16 21:10 - 2015-06-16 21:10 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2015-06-16 20:57 - 2015-06-16 20:57 - 00000000 ____D C:\Users\test\AppData\Roaming\ProductData
2015-06-16 20:56 - 2015-06-16 20:57 - 00000000 ____D C:\Users\test\AppData\Roaming\IObit
2015-06-16 20:30 - 2015-06-16 20:30 - 00000000 ____D C:\Windows\SysWOW64\%LOCALAPPDATA%
2015-06-16 20:18 - 2008-02-29 11:15 - 01920016 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01005.dll
2015-06-16 20:18 - 2008-02-29 11:14 - 00054800 _____ (Logicool, Inc.) C:\Windows\system32\Drivers\SET955B.tmp
2015-06-16 20:18 - 2008-02-29 11:14 - 00054800 _____ (Logicool, Inc.) C:\Windows\system32\Drivers\LHidFilt.Sys
2015-06-16 20:13 - 2015-06-16 20:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2015-06-16 20:12 - 2015-06-17 19:22 - 00000000 ____D C:\drivertemp
2015-06-16 19:50 - 2014-07-16 18:20 - 10505088 _____ (Systweak Inc) C:\Users\Gamer\Desktop\adu.exe.BAK
2015-06-16 19:46 - 2015-06-16 19:47 - 00000000 ____D C:\Users\Gamer\Downloads\SysTweak Advanced Driver Updater 2.1.1086.16076 - [SAW000]{CTRG}
2015-06-16 19:42 - 2015-06-16 19:43 - 00000000 ____D C:\Users\Gamer\Downloads\Advanced Driver Updater 2.1.1086.16076
2015-06-16 18:17 - 2015-06-16 18:17 - 01279488 _____ C:\Users\Gamer\Downloads\MicrosoftFixit50356.msi
2015-06-16 18:06 - 2015-06-16 18:06 - 00011348 _____ C:\Users\Gamer\Downloads\SafeMSI.zip
2015-06-16 17:34 - 2015-01-29 11:11 - 00061024 _____ (NirSoft) C:\Users\Gamer\Desktop\BlueScreenView.exe
2015-06-16 17:33 - 2015-06-16 17:33 - 00067310 _____ C:\Users\Gamer\Downloads\bluescreenview.zip
2015-06-16 17:29 - 2015-06-16 17:29 - 00162864 _____ C:\Users\Gamer\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-16 17:25 - 2015-06-20 22:13 - 00694021 _____ C:\Windows\WindowsUpdate.log
2015-06-16 17:14 - 2015-06-16 17:24 - 05108064 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-16 17:13 - 2015-06-16 17:13 - 93827072 _____ C:\Windows\system32\config\software.iodefrag.bak
2015-06-16 17:13 - 2015-06-16 17:13 - 02273280 _____ C:\Windows\system32\config\default.iodefrag.bak
2015-06-16 17:13 - 2015-06-16 17:13 - 00106496 _____ C:\Windows\system32\config\sam.iodefrag.bak
2015-06-16 17:13 - 2015-06-16 17:13 - 00028672 _____ C:\Windows\system32\config\security.iodefrag.bak
2015-06-16 15:02 - 2014-10-16 10:27 - 00027424 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2015-06-16 13:35 - 2015-06-16 13:35 - 00000872 _____ C:\Users\Gamer\Downloads\TakeOwnership (1).zip
2015-06-16 13:08 - 2015-06-16 13:28 - 180816805 _____ C:\Users\Gamer\Downloads\kav15.0.2.361en.rar
2015-06-16 12:37 - 2015-06-16 12:37 - 00056029 _____ C:\Users\Gamer\Downloads\[2012-torrents.com]kaspersky.anti.virus.v15.0.2.361.0.6078.2015.final.resetter.patch.appzdam.torrent
2015-06-16 12:30 - 2015-06-16 12:30 - 00108896 _____ (Webroot) C:\Windows\system32\Drivers\WRkrn.sys
2015-06-16 12:30 - 2015-06-16 12:30 - 00000000 ____D C:\ProgramData\WRData
2015-06-16 10:38 - 2015-06-16 11:33 - 00000000 ____D C:\Program Files (x86)\b7309916-17af-47b1-b9c9-3299948276a3
2015-06-16 10:31 - 2015-06-16 10:31 - 00000000 _____ C:\Windows\SysWOW64\Number of results
2015-06-16 00:04 - 2015-06-16 00:04 - 00002646 _____ C:\Users\Public\Desktop\POSTAL 2 - Paradise Lost.lnk
2015-06-16 00:04 - 2015-06-16 00:04 - 00002424 _____ C:\Users\Public\Desktop\POSTAL 2.lnk
2015-06-16 00:04 - 2015-06-16 00:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Running With Scissors
2015-06-15 23:51 - 2015-06-15 23:51 - 00000000 ____D C:\Program Files (x86)\Running With Scissors
2015-06-15 20:48 - 2015-06-15 20:48 - 00000000 ____D C:\Windows\SysWOW64\Flash
2015-06-15 20:00 - 2015-06-15 20:00 - 03147776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 02589184 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-15 20:00 - 2015-06-15 20:00 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-15 20:00 - 2015-06-15 20:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-15 20:00 - 2015-06-15 20:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-15 20:00 - 2015-06-15 20:00 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-15 19:51 - 2015-06-17 17:18 - 00000000 ____D C:\ProgramData\1a8aa4000029ea
2015-06-15 19:38 - 2015-06-17 21:51 - 00004784 _____ C:\Windows\SysWOW64\Pelithmy.ini
2015-06-15 19:38 - 2015-06-17 21:51 - 00002456 _____ C:\Windows\SysWOW64\PelithmyOff.ini
2015-06-15 19:38 - 2015-06-17 21:51 - 00002456 _____ C:\Windows\system32\PelithmyOff.ini
2015-06-15 19:36 - 2015-06-20 22:02 - 00000000 ____D C:\Program Files (x86)\42121896-6ed0-459b-8568-e8f38f5494c2
2015-06-15 19:34 - 2015-06-16 13:39 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\1E0063E0-1434389671-3F00-2DC1-BCAEC574BA7C
2015-06-15 19:28 - 2015-06-15 19:28 - 00000772 _____ C:\Users\Public\Desktop\PowerISO.lnk
2015-06-15 19:28 - 2015-06-15 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2015-06-15 16:23 - 2015-06-15 16:47 - 639400288 _____ C:\Users\Gamer\Downloads\AVPC_1420.zip
2015-06-15 16:14 - 2015-06-15 16:14 - 00020956 _____ C:\Users\Gamer\Downloads\[buttscratcheeer.ml]postal.2.paradise.lost.skidrow.torrent
2015-06-14 11:56 - 2015-06-14 11:56 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2015-06-14 11:56 - 2015-06-14 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2015-06-14 11:55 - 2015-06-14 11:55 - 00000000 ____D C:\Program Files (x86)\TechSmith
2015-06-13 13:07 - 2015-06-13 13:07 - 05315691 _____ C:\Users\Gamer\Downloads\Pokemon - Fire Red Version (U) (3).zip
2015-06-13 13:03 - 2015-06-13 13:04 - 02391927 _____ C:\Users\Gamer\Downloads\Easter Revolution.zip
2015-06-12 16:59 - 2015-06-12 17:01 - 58713703 _____ C:\Users\Gamer\Downloads\Patch_0.4.exe
2015-06-12 16:53 - 2015-06-12 16:53 - 00017568 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\gtkdrv.sys
2015-06-12 16:33 - 2015-06-12 16:49 - 2099673157 _____ C:\Users\Gamer\Downloads\Divide_and_Conquer_Patch_0.3 (1).exe
2015-06-12 16:09 - 2015-06-12 16:09 - 00001834 _____ C:\Users\Gamer\Desktop\Third Age - Total War.lnk
2015-06-12 15:38 - 2015-06-12 15:44 - 513590490 _____ C:\Users\Gamer\Downloads\Divide_and_Conquer_Patch_2 (1).exe
2015-06-12 15:22 - 2015-06-12 15:22 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Third Age - Total War 3.0 (Part 2of2)
2015-06-12 15:20 - 2015-06-12 15:26 - 513590490 _____ C:\Users\Gamer\Downloads\Ikke bekrÃ¦ftet 607799.crdownload
2015-06-12 14:57 - 2015-06-12 14:57 - 00000000 ____D C:\Program Files (x86)\SEGA
2015-06-12 14:36 - 2015-06-12 14:36 - 03748392 _____ C:\Users\Gamer\Downloads\Ultra Gore - Dismemberment Mod 0.3-61-0-3 (1).zip
2015-06-12 13:56 - 2015-06-12 15:15 - 1956587322 _____ C:\Users\Gamer\Downloads\Divide_and_Conquer_Full_Public_Beta (1).exe
2015-06-12 13:29 - 2015-06-12 16:26 - 00000000 ____D C:\Users\Gamer\Downloads\Third Age Total War 3.1
2015-06-12 11:59 - 2015-06-12 11:59 - 01711741 _____ (System SoftLab ) C:\Users\Gamer\Downloads\artmoney743eng (1).exe
2015-06-12 11:59 - 2015-06-12 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArtMoney SE
2015-06-12 11:03 - 2015-06-12 11:03 - 03102717 _____ C:\Users\Gamer\Downloads\Disable intro and storybook videos-66-2-1.7z
2015-06-12 10:54 - 2015-06-12 10:54 - 00262188 _____ C:\Users\Gamer\Downloads\#arrow.tga
2015-06-11 19:58 - 2015-06-11 19:58 - 00046167 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-525087 (1).zip
2015-06-11 19:57 - 2015-06-11 19:57 - 00055232 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-258799 (1).zip
2015-06-11 19:57 - 2015-06-11 19:57 - 00046423 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-258798.zip
2015-06-11 19:56 - 2015-06-11 19:57 - 00046079 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-488074.zip
2015-06-11 19:56 - 2015-06-11 19:56 - 00058110 _____ C:\Users\Gamer\Downloads\dazed-and-confused_HI_english-137827 (1).zip
2015-06-11 19:56 - 2015-06-11 19:56 - 00051360 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-137826.zip
2015-06-11 19:55 - 2015-06-11 19:55 - 00038595 _____ C:\Users\Gamer\Downloads\dazed-and-confused_english-216908 (1).zip
2015-06-11 19:53 - 2015-06-11 19:53 - 00046022 _____ C:\Users\Gamer\Downloads\dazed-and-confused_HI_english-810295 (1).zip
2015-06-11 19:42 - 2015-06-11 19:42 - 00031494 _____ C:\Users\Gamer\Downloads\dazed-and-confused_danish-406828 (1).zip
2015-06-11 17:31 - 2015-06-11 17:32 - 00000027 _____ C:\Users\Gamer\Desktop\viaplay og hbo.txt
2015-06-11 08:01 - 2015-06-11 08:01 - 00233472 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\SafeAppLM.ocx
2015-06-10 11:59 - 2015-06-10 11:59 - 00034973 _____ C:\Users\Gamer\Downloads\hobbiton_brush_hand.zip
2015-06-10 11:50 - 2015-06-10 11:50 - 00092555 _____ C:\Users\Gamer\Downloads\bilbo_hand.zip
2015-06-10 10:58 - 2015-06-10 10:58 - 48197632 _____ C:\Windows\system32\config\components.iobit
2015-06-10 10:42 - 2015-06-01 21:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 10:42 - 2015-06-01 20:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 10:42 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 10:42 - 2015-05-25 20:24 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-10 10:42 - 2015-05-25 20:23 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-10 10:42 - 2015-05-25 20:23 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-10 10:42 - 2015-05-25 20:21 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-06-10 10:42 - 2015-05-25 20:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-06-10 10:42 - 2015-05-25 20:18 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-10 10:42 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00064000 _____ (Microsoft

marcusdk · 2015/06/20

part 3
Corporation) C:\Windows\system32\auditpol.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-10 10:42 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-10 10:42 - 2015-05-25 20:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-10 10:42 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-10 10:42 - 2015-05-25 20:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-10 10:42 - 2015-05-25 20:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-10 10:42 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-10 10:42 - 2015-05-25 20:04 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-06-10 10:42 - 2015-05-25 20:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-06-10 10:42 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-06-10 10:42 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-06-10 10:42 - 2015-05-25 19:59 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-06-10 10:42 - 2015-05-25 19:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-06-10 10:42 - 2015-05-25 19:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-06-10 10:42 - 2015-05-25 19:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-06-10 10:42 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-06-10 10:42 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 19:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-10 10:42 - 2015-05-25 19:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-10 10:42 - 2015-05-25 18:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-06-10 10:42 - 2015-05-25 18:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-06-10 10:42 - 2015-05-25 18:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 18:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 18:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 10:42 - 2015-05-25 18:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-06-10 10:42 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-06-10 10:42 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 10:42 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-06-10 10:42 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-10 10:42 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-10 10:42 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 10:42 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-06-10 10:42 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-06-10 10:42 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-06-10 10:42 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 10:42 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-06-10 10:42 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 10:42 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-06-10 10:42 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-10 10:42 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 10:42 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 10:42 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 10:42 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 10:42 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 10:42 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-10 10:42 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 10:42 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 10:42 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 10:42 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 10:42 - 2015-05-22 21:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-10 10:42 - 2015-05-22 21:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-10 10:42 - 2015-05-22 21:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-10 10:42 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 10:42 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 10:42 - 2015-05-22 21:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-10 10:42 - 2015-05-22 20:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-10 10:42 - 2015-05-22 20:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-10 10:42 - 2015-05-22 20:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-10 10:42 - 2015-05-22 20:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-10 10:42 - 2015-05-22 20:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-10 10:42 - 2015-05-22 20:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-10 10:42 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-10 10:42 - 2015-05-22 20:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-10 10:42 - 2015-05-22 20:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-10 10:42 - 2015-05-22 20:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-10 10:42 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 10:42 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 10:42 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 10:42 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 10:42 - 2015-05-21 15:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-10 10:42 - 2015-04-29 20:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-10 10:42 - 2015-04-29 20:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-10 10:42 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-10 10:42 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-10 10:42 - 2015-04-29 20:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-10 10:42 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-06-10 10:42 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-06-10 10:42 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-06-10 10:42 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-06-10 10:42 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-06-10 10:42 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 10:42 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 10:42 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-10 10:41 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 10:41 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 10:41 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-06-10 10:41 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 10:41 - 2015-05-22 20:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-10 10:41 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 10:41 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 10:41 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 10:41 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 10:41 - 2015-05-22 20:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-10 10:41 - 2015-05-22 20:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-10 10:41 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 10:41 - 2015-05-22 20:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-10 10:41 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 10:41 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-09 16:41 - 2015-06-09 16:41 - 01533584 _____ C:\Users\Gamer\Downloads\battlelog-web-plugins_2.6.2_157(1).exe
2015-06-06 19:53 - 2015-06-06 19:53 - 00001015 _____ C:\Users\Gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zona.lnk
2015-06-06 19:53 - 2015-06-06 19:53 - 00000985 _____ C:\Users\Gamer\Desktop\Zona.lnk
2015-06-05 22:31 - 2015-06-05 22:56 - 300223347 _____ C:\Users\Gamer\Downloads\nazi_zombie_sdtoten2.1.exe
2015-06-05 21:20 - 2015-06-05 21:20 - 23725591 _____ C:\Users\Gamer\Downloads\1.000 Times Better v2.3- Full Package-58-2-3 (1).rar
2015-06-05 21:18 - 2015-06-05 21:18 - 02931888 _____ C:\Users\Gamer\Downloads\Over 9000 - Weight limit mod v1.04-3-1-04 (1).7z
2015-06-05 11:45 - 2015-06-12 14:37 - 00000000 ____D C:\Users\Gamer\Desktop\witcher 3 saves
2015-06-05 11:35 - 2015-06-05 11:35 - 07194312 _____ (Microsoft Corporation) C:\Users\Gamer\Downloads\vcredist_x64.exe
2015-06-05 11:35 - 2015-06-05 11:35 - 06503984 _____ (Microsoft Corporation) C:\Users\Gamer\Downloads\vcredist_x86.exe
2015-06-05 11:35 - 2015-06-05 11:35 - 01420840 _____ (Microsoft Corporation) C:\Users\Gamer\Downloads\vcredist_arm.exe
2015-06-05 11:31 - 2015-06-05 11:31 - 11840839 _____ C:\Users\Gamer\Downloads\Windows6.1-KB2670838-x64.msu
2015-06-05 11:31 - 2015-06-05 11:31 - 05911327 _____ C:\Users\Gamer\Downloads\Windows6.1-KB2670838-x86.msu
2015-06-05 11:20 - 2015-06-05 11:21 - 23725591 _____ C:\Users\Gamer\Downloads\1.000 Times Better v2.3- Full Package-58-2-3.rar
2015-06-05 11:11 - 2015-06-05 11:11 - 05956126 _____ C:\Users\Gamer\Downloads\AMD-1036-104-1-0.rar
2015-06-04 21:47 - 2015-06-04 21:47 - 00002156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2015-06-03 17:45 - 2015-06-03 17:45 - 02931888 _____ C:\Users\Gamer\Downloads\Over 9000 - Weight limit mod v1.04-3-1-04.7z
2015-06-03 17:03 - 2015-06-03 17:03 - 00152756 _____ C:\Users\Gamer\Downloads\witcher3weight_v0.4.zip-8-v0-4 (1).zip
2015-06-03 15:35 - 2015-06-05 11:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 19:16 - 2015-06-01 19:16 - 00007448 _____ C:\Users\Gamer\Downloads\v7 - Colors Change Only Add-On-23-1.zip
2015-06-01 19:15 - 2015-06-01 19:15 - 38827969 _____ C:\Users\Gamer\Downloads\E3FX V7-23-7.zip
2015-06-01 19:13 - 2015-06-01 19:13 - 01085907 _____ C:\Users\Gamer\Downloads\-Fantasy- Graphics v1.3-35-v1-3 (1).rar
2015-05-31 23:07 - 2015-05-31 23:07 - 00001738 _____ C:\Windows\SysWOW64\EmailAVConfig.xml
2015-05-31 18:11 - 2015-05-31 18:11 - 00152756 _____ C:\Users\Gamer\Downloads\witcher3weight_v0.4.zip-8-v0-4.zip
2015-05-31 11:02 - 2015-05-31 11:02 - 01085907 _____ C:\Users\Gamer\Downloads\-Fantasy- Graphics v1.3-35-v1-3.rar
2015-05-31 10:52 - 2015-05-31 10:52 - 03111396 _____ C:\Users\Gamer\Downloads\KNG_Extreme_Weather_Conditions_Mod_v0.04-29-0-04.rar
2015-05-30 21:34 - 2015-05-30 21:34 - 03748392 _____ C:\Users\Gamer\Downloads\Ultra Gore - Dismemberment Mod 0.3-61-0-3.zip
2015-05-30 00:03 - 2015-05-30 00:03 - 00025264 _____ C:\Users\Gamer\Downloads\the-ninth-gate_danish-248120.rar
2015-05-29 23:32 - 2015-05-29 23:32 - 00016001 _____ C:\Users\Gamer\Downloads\The Ninth Gate (1999) [720p] YIFY - YTS.torrent
2015-05-29 23:07 - 2015-06-11 19:42 - 00000000 ____D C:\Users\Gamer\Downloads\The Ninth Gate (1999)
2015-05-29 23:00 - 2015-06-11 19:35 - 00000000 ____D C:\Windows\hsperfdata_Gamer
2015-05-29 22:57 - 2015-05-29 22:57 - 30525160 _____ (Destiny Media) C:\Users\Gamer\Downloads\ZonaSetup_latest.exe
2015-05-29 15:05 - 2015-06-19 21:20 - 00000000 ____D C:\Users\Gamer\Desktop\programmer
2015-05-29 14:57 - 2015-06-20 20:58 - 00001049 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-05-29 14:57 - 2015-05-29 14:57 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-29 14:56 - 2015-05-29 14:57 - 00243464 _____ C:\Users\Gamer\Downloads\Firefox Setup Stub 38.0.1.exe
2015-05-29 14:45 - 2015-05-29 14:45 - 89260032 _____ C:\Windows\system32\config\software.iobit
2015-05-29 14:45 - 2015-05-29 14:45 - 02273280 _____ C:\Windows\system32\config\default.iobit
2015-05-29 14:45 - 2015-05-29 14:45 - 00106496 _____ C:\Windows\system32\config\sam.iobit
2015-05-29 14:45 - 2015-05-29 14:45 - 00028672 _____ C:\Windows\system32\config\security.iobit
2015-05-29 14:45 - 2015-05-29 14:45 - 00003146 _____ C:\Windows\System32\Tasks\{C3F46888-6354-4767-8668-EBEA1963F5A4}
2015-05-29 14:39 - 2015-05-29 18:09 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\ProductData
2015-05-29 14:39 - 2015-05-29 14:39 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-29 14:38 - 2015-06-20 18:28 - 00000000 ____D C:\Program Files (x86)\IObit
2015-05-29 14:38 - 2015-05-29 19:35 - 00000000 ____D C:\ProgramData\IObit
2015-05-29 14:38 - 2015-05-29 14:39 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\IObit
2015-05-29 14:38 - 2015-05-29 14:38 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2015-05-27 15:20 - 2015-05-27 15:20 - 00013540 _____ C:\Users\Gamer\Desktop\itunes - Genvej.lnk
2015-05-25 22:17 - 2015-05-25 22:17 - 00127787 _____ C:\Users\Gamer\Downloads\coolvetica.zip
2015-05-25 20:25 - 2015-05-25 20:25 - 747596686 _____ C:\Users\Gamer\Downloads\CSS_Content_Addon-Jan2015.zip
2015-05-25 19:57 - 2015-05-25 19:57 - 02787328 _____ C:\Users\Gamer\Downloads\b6eeaa8cddd2acc7508b9866aab145a2343ff9a2.zip
2015-05-25 15:11 - 2015-05-25 15:21 - 45679276 _____ C:\Users\Gamer\Downloads\xpa-pssu.rar
2015-05-25 15:01 - 2015-05-25 15:02 - 01163024 _____ C:\Users\Gamer\Downloads\Pokemon Silver Blue.zip
2015-05-25 15:00 - 2015-05-25 15:00 - 01868290 _____ C:\Users\Gamer\Downloads\desmume-0.9.11-win64.zip
2015-05-24 12:52 - 2015-05-24 12:52 - 16777216 _____ C:\Users\Gamer\Downloads\Pokemon X and Y(2).GBA
2015-05-24 12:20 - 2015-05-24 12:21 - 00032911 _____ C:\Users\Gamer\Downloads\bignoodle_titling.zip
2015-05-23 15:49 - 2015-05-23 15:49 - 00000000 ____D C:\ProgramData\EA Core
2015-05-23 15:48 - 2015-05-23 16:49 - 00000000 ____D C:\Users\Gamer\Documents\Battlefield 3
2015-05-23 14:09 - 2015-05-23 14:09 - 08969036 _____ C:\Users\Gamer\Downloads\Pokemon Platinum Red - Alpha v1.2.1.ups
2015-05-23 14:05 - 2015-05-23 14:05 - 05315691 _____ C:\Users\Gamer\Downloads\Pokemon - Fire Red Version (U) (2).zip
2015-05-23 14:04 - 2015-05-23 14:04 - 18856199 _____ C:\Users\Gamer\Downloads\Pokemon Platinum Red - Beta v1.0.ups
2015-05-23 11:05 - 2015-05-23 11:05 - 00023136 _____ C:\Users\Gamer\Downloads\counter_strike.zip
2015-05-22 18:51 - 2015-05-23 00:59 - 00000000 ____D C:\11498d677fb287d930e0
2015-05-22 18:49 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-22 18:49 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-22 18:48 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-22 18:48 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-22 18:48 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-22 18:48 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-22 18:48 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-22 18:48 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-22 18:48 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-21 00:06 - 2009-07-14 06:45 - 00031728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-21 00:06 - 2009-07-14 06:45 - 00031728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-21 00:03 - 2014-10-08 18:10 - 00000000 ____D C:\Medieval 2 total war
2015-06-21 00:01 - 2014-08-13 14:51 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-20 23:45 - 2014-04-19 21:25 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-20 22:13 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-06-20 22:07 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-06-20 22:06 - 2014-04-19 21:25 - 00000928 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-20 22:05 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-20 22:03 - 2014-07-02 15:49 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-06-20 21:37 - 2014-07-02 22:33 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-06-20 21:29 - 2014-07-02 22:32 - 00226680 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-06-20 21:23 - 2014-07-02 21:25 - 00000000 ____D C:\ProgramData\Origin
2015-06-20 21:13 - 2015-05-02 18:29 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-20 20:58 - 2014-11-05 17:47 - 00000982 _____ C:\Users\Public\Desktop\Opera.lnk
2015-06-20 20:58 - 2014-04-19 21:25 - 00001286 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-20 20:49 - 2014-07-02 21:31 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-20 19:52 - 2014-08-02 15:31 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-06-20 19:48 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-06-20 19:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-06-20 13:52 - 2014-10-01 13:44 - 00000000 ____D C:\Users\Gamer\AppData\Local\Adobe
2015-06-19 21:34 - 2014-07-02 23:54 - 00000600 _____ C:\Users\Gamer\PUTTY.RND
2015-06-19 14:04 - 2009-07-14 07:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-06-18 22:23 - 2014-04-19 21:43 - 00000000 ____D C:\Windows\Minidump
2015-06-18 20:50 - 2015-04-14 19:40 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Raptr
2015-06-18 19:54 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-18 19:44 - 2014-04-16 16:55 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-17 22:53 - 2014-10-01 15:54 - 00000000 ____D C:\Users\Gamer\Documents\Camtasia Studio
2015-06-17 22:29 - 2014-10-21 21:39 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2015-06-17 22:14 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Offline Web Pages
2015-06-17 22:10 - 2014-10-21 18:55 - 00000000 ____D C:\ProgramData\BDLogging
2015-06-17 21:59 - 2014-10-21 18:53 - 00000000 ____D C:\ProgramData\Bitdefender
2015-06-17 21:58 - 2014-10-21 18:53 - 00000000 ____D C:\Program Files\Bitdefender
2015-06-17 21:56 - 2014-10-21 18:51 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-06-17 18:47 - 2014-07-02 23:51 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\uTorrent
2015-06-17 18:01 - 2014-04-19 21:44 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-06-17 17:20 - 2015-04-15 15:01 - 00000000 ____D C:\Users\test\AppData\Local\CrashDumps
2015-06-17 17:20 - 2015-04-14 16:34 - 00000000 ____D C:\Users\gta\AppData\Local\CrashDumps
2015-06-17 17:19 - 2015-04-15 15:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Raptr
2015-06-17 17:19 - 2015-02-14 16:22 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\deluge
2015-06-17 17:19 - 2014-12-24 02:59 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\GameTracker
2015-06-17 17:19 - 2014-10-01 21:54 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Roxio
2015-06-17 17:19 - 2014-10-01 21:50 - 00000000 ____D C:\ProgramData\Roxio
2015-06-17 17:19 - 2014-10-01 15:20 - 00000000 ____D C:\ProgramData\install_clap
2015-06-17 17:19 - 2014-10-01 14:43 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Sony
2015-06-17 17:19 - 2014-08-03 21:18 - 00000000 ____D C:\Users\Gamer\Documents\My CamStudio Temp Files
2015-06-17 17:19 - 2014-07-13 16:51 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Guild Wars 2
2015-06-17 17:19 - 2014-04-19 22:01 - 00000000 ____D C:\ProgramData\migrateos
2015-06-17 17:19 - 2014-04-19 22:01 - 00000000 ____D C:\ProgramData\launcher
2015-06-17 17:19 - 2014-04-19 22:01 - 00000000 ____D C:\ProgramData\explauncher
2015-06-17 17:19 - 2014-04-16 04:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-17 17:19 - 2014-04-16 04:00 - 00000000 ____D C:\Users\Gamer
2015-06-17 11:47 - 2015-05-14 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-06-16 22:26 - 2015-05-19 10:08 - 00000000 ____D C:\Users\Gamer\Documents\The Witcher 3
2015-06-16 22:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2015-06-16 21:07 - 2015-04-15 14:50 - 00162864 _____ C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-16 21:02 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-06-16 20:13 - 2014-04-16 04:35 - 00000000 ____D C:\Program Files (x86)\Intel
2015-06-16 17:13 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\DigitalLocker
2015-06-16 15:03 - 2014-10-04 15:58 - 00000000 ____D C:\Users\Gamer\AppData\Local\CrashDumps
2015-06-16 13:03 - 2014-08-02 15:31 - 00000000 ____D C:\Users\HomeGroupUser$
2015-06-16 13:03 - 2014-08-02 15:31 - 00000000 ____D C:\Users\Guest
2015-06-16 13:03 - 2014-08-02 15:31 - 00000000 ____D C:\Users\ASPNET
2015-06-16 13:03 - 2014-08-02 15:31 - 00000000 ____D C:\Users\Administrator
2015-06-16 11:33 - 2015-04-13 20:42 - 00000000 ____D C:\Program Files (x86)\Activision
2015-06-16 10:07 - 2014-07-02 21:42 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-06-16 10:04 - 2015-02-27 21:35 - 00215128 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2015-06-16 10:04 - 2014-07-02 22:32 - 00215128 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-06-15 23:27 - 2014-10-05 16:17 - 00000000 ____D C:\Log
2015-06-15 23:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-15 07:25 - 2014-10-18 21:26 - 00000000 ____D C:\Users\Gamer\Documents\YouCam
2015-06-14 11:56 - 2014-10-02 18:18 - 00000000 ____D C:\ProgramData\TechSmith
2015-06-13 21:28 - 2014-07-19 17:36 - 00000000 ____D C:\Users\Gamer\Documents\My Games
2015-06-12 23:10 - 2014-04-16 15:29 - 00518402 _____ C:\Windows\system32\perfh006.dat
2015-06-12 23:10 - 2014-04-16 15:29 - 00103944 _____ C:\Windows\system32\perfc006.dat
2015-06-12 23:10 - 2009-07-14 07:13 - 01408358 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-11 21:40 - 2014-07-04 16:11 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\vlc
2015-06-11 19:40 - 2014-12-02 00:56 - 00000000 __SHD C:\Users\Gamer\AppData\Local\EmieBrowserModeList
2015-06-11 19:40 - 2014-04-16 17:00 - 00000000 __SHD C:\Users\Gamer\AppData\Local\EmieUserList
2015-06-11 19:40 - 2014-04-16 17:00 - 00000000 __SHD C:\Users\Gamer\AppData\Local\EmieSiteList
2015-06-11 19:26 - 2015-01-15 02:06 - 00000000 ____D C:\Users\Gamer\AppData\Local\eclipse
2015-06-11 17:16 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-10 20:20 - 2014-11-05 17:47 - 00003830 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1415202428
2015-06-10 20:20 - 2014-11-05 17:47 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-10 13:25 - 2015-04-16 03:33 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-10 13:25 - 2014-05-14 23:46 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-10 12:23 - 2014-04-16 04:33 - 00000000 ____D C:\Windows\system32\MRT
2015-06-10 12:17 - 2014-04-16 04:33 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-10 12:11 - 2015-01-29 20:14 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Skype
2015-06-10 12:01 - 2014-08-13 14:51 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-10 12:01 - 2014-08-13 14:51 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-10 12:01 - 2014-08-13 14:51 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-09 16:32 - 2014-07-02 21:27 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Origin
2015-06-09 16:31 - 2014-07-02 21:25 - 00000000 ____D C:\Program Files (x86)\Origin
2015-06-08 04:59 - 2014-07-03 13:17 - 00127760 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys
2015-06-05 15:45 - 2014-08-13 14:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-04 21:47 - 2014-04-19 21:25 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-04 18:33 - 2014-12-23 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWF Extractor
2015-06-04 18:33 - 2014-12-02 00:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free GIF Viewer
2015-06-04 18:33 - 2014-08-21 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP
2015-06-03 16:53 - 2015-05-19 10:08 - 00000000 ____D C:\Users\Gamer\AppData\Local\GalaxyCommunicationService
2015-05-29 18:28 - 2014-04-16 04:00 - 00000000 ____D C:\Program Files\CCleaner
2015-05-29 15:04 - 2015-04-12 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MINERS PARANOIA
2015-05-29 15:04 - 2014-10-24 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BattlePing
2015-05-29 15:04 - 2014-04-16 13:24 - 00000000 ____D C:\Windows\Panther
2015-05-29 15:03 - 2014-10-01 19:29 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\MPC-HC
2015-05-29 14:46 - 2014-07-21 11:25 - 00000000 ____D C:\ProgramData\Desura
2015-05-29 14:38 - 2014-09-03 13:36 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Apple Computer
2015-05-29 13:45 - 2014-12-23 19:08 - 00000000 ____D C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2015-05-29 13:45 - 2014-12-23 18:41 - 00000000 ____D C:\Users\Gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2015-05-28 16:07 - 2015-01-29 20:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-05-26 20:41 - 2014-08-04 15:51 - 00000000 ____D C:\stickers
2015-05-26 17:26 - 2014-07-03 13:16 - 00000000 ____D C:\Users\Gamer\AppData\Local\Battle.net
2015-05-26 17:26 - 2014-07-03 13:15 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-05-25 20:50 - 2014-10-20 17:38 - 00008764 _____ C:\Windows\system32\lvcoinst.log
2015-05-25 20:50 - 2014-10-20 17:38 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-05-25 15:01 - 2014-07-29 21:22 - 00000000 ____D C:\Gameboy
2015-05-24 12:18 - 2014-08-04 15:51 - 00000000 ____D C:\Marcusthedane
2015-05-23 22:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-05-23 17:29 - 2014-07-02 21:29 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-05-23 17:29 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-23 16:54 - 2014-07-02 22:32 - 00076152 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-05-23 16:49 - 2014-07-02 22:50 - 00000000 ____D C:\Users\Gamer\AppData\Local\PunkBuster
2015-05-22 23:14 - 2015-04-16 03:33 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-22 23:14 - 2015-04-16 03:33 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-22 23:14 - 2011-04-12 10:28 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-22 23:14 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-14 16:52

==================== End of log ============================

broni · 2015/06/20

I can see you downloaded Kaspersky through torrents. This is one of the best ways to get infected. There are plenty of free AV programs out there.

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

marcusdk · 2015/06/20

Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Gamer at 2015-06-21 02:16:39 Run:2
Running from C:\Users\Gamer\Desktop
Loaded Profiles: Gamer (Available Profiles: Gamer & Marcus & test)
Boot Mode: Normal
==============================================

fixlist content:
*****************
AppInit_DLLs-x32: d3dgearload.dll => "d3dgearload.dll" File not found
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-373667173-139741353-2546641198-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll No File
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\virtual_keyboard@kaspersky.com
C:\Program Files (x86)\Kaspersky Lab
OPR Extension: (Shop and Save Up) - C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi [2015-06-16]
C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi
OPR Extension: (Cinem Plus 2.4cV15.06) - C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh [2015-06-15]
C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
2015-06-16 12:37 - 2015-06-16 12:37 - 00056029 _____ C:\Users\Gamer\Downloads\[2012-torrents.com]kaspersky.anti.virus.v15.0.2.361.0.6078.2015.final.resetter.patch.appzdam.torrent

*****************

"d3dgearload.dll" => value data removed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-373667173-139741353-2546641198-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.7.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.0" => key removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com => value removed successfully
"C:\Program Files (x86)\Kaspersky Lab" => File/Folder not found.
C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi => moved successfully.
"C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi" => File/Folder not found.
C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh => moved successfully.
"C:\Users\Gamer\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh" => File/Folder not found.
catchme => Service removed successfully
C:\Users\Gamer\Downloads\[2012-torrents.com]kaspersky.anti.virus.v15.0.2.361.0.6078.2015.final.resetter.patch.appzdam.torrent => moved successfully.

==== End of Fixlog 02:16:40 ====

broni · 2015/06/20

Last scans...

Download Security Check from here or here and save it to your Desktop.

Double-click SecurityCheck.exe

Follow the onscreen instructions inside of the black box.

A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

Make sure the following options are checked:

Internet Services

Windows Firewall

System Restore

Security Center

Windows Update

Windows Defender

Other Services

Press "Scan ".

It will create a log (FSS.txt) in the same directory the tool is run.

Please copy and paste the log to your reply.

Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe

Double click on TFC.exe to run the program.

Click on Start button to begin cleaning process.

TFC will close all running programs, and it may ask you to restart computer.

Download Sophos Free Virus Removal Tool and save it to your desktop.

Double click the icon and select Run

Click Next

Select I accept the terms in this license agreement, then click Next twice

Click Install

Click Finish to launch the program

Once the virus database has been updated click Start Scanning

If any threats are found click Details, then View log file... (bottom left hand corner)

Copy and paste the results in your reply

Close the Notepad document, close the Threat Details screen, then click Start cleanup

Click Exit to close the program

marcusdk · 2015/06/21

Results of screen317's Security Check version 1.004
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Bitdefender Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 45
Adobe Flash Player 17.0.0.188 Flash Player out of Date!
Mozilla Firefox (38.0.5)
Google Chrome (43.0.2357.124)
Google Chrome (43.0.2357.81)
````````Process Check: objlist.exe by Laurent````````
Bitdefender 60-Second Virus Scanner pdscan.exe
Malwarebytes Anti-Malware mbamscheduler.exe
Bitdefender Bitdefender 2015 vsserv.exe
Bitdefender Bitdefender 2015 bdwtxag.exe
Bitdefender Bitdefender 2015 updatesrv.exe
Bitdefender Bitdefender 2015 bdwtxcr.exe
Bitdefender Bitdefender 2015 seccenter.exe
Bitdefender Bitdefender 2015 bdagent.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````

Farbar Service Scanner Version: 17-01-2015
Ran by Gamer (administrator) on 21-06-2015 at 12:44:57
Running from "C:\Users\Gamer\Downloads "
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall "=DWORD:0

System Restore:
============

System Restore Policy:
========================

Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware "=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed

**** End of log ****

broni · 2015/06/25

Still waiting for Sophos log.

broni · 2015/06/30

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.

Log in or Sign up

Inactive-A kbdclass.sys malware

marcusdk Inactive Thread Starter

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

Attached Files:

fixlist.txt

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

Inactive-A kbdclass.sys malware

marcusdk Inactive Thread Starter

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

Attached Files:

fixlist.txt

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

marcusdk Inactive Thread Starter

broni Moderator Malware Analyst

broni Moderator Malware Analyst

Share This Page

Useful Searches